Security engineer jobs in Boulder, CO - 745 jobs

Department: Mechanical Engineering Reports to: Chris Wilke OptiGrid is an energy technology company accelerating fleet electrification with battery-integrated DC fast charging solutions. Our modular solution combines charging, energy storage, and grid management to eliminate costly infrastructure upgrades and cut deployment timelines from years to weeks. We're growing rapidly and need people who move quickly, think creatively, and find solutions to tough problems. If you want to make a real impact helping fleets go electric, we'd love to hear from you. Position Overview: As a Thermal System Engineer at OptiGrid, you'll be the architect behind the thermal systems that manage our next-generation battery and power electronics platforms. Your expertise will directly influence product performance, reliability, and customer satisfaction-opening new markets and driving our technology forward. This is a hands-on role driving designs from concept and early prototype testing to production with our manufacturing partners. Key Responsibilities: Design & Innovate: Engineer advanced thermal systems for electric vehicle DC fast charging, pushing the boundaries of efficiency and reliability. Create & Build: Prepare detailed drawings and schematics, fabricate and assemble prototypes, and bring concepts to life. Test & Validate: Develop test plans, conduct lab experiments, and translate results into actionable insights and robust test reports. Collaborate & Lead: Work cross-functionally to launch new products, support compliance testing, and solve manufacturing and quality challenges. Drive Excellence: Diagnose and resolve issues in production, ensuring every part and assembly meets the highest standards. Qualifications: Bachelor's degree in Mechanical Engineering or equivalent 5+ years of hands-on experience designing thermal management systems Expertise in battery thermal systems and large-scale cooling (forced air, refrigerant) Experience implementing mechanical and thermal solutions for power electronics Track record of taking designs into volume production (sheet metal, extrusion, injection molding) Advanced 3D CAD skills and knowledge of ASME Y14.5 standards Exceptional written and verbal communication skills Preferred Skills: Master's degree in Mechanical Engineering or equivalent 10+ years in electronics packaging Proven success with Computational Fluid Dynamics (CFD) modeling and validation Background in EV supply equipment product design and lithium-ion battery systems Mastery of PTC Creo Parametric CAD software Proficiency with Arena and Windchill PLM Why Join OpriGrid? Make an Impact: Help accelerate fleet electrification and reduce carbon emissions by enabling faster, more affordable EV charging infrastructure deployment. Work With Great People: Join a collaborative team that values diverse perspectives. We solve hard problems together and celebrate wins as a team. Competitive Compensation & Benefits: Competitive salary and comprehensive benefits including health, dental, vision insurance, and PTO. At OptiGrid, LLC, we offer fair and equal opportunities to all our candidates and team members regardless of race, color, religion, sex, pregnancy, sexual identity, national origin, citizenship, marital status, disability status, parental status, veteran status, or any other characteristics protected by law. OptiGrid, LLC believes in hiring individuals only based on their qualifications and experiences that meet our business requirements to fill the positions.

We are partnering with a leading innovator in sustainable cloud and data center infrastructure to identify a BMS Automation and Controls Engineer who will help shape the next generation of intelligent, energy-efficient facilities. This individual will lead the design and deployment of advanced Building Management System (BMS) and Electrical Power Monitoring System (EPMS) solutions that enable seamless automation, monitoring, and optimization of mission critical environments. This is an opportunity to work at the forefront of technology, building systems that combine reliability, efficiency, and sustainability while supporting the rapidly expanding world of artificial intelligence infrastructure. Key Responsibilities • Lead the design and development of automation and visualization solutions for BMS and EPMS platforms across large scale data center projects • Create intuitive dashboards, HMIs, and operator workflows that simplify the control of complex building and power systems • Develop automation scripts, tags, templates, and reports to improve commissioning, testing, and operational efficiency • Collaborate with multidisciplinary teams including engineering, construction, and OEM partners to scope, configure, and deploy automation solutions • Integrate diverse control systems using industry standard protocols such as BACnet, Modbus, OPC UA, and MQTT • Conduct system testing, simulations, and performance validation to ensure operational accuracy and reliability • Use real time and historical data to enhance fault detection, predictive maintenance, and overall system insight • Improve user interfaces to reduce alarm fatigue, enhance operator experience, and accelerate troubleshooting • Provide clear and actionable reporting to leadership on system performance, uptime, and energy efficiency • Mentor and train technical teams in best practices for automation development, programming, and visualization Ideal Experience • Bachelor's degree in Electrical Engineering, Controls Engineering, Computer Science, or a related field (advanced degree or certifications preferred) • Deep hands on experience with BMS and EPMS platforms, programming, graphics, scripting, and SQL or data integration • Proven success designing scalable, maintainable automation systems in mission critical environments such as data centers or industrial facilities • Familiarity with HVAC, electrical systems, PLC and DDC logic, and industrial automation • Strong understanding of control protocols including BACnet, Modbus, OPC UA, and MQTT • Ability to transform operational needs into user friendly automation and visualization solutions • Excellent collaboration and communication skills for engaging both technical teams and executive stakeholders • Passion for using data visualization and automation to improve efficiency, sustainability, and user experience

Fortinet is seeking a Cloud Network Security Architect specializing in cloud networking, SD-WAN on-ramp design, and SASE convergence. As part of Fortinet's Cloud Architecture team, this role drives the design and deployment of secure, high-performance connectivity across public cloud, data center, and edge environments. The ideal candidate combines strong DevOps engineering skills with deep understanding of secure cloud networking architectures, including dynamic routing constructs, transitive routing models, and cloud-native route services. This role will work closely with Product Management, R&D, Field Engineering, and global customers to develop reference architectures, integrations, and automation for secure, adaptive cloud connectivity. Responsibilities: Design and implement secure cloud network architectures that leverage Fortinet SD-WAN, SASE, and cloud-native routing to deliver optimized multi-cloud connectivity. Develop automation workflows and DevOps pipelines for network provisioning, telemetry, and policy enforcement, using services such as Terraform, Ansible, and cloud-native templates. Architect solutions using transitive routing, route services, dynamic path selection, and zero trust segmentation to enable secure, scalable network topologies. Partner with Product Management and Development teams to identify feature integrations that enhance secure cloud networking capabilities. Lead proof of concept deployments and customer solution validations across public and hybrid cloud environments. Develop and maintain reference architectures, scripts, and code repositories applying industry best practices. Provide architectural guidance on secure traffic steering, network segmentation, and cloud interconnects. Support Professional Services and Sales Engineering teams in customer design and migration projects. Create organizational workflow enhancements to deliver public cloud-sourced services, such hands-on labs, customer POCs, tool integration, data enrichment and other uses Provide technical guidance on Public Cloud matters to internal stakeholders Document and maintain script and application libraries or repositories Provide technical guidance on Public Cloud integration and development, ex. the use of CSP APIs and how they can be leveraged Translate business requirements to programmatic logic Develop customer-facing documentation Create reference designs and code that applies CSP best practices Advise Product and field Engineering on solution options, feature requirements, and reference designs. Requirements: 5+ years of experience in cloud networking, network security, or secure SD-WAN/SASE design. Strong development and scripting experience in one or more languages (Python, Node.js, C#, Go, or equivalent). Familiarity with CI/CD tools (Git, Jenkins) and IaC orchestration (Terraform, Ansible, or CloudFormation). Experience with IaaS and SaaS networking constructs such as VPCs/VNets, route tables, peering, VPNs, and load balancers. Knowledge of BGP, transitive routing, network segmentation, and traffic engineering in cloud environments. Hands-on experience with containerized environments (Docker, Kubernetes) and cloud-native network policies. Proficiency with data formats such as YAML, JSON, or XML. Familiarity with cloud security services (CNAPP, CASB, CWP, SCA, DAST). Strong communication skills and ability to collaborate across engineering, product, and customer-facing teams. Experience in network security highly desired, including VPN, Proxies, Authentication, etc. Technical writing and network documentation skills highly desired Kubernetes and Docker experience required Education: Bachelor's degree in Computer Science or similar and/or equivalent experience required Master's preferred Fortinet offers employees a variety of benefits, including medical, dental, vision, life and disability insurance, 401(k), 11 paid holidays, vacation time, and sick time as well as a comprehensive leave program. Wage ranges are based on various factors including the labor market, job type, and job level. On target earnings for this position is expected to be $170,000 - $280,000 per year. Exact salary offers will be determined by factors such as the candidate's subject knowledge, skill level, qualifications, experience, and geographic location. All roles are eligible to participate in the Fortinet equity program, and this position is also eligible for commissions based on the terms of the Sales Compensation Plan

The Instagram Security Ecosystems team is seeking a product-focused security engineer interesting in enabling Instagram product teams to develop features with a focus on security and user safety. You will be relied upon to directly work with Instagram engineers, hardening both product features and our protective frameworks that make life harder for bad actors on the Instagram platform. **Required Skills:** Product Security Engineer, Instagram Responsibilities: 1. Threat Modeling and Security Architecture: Work directly with product managers and technical leads on threat models and security architecture for novel Instagram features or products 2. Security Reviews: Perform manual design and implementation reviews of web, mobile, and native code 3. Developer Guidance: Provide guidance and education to developers that help prevent the authoring of vulnerabilities 4. Automated Analysis and Secure Frameworks: Work with other security teams to improve Instagram's static and dynamic analysis and frameworks to scale coverage 5. Bug Bounty: Help provide technical guidance to our world class bug bounty program and independent security researchers 6. Industry Impact: Push the industry forward through conference talks and open source projects to contribute broadly to security for the world **Minimum Qualifications:** Minimum Qualifications: 7. B.S. or M.S. in Computer Science, Cybersecurity, or related field, or equivalent experience 8. 8+ years of experience finding vulnerabilities in interpreted languages (Python, PHP) 9. Extensive, proven experience in threat modeling and secure systems design 10. Experience with exploiting common security vulnerabilities **Preferred Qualifications:** Preferred Qualifications: 11. Product software engineering or product management experience 12. Experience in security consulting or other leadership-facing security advisory roles 13. Familiarity with cybersecurity investigations, abuse operations, and/or security incident response 14. Contributions to the security community (public research, blogging, presentations, bug bounty, etc.) **Public Compensation:** $184,000/year to $257,000/year + bonus + equity + benefits **Industry:** Internet **Equal Opportunity:** Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment. Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@fb.com.

How You Will Make a Difference: 1. Collaborate with information technology and other business unit personnel to identify cybersecurity risks associated with highly complex projects and other business initiatives. 2. Perform assessments of external party information security controls to ensure they meet or exceed VF's information security risk management requirements for the services to be provided. 3. Determine information security risk profiles for various vendor and business partner services using questionnaires, relevant industry best practices and standards, and knowledge of VF policies. 4. Recommend solutions to eliminate, reduce, or mitigate cybersecurity risk, and communicate said solutions to external parties and/or internal business stakeholders as appropriate. 5. Provide direction and guidance as needed to internal project stakeholders concerning statutory, regulatory, and VF policy and program requirements. 6. Record pertinent documentation and communications for all assessments in VF's online information technology risk management platform. 7. Report status of engagements to Global Cyber and Information Security management, project managers, and other business stakeholders as appropriate. Sensitivity: Public POSITION DESCRIPTION * Assist in enforcing information security policies, standards, and procedures. Review requests for exceptions to security policies and provide recommendations to management. * Research and advocate new technologies, architectures, and products that will support security requirements for the enterprise and its customers, business partners, and vendors. * Provide cybersecurity risk management and process execution guidance to junior team members. * Perform other information security risk management tasks as assigned. Years of Related Professional Experience: 5+ years Educational/ Position Requirements: * 5+ years of information security risk management and/or IT audit experience, preferably in a large corporate enterprise. * Bachelor's degree in information systems, computer science, or related field preferred. * Certified Information Systems Security Professional (CISSP) preferred. Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC) or similar credentials considered. * Functional knowledge of industry frameworks, regulations, legislation, and audit methodologies, including SOC 1, SOC 2, ISO 27000, SIG, CAIQ, NIST Cybersecurity Framework, Sarbanes-Oxley (SOX), PCI-DSS, GDPR, and various federal and state privacy laws. * Ability to broker complex discussions to achieve the proper balance between business needs and cybersecurity best practices. * Ability to influence others through persuasion to arrive at desired outcomes. * Ability to communicate effectively with a broad range of people and roles, including vendors, information technology professionals, and other business personnel. * Ability and desire to seize the initiative, work proactively, and perform assigned duties in a highly independent manner. Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico. Apex uses a virtual recruiter as part of the application process. Click here for more details. Apex Benefits Overview: Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Apex team member can provide. Employee Type: Contract Remote: Yes Location: Denver, CO, US Job Type: Date Posted: January 7, 2026 Pay Range: $70 - $75 per hour Similar Jobs * Cyber Security Principal * Senior Cyber Security Specialist * L2 Cyber Security Analyst * Cyber Security Engineer * Sr. GCS Cloud Security Analyst

At Klaviyo, we value the unique backgrounds, experiences and perspectives each Klaviyo (we call ourselves Klaviyos) brings to our workplace each and every day. We believe everyone deserves a fair shot at success and appreciate the experiences each person brings beyond the traditional job requirements. If you're a close but not exact match with the description, we hope you'll still consider applying. Want to learn more about life at Klaviyo? Visit careers.klaviyo.com to see how we empower creators to own their own destiny. As a Lead Security Engineer, you'll be a vital part of the Infrastructure Security Team, focusing on strengthening the security posture across Klaviyo's entire technology environment, developing security architectures and repeatable patterns and mentoring colleagues and junior security engineers. Unlike roles with a narrowly defined specialty, this position offers the opportunity to demonstrate your unique expertise-whether that's in cloud security, identity and access management, data protection, secure systems design, or other security domains. Your work will involve evaluating and hardening our infrastructure, collaborating with cross-functional teams, and leveraging AI to build scalable solutions to address emerging threats. We are looking for someone who is excited to bring their specialized skills to the team, shaping Klaviyo's security practices and helping us continue to raise the bar. How You Will Make a Difference Secure Klaviyo's infrastructure by designing, implementing, and maintaining scalable security controls across cloud, on-prem, and hybrid environments Evaluate and improve security configurations and policies across a range of technologies, using your domain expertise to reduce risk and enable secure-by-default architectures Collaborate with engineering and IT teams to embed security practices and develop repeatable security patterns across the development and deployment lifecycle Lead threat modeling, risk assessments, and architecture reviews in areas aligned with your specialty Develop automated solutions and infrastructure-as-code to drive consistent and reproducible security outcomes Stay ahead of the latest threats and advocate for innovative security solutions aligned with business needs Help define security standards and best practices at Klaviyo, championing their adoption across teams Who You Are Have 5+ years of experience in infrastructure or security engineering roles, with deep knowledge in one or more security focus areas (e.g., cloud security, IAM, endpoint security, data protection, detection engineering, compliance) Comfortable navigating ambiguity and defining priorities in a broad-scoped role Experienced working in modern cloud environments such as AWS, GCP, or Azure Familiar with infrastructure-as-code tools such as Terraform, CloudFormation, or Pulumi Proficient in secure systems design, threat modeling, and vulnerability management AI Agentic development and prompt engineering, MCP (AWS Bedrock, OpenAI, Anthropic) Able to clearly articulate complex security topics to technical and non-technical stakeholders Passionate about security, eager to learn from others and share your expertise Nice to have - certifications (e.g., CISSP, CKS, GCP/AWS Security certs) or equivalent practical experience We use Covey as part of our hiring and / or promotional process. For jobs or candidates in NYC, certain features may qualify it as an AEDT. As part of the evaluation process we provide Covey with job requirements and candidate submitted applications. We began using Covey Scout for Inbound on April 3, 2025. Please see the independent bias audit report covering our use of Covey here Massachusetts Applicants: It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability. Our salary range reflects the cost of labor across various U.S. geographic markets. The range displayed below reflects the minimum and maximum target salaries for the position across all our US locations. The base salary offered for this position is determined by several factors, including the applicant's job-related skills, relevant experience, education or training, and work location. In addition to base salary, our total compensation package may include participation in the company's annual cash bonus plan, variable compensation (OTE) for sales and customer success roles, equity, sign-on payments, and a comprehensive range of health, welfare, and wellbeing benefits based on eligibility. Your recruiter can provide more details about the specific salary/OTE range for your preferred location during the hiring process. Base Pay Range For US Locations:$188,000-$282,000 USD Get to Know Klaviyo We're Klaviyo (pronounced clay-vee-oh). We empower creators to own their destiny by making first-party data accessible and actionable like never before. We see limitless potential for the technology we're developing to nurture personalized experiences in ecommerce and beyond. To reach our goals, we need our own crew of remarkable creators-ambitious and collaborative teammates who stay focused on our north star: delighting our customers. If you're ready to do the best work of your career, where you'll be welcomed as your whole self from day one and supported with generous benefits, we hope you'll join us. AI fluency at Klaviyo includes responsible use of AI (including privacy, security, bias awareness, and human-in-the-loop). We provide accommodations as needed. By participating in Klaviyo's interview process, you acknowledge that you have read, understood, and will adhere to our Guidelines for using AI in the Klaviyo interview Process. For more information about how we process your personal data, see our Job Applicant Privacy Notice. Klaviyo is committed to a policy of equal opportunity and non-discrimination. We do not discriminate on the basis of race, ethnicity, citizenship, national origin, color, religion or religious creed, age, sex (including pregnancy), gender identity, sexual orientation, physical or mental disability, veteran or active military status, marital status, criminal record, genetics, retaliation, sexual harassment or any other characteristic protected by applicable law. IMPORTANT NOTICE: Our company takes the security and privacy of job applicants very seriously. We will never ask for payment, bank details, or personal financial information as part of the application process. All our legitimate job postings can be found on our official career site. Please be cautious of job offers that come from non-company email addresses (@klaviyo.com), instant messaging platforms, or unsolicited calls. By clicking "Submit Application" you consent to Klaviyo processing your Personal Data in accordance with our Job Applicant Privacy Notice. If you do not wish for Klaviyo to process your Personal Data, please do not submit an application. You can find our Job Applicant Privacy Notice here and here (FR).

General information Requisition # R65099 Posting Date 12/31/2025 Security Clearance Required TS/SCI w/ Poly Remote Type Onsite Time Type Full time Description & Requirements Unlock the secrets of intelligence with MANTECH! Join a dynamic team at the forefront of national security, providing advanced solutions to government intelligence agencies. Since 1968, we've been solving the toughest challenges with groundbreaking tech. Explore thrilling projects in Digital Transformation, Cybersecurity, IT, Data Analytics and Software Development. Elevate your career and make a difference. Your adventure begins now-unleash your potential with MANTECH! MANTECH seeks a motivated, career and customer-oriented Senior Cyber Security Analyst to join our team in Aurora, CO. This role supports 24x7 cybersecurity operations by identifying and mitigating threats to mission systems. You will play a vital part in analyzing cyber incidents, assessing risk, and providing expert guidance to enable rapid remediation. Responsibilities include but are not limited to: * Provides detection, identification, and reporting of possible cyber-attacks/intrusions, anomalous activities, and misuse activities * Characterizes and performs analysis of network traffic and system data to identify anomalous activity and potential threats to resources * Performs security event and incident correlation using information gathered from a variety of sources within the enterprise * Performs cyber incident triage to include determining scope, urgency, and potential impact; identifies the specific vulnerability and makes recommendations to enable expeditious remediation * Tracks and documents cyber incidents from initial detection through final resolution * Analyzes and assesses damage to the data and infrastructure resulting from cyber incidents * Performs cyber incident trend analysis and reporting * This position operates on a Wednesday - Saturday, 6:00 AM - 4:00 PM (1st shift) schedule with on-call availability for 24x7 cyber operations as needed Minimum Qualifications: * Bachelor's degree or 4+ additional years of cyber experience in lieu of degree * 5+ years of cyber experience * IAT Level II certification required (GSEC, Security+, SSCP, or CCNA-Security) * Proficient in Windows and Linux operating systems * Experience working in a Cybersecurity Operations Center environment * Familiarity with COTS technologies used in a Cybersecurity Operations Center * Working knowledge of database and operating system security * Solid understanding of current security principles, techniques, and protocols Preferred Qualifications: * CSSP-IR certification (CySA+, CEH) * Ability to function in a fast-paced environment and effectively manage multiple tasks simultaneously, coordinating resources and ensuring scheduled goals are met * Excellent verbal and written communication skills * Ability to effectively interact with various levels of senior management * Strong problem-solving and decision-making capabilities-able to seek out information, evaluate, prioritize, and implement best practices * Must be able to multi-task, work independently and collaboratively, share workloads, and adapt to shifts in project priorities Clearance Requirements: * Must have a current/active TS/SCI with Polygraph Physical Requirements: * The person in this position must be able to remain in a stationary position 50% of the time. * Occasionally move about inside the office to access file cabinets, office machinery, or to communicate with co-workers, management, and customers, via email, phone, and/or virtual communication, which may involve delivering presentations. The projected compensation range for this position is $104,200.00-$172,900.00. There are differentiating factors that can impact a final salary/hourly rate, including, but not limited to, Contract Wage Determination, relevant work experience, skills and competencies that align to the specified role, geographic location (For Remote Opportunities), education and certifications as well as Federal Government Contract Labor categories. In addition, MANTECH invests in its employees beyond just compensation. MANTECH's benefits offerings include, dependent upon position, Health Insurance, Life Insurance, Paid Time Off, Holiday Pay, short-term and long-term Disability, Retirement and Savings, Learning and Development opportunities, wellness programs as well as other optional benefit elections. MANTECH International Corporation considers all qualified applicants for employment without regard to disability or veteran status or any other status protected under any federal, state, or local law or regulation. If you need a reasonable accommodation to apply for a position with MANTECH, please email us at ******************* and provide your name and contact information.

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day. Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve. Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us! Job Description: Manual Ethical Hacking is part of the Application Development Security Framework Program within Bank of America's Cyber Security Assurance Offensive Security group. The program provides services to assess the vulnerability of the bank's applications to malicious hacking activity. This intermediate technical role is responsible for performing application security assessments of the bank's technologies, applications, and cyber security controls while adapting testing methods to evolving and emerging threats. Key responsibilities include performing research, understanding the bank's security policies, working with the appropriate partners to complete assessments and simulations, identifying misconfigurations and vulnerabilities, and reporting on associated risk. These individuals partner closely with security partners, CIO clients and multiples lines of business. Key Responsibilities in order of importance: Perform assigned analysis of internal and external threats on information systems and predict future threat behavior Incorporate threat actors' tactics, techniques, and procedures into offensive security testing Perform assessments of the security, effectiveness, and practicality of multiple technology systems Leverage innovative thinking to help solve problems or introduce new ideas to processes or products applicable to offensive security. Prepare and present detailed technical information for various media including documents, reports, and notifications Provide clear and practical advice regarding managed risks Learn and develop advanced technical and leadership skills, Mentor Junior assessors in technical tradecraft and soft skills Required Skills: Minimum of 4 years of professional pentesting, application security or ethical hacking experience, preferably in a large, complex, enterprise environment Detailed technical knowledge in at least 3 of the following areas: security engineering; application architecture; authentication and security protocols; application session management; applied cryptography; common communication protocols; mobile frameworks; single sign-on technologies; exploit automation platforms; RESTful web services SQL injection/XSS attack without the use of tools Experience performing manual code reviews for security relevant issues Experience working with SAST tools to identify vulnerabilities Able to manually identify and reproduce findings, discuss remediation concepts, develop PoCs for vulnerabilities, use scripting/coding techniques, proficiently execute common penetration testing tools, triage, and support incidents, and produce high value findings Experience performing manual web application assessments i.e., must be able to simulate a Knowledge of network and Web related protocols/technologies (e.g., UNIX/LINUX, TCP/IP, Cookies) Experience with vulnerability assessment tools and penetration testing techniques Solid programming/debugging skills Experience of using a variety of tools, included, but not limited to, IBM AppScan, Burp and SQL Map Threat Analysis Innovative Thinking Technology Systems Assessment Technical Documentation Advisory Desired: CISSP, CEH, OSCP, OSWE, GPEN, PenTest+ or similar Strong programming/scripting skills Mobile application analysis Frida Binary analysis (disassembly skills) Skills: Advisory Innovative Thinking Technical Documentation Technology System Assessment Threat Analysis Adaptability Collaboration Executive Presence Scenario Planning and Analysis Test Engineering Controls Management Information Systems Management Issue Management Mentoring Presentation Skills This job will be open and accepting applications for a minimum of seven days from the date it was posted. Shift: 1st shift (United States of America) Hours Per Week: 40 Pay Transparency details US - CO - Denver - 1144 15th St - Denver Gis (CO9926), US - DC - Washington - 1800 K St NW - 1800 K Street NW (DC1842), US - IL - Chicago - 540 W Madison St - Bank Of America Plaza (IL4540), US - MA - Boston - 100 Federal St - 100 Federal St Lp (MA5100), US - NJ - Jersey City - 101 Hudson St - 101 Hudson (NJ2101), US - WA - Seattle - 401 Union St - Rainier Square (WA1510) Pay and benefits information Pay range$117,000.00 - $147,700.00 annualized salary, offers to be determined based on experience, education and skill set.Discretionary incentive eligible This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.BenefitsThis role is currently benefits eligible. We provide industry-leading benefits, access to paid time off, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.

Dive in and do the best work of your career at DigitalOcean. Journey alongside a strong community of top talent who are relentless in their drive to build the simplest scalable cloud. If you have a growth mindset, naturally like to think big and bold, and are energized by the fast-paced environment of a true industry disruptor, you'll find your place here. We value winning together-while learning, having fun, and making a profound difference for the dreamers and builders in the world. We are looking for an Infrastructure Security Engineer who is passionate about building and maintaining robust systems and tools that keep DigitalOcean's production and corporate infrastructure safe, secure, and defensible. As an Infrastructure Security Engineer at DigitalOcean, you will join a dynamic team dedicated to revolutionizing cloud computing and AI. You will be a key technical contributor who owns the implementation of robust security solutions for defined problems within the team's scope. Reporting to the Infrastructure Security Manager, you will secure our production environment and corporate systems by implementing security tools and processes. You will embody the InfraSec philosophy of "yes, and" rather than "no" by providing secure-by-design solutions while removing obstacles to productivity. What You'll Do: * Own the implementation of small-to-medium sized security projects and solutions, focusing on the team's primary areas of expertise: Identity and Access Management and Security Infrastructure Management. * Develop, test, and deploy code/scripts for security tooling, enhancing Security Alerting, Logging, and Visibility systems to provide near-realtime notification of security-relevant changes and potential breaches. * Actively manage and operate core security infrastructure, including remote access management solutions and systems related to Identity lifecycle, authentication policies, and centralized secrets management. * Participate in core team processes, including on-call rotations, and directly contribute to triage alerts and collaborate with the Incident Response team when necessary. * Assess the security of systems by maintaining and monitoring security controls on corporate and platform infrastructure (e.g., vulnerability scanners, host-based security tools, and network security monitoring) to identify and close visibility gaps. * Partner with technical teams across Engineering and Infrastructure to advocate for and guide the adoption of security best practices, ensuring access controls limit risk by restricting access by business role and need-to-know. What You'll Add to DigitalOcean: * 2+ years of experience as a security engineer or security operations analyst, demonstrating the ability to work on small and defined security problems where the solution might not be fully defined. * Strong understanding of Linux systems, services, and deployment models (e.g., Ubuntu). * Experience with automating security tooling and workflows, including event enrichment, reduction, and correlation. * Experience with engineering and maintaining Identity and Access Management systems (e.g., LDAP, Single Sign-On, VPN or Zero Trust solutions). * Proficiency in scripting (Python, Bash, or equivalent) to efficiently automate tasks and streamline processes. * Clear and effective written and verbal communication skills for technical writing, presenting, and providing security guidance. Bonus Qualifications: * Experience with Vulnerability Management processes, focused on prioritizing known vulnerabilities for remediation at scale. * Familiarity with network security concepts and experience in auditing network security configurations to identify vulnerabilities or misconfigurations. * Experience managing Centralized Secrets Management platforms. * Familiarity with Configuration as Code software (e.g., Chef, Salt, Ansible, Terraform). Compensation Range: * $102,800.00 - $128,500.00 * This is a remote role JR: 2025-7360 #LI-Remote #LI-AS1 Why You'll Like Working for DigitalOcean * We innovate with purpose. You'll be a part of a cutting-edge technology company with an upward trajectory, who are proud to simplify cloud and AI so builders can spend more time creating software that changes the world. As a member of the team, you will be a Shark who thinks big, bold, and scrappy, like an owner with a bias for action and a powerful sense of responsibility for customers, products, employees, and decisions. * We prioritize career development. At DO, you'll do the best work of your career. You will work with some of the smartest and most interesting people in the industry. We are a high-performance organization that will always challenge you to think big. Our organizational development team will provide you with resources to ensure you keep growing. We provide employees with reimbursement for relevant conferences, training, and education. All employees have access to LinkedIn Learning's 10,000+ courses to support their continued growth and development. * We care about your well-being. Regardless of your location, we will provide you with a competitive array of benefits to support you from our Employee Assistance Program to Local Employee Meetups to flexible time off policy, to name a few. While the philosophy around our benefits is the same worldwide, specific benefits may vary based on local regulations and preferences. * We reward our employees. The salary range for this position is based on market data, relevant years of experience, and skills. You may qualify for a bonus in addition to base salary; bonus amounts are determined based on company and individual performance. We also provide equity compensation to eligible employees, including equity grants upon hire and the option to participate in our Employee Stock Purchase Program. * DigitalOcean is an equal-opportunity employer. We do not discriminate on the basis of race, religion, color, ancestry, national origin, caste, sex, sexual orientation, gender, gender identity or expression, age, disability, medical condition, pregnancy, genetic makeup, marital status, or military service. Application Limit: You may apply to a maximum of 3 positions within any 180-day period. This policy promotes better role-candidate matching and encourages thoughtful applications where your qualifications align most strongly.

**Posting Title** Classification Information Security Analyst . . Type** Regular . **Hours Per Week** 40 . **Working at NLR** NLR is located at the foothills of the Rocky Mountains in Golden, Colorado is the nation's primary laboratory for energy systems research and development. Join the National Laboratory of the Rockies (NLR), where world-class scientists, engineers, and experts are accelerating energy innovation through breakthrough research and systems integration. From our mission to our collaborative culture, NLR stands out in the research community for its commitment to an affordable and secure energy future. Spanning foundational science to applied systems engineering and analysis, we focus on solving complex challenges to deliver advanced, secure, reliable, and cost-effective energy solutions. Our work helps strengthen U.S. industries, support job creation, and promote national economic growth. At NLR, you'll find a mission-driven environment supported by state-of-the-art facilities, multidisciplinary research teams, and strong collaborations with industry, academia, and other national laboratories. We offer robust professional development opportunities, and a competitive benefits package designed to support your career and well-being. **Job Description** The Office of Laboratory Protection (LP) is an organization focused on providing a secure, safe, and resilient NLR community. LP supports more than 4,000 staff located at four sites and the associated infrastructure. LP is comprised of a team of highly skilled managers and technical subject matter experts dedicated to personnel security, physical security, access control, information security, foreign national access management, emergency management, and protective force operations. The Safeguards & Security Group Manager is seeking a skilled and motivated Classification Information Security Analyst to join our team. This pivotal role is primarily responsible for the continued implementation and management of the Controlled Unclassified Information (CUI) program, while also supporting Classified Matter Protection and Control (CMPC), and Operations Security (OPSEC) programs as necessary. The successful candidate will ensure that CUI requirements are integrated into organizational operations and information management processes. This role requires close collaboration with Legal, Export Control, Business Development, Information Governance, IT, and other stakeholders to ensure compliance with DOE and other federal agencies information protection policies. Responsibilities include: **Policy Expertise:** + Maintain up-to-date knowledge of federal OPSEC, CUI, and Classification policies, laws, and regulations. **Program Management:** + Lead the continued implementation and oversight of the CUI program, including policy, program, and procedure reviews and updates. + Collaborate with peer CUI specialists to develop and integrate CUI management solutions into NLR's broader information protection framework. + Support the OPSEC and CMPC programs in coordination with INFOSEC assurance analysts. + Provide strategic planning, risk management, and program oversight. + Mentor staff to ensure compliance with applicable requirements documents and procedures. + Coordinate CUI misuse determination, resolution, and reporting. + Conduct internal reviews and audits to ensure adherence to security requirements. **Training & Education:** + Review and revise existing CUI training materials; participate in working groups to enhance awareness programs. + Provide guidance on proper marking, handling, and safeguarding of CUI, classified, and sensitive information. + Support onboarding and refresher training for NLR personnel. **Analysis & Recommendations:** + Analyze information to determine appropriate CUI, OPSEC, and classification controls for NLR programs and initiatives. + Work to resolve security related issues that impact organizational goals. **Document Review & Incident Management:** + Assist in the review of information as requested to identify and protect sensitive and classified information. + Assist with the oversight of proper labeling of CUI documents. + Participate in the analysis and investigation of incidents of security concern. **Stakeholder Engagement and Relationship Building:** + Collaborate with internal stakeholders (Legal, IT, Program Management, project managers) to ensure consistent CUI compliance. + Build strong working relationships with DOE, lab leadership, and staff to balance security priorities with research and operations objectives in a customer focused manner. **Additional Responsibilities:** + Prepare and maintain lab level procedures, training, and internal SOPs + Promote a culture of safety, respect, accountability, and professionalism. + Other duties as assigned by management. . **Basic Qualifications** Relevant Bachelor's Degree and 5 or more years of experience or equivalent relevant education/experience. Or, relevant Master's Degree and 3 or more years of experience or equivalent relevant education/experience. Or, relevant PhD or equivalent relevant education/experience. Or, relevant JD or equivalent relevant education/experience. Complete understanding and wide application of technical principles, theories and concepts in the field. General knowledge of other related disciplines. Considerable knowledge of laws, regulations, principles, procedures and practices related to specific field. Strong leadership, project management and problem solving skills. Ability to use various computer software programs. DOE Q or TS Clearance: Must be able to obtain and maintain a DOE security clearance at the DOE (Q) and SCI access or DoD (TS) and SCI level. SCI access may require a polygraph examination. Eligibility requirements: To obtain a clearance, an individual must be at least 18 years of age; U.S. citizenship is required except in very limited circumstances. See DOE O 472.2A for additional information. *** Must meet educational requirements prior to employment start date.** **Additional Required Qualifications** + Ability to respond to inquiries about document markings and accountability requirements. + Experience developing and delivering training on protecting CUI, proprietary, or classified information. + Motivated self-starter with the ability to work independently and as part of collaborative teams across the laboratory and DOE complex. + Strong problem-solving skills, with the ability to adapt to shifting priorities and meet deadlines. + Proficient in Microsoft Office. + Ability to use discretion and maintain strict confidentiality. + Ability to work both independently and collaboratively in a team-based environment. + Ability to obtain and maintain a TS clearance (see basic qualifications). **Preferred Qualifications** . **Job Application Submission Window** The anticipated closing window for application submission is up to 30 days and may be extended as needed. **Annual Salary Range (based on full-time 40 hours per week)** Job Profile: Professional III / Annual Salary Range: $83,600 - $150,500 NLR takes into consideration a candidate's education, training, and experience, expected quality and quantity of work, required travel (if any), external market and internal value, including seniority and merit systems, and internal pay alignment when determining the salary level for potential new employees. In compliance with the Colorado Equal Pay for Equal Work Act, a potential new employee's salary history will not be used in compensation decisions. **Benefits Summary** Benefits include medical, dental, and vision insurance; short*- and long-term disability insurance; pension benefits*; 403(b) Employee Savings Plan with employer match*; life and accidental death and dismemberment (AD&D) insurance; personal time off (PTO) and sick leave; paid holidays; and tuition reimbursement*. NLR employees may be eligible for, but are not guaranteed, performance-, merit-, and achievement- based awards that include a monetary component. Some positions may be eligible for relocation expense reimbursement. Limited-term positions are not eligible for long-term disability or tuition reimbursement. ***** Based on eligibility rules **Badging Requirement** NLR is subject to Department of Energy (DOE) access restrictions. All employees must also be able to obtain and maintain a federal Personal Identity Verification (PIV) card as required by Homeland Security Presidential Directive 12 (HSPD-12), which includes a favorable background investigation. **Drug Free Workplace** NLR is committed to maintaining a drug-free workplace in accordance with the federal Drug-Free Workplace Act and complies with federal laws prohibiting the possession and use of illegal drugs. Under federal law, marijuana remains an illegal drug. If you are offered employment at NLR, you must pass a pre-employment drug test prior to commencing employment. Unless prohibited by state or local law, the pre-employment drug test will include marijuana. If you test positive on the pre-employment drug test, your offer of employment may be withdrawn. **Submission Guidelines** Please note that in order to be considered an applicant for any position at NLR you must submit an application form for each position for which you believe you are qualified. Applications are not kept on file for future positions. Please include a cover letter and resume with each position application. . **Equal Opportunity Employer** All qualified applicants will receive consideration for employment without regard basis of age (40 and over), color, disability, gender identity, genetic information, marital status, domestic partner status, military or veteran status, national origin/ancestry, race, religion, creed, sex (including pregnancy, childbirth, breastfeeding), sexual orientation, and any other applicable status protected by federal, state, or local laws. **Reasonable Accommodations (******************************************************* **E** **-Verify** ************************ **For information about right to work, click here (************************************************************************************************** for English or** **here (************************************************ for Spanish.** E-Verify is a registered trademark of the U.S. Department of Homeland Security. This business uses E-Verify in its hiring practices to achieve a lawful workforce. The National Laboratory of the Rockies (NLR) is a leader in the U.S. Department of Energy's effort to secure an environmentally and economically sustainable energy future. With locations in Golden and Boulder, Colorado, and a satellite office in Washington, D.C., NLR is the primary laboratory for research, development, and deployment of renewable energy technologies in the United States. NLR is subject to Department of Energy (DOE) access restrictions. All candidates must be authorized to access the facility per DOE rules and guidance within a reasonable time frame for the specified position in order to be considered for an interview and for hiring. DOE rules for site access during the interview process depend on whether the candidate is interviewed on-site, off-site, or via telephone or videoconference. All employees must also be able to obtain and maintain a federal Personal Identity Verification (PIV) card as required by Homeland Security Presidential Directive 12 (HSPD-12), which includes a favorable background investigation. Additionally, DOE contractor employees are prohibited from participating in certain Foreign Government Talent Recruitment Programs (FGTRPs). If a candidate is currently participating in an FGTRP, they will be required to disclose their participation after receiving an offer of employment and may be required to disengage from participation in the FGTRP prior to commencing employment. Any offer of employment is conditional on the ability to obtain work authorization and to be granted access to NLR by the Department of Energy (DOE). **Drug Free Workplace** NLR is committed to maintaining a drug-free workplace in accordance with federal Drug-Free Workplace Act and complies with federal laws prohibiting the possession and use of illegal drugs. Under federal law, marijuana remains an illegal drug. If you are offered employment at NLR, you must pass a pre-employment drug test prior to commencing employment. Unless prohibited by state or local law, the pre-employment drug test will include marijuana. If you test positive on the pre-employment drug test, your offer of employment may be withdrawn. Please review the information on our Hiring Process (************************************************* website before you create an account and apply for a job. We also hope you will learn more about NLR (**************************** , visit our Careers site (****************************** , and continue to search for job opportunities (**************************************** at the lab.

Job Title: Security Engineer Location: Must reside within a commutable distance of Asheville, NC, or Boulder, CO to work onsite as required. Hybrid/onsite Clearance: Must have an active NOAA Public Trust clearance or active Secret security clearance. Citizenship: US Citizenship Required Position Type: Full Time/Exempt Salary Range: US market data minimum $115,000.00 - $145,000.00 maximum wage range. You will receive a competitive total rewards package that is applicable to the U.S. only. The salary range may vary based on experience, skillset, and geographical location. AttainX, Inc. is seeking a detail-oriented and highly skilled Application Security Analyst to join our federal cybersecurity team. The ideal candidate will have hands-on experience integrating security tools in CI/CD pipelines and identifying vulnerabilities in web applications through both manual testing and automated analysis tools. Qualifications and Education Requirements: Basic Minimum Qualifications: 5+ years of experience in application security or a related field. Identify, analyze, and mitigate application security vulnerabilities using tools like Checkmarx, Invicti, Black Duck, etc. Collaborate with development teams to integrate secure coding practices and prioritize vulnerability remediation throughout the SDLC. Maintain container images supporting different automated CI/CD security scanning phases. Hands-on experience with static and dynamic application security testing (SAST/DAST). Familiarity with tools such as Invicti, Checkmarx, Black Duck, and similar platforms. Strong understanding of secure coding practices and application vulnerabilities (e.g., OWASP Top 10). Experience working within a Cloud Environment required. (AWS experience preferred) Experience with CI/CD tools and pipelines, integrating security throughout the software development lifecycle (SDLC). Ability to interpret and explain security findings to developers and provide remediation guidance. Excellent communication skills and strong documentation ability. Possess at least ONE (1) of the following professional certifications: CompTIA Security+ Electronic Commerce Council Certified Ethical Hacker (CEH) Certified Information Systems Security Professional (CISSP) Preferred Qualifications: Experience working in Agile development environments with DevSecOps practices. Experience supporting application security for federal agencies. Education / Experience: 5+ years of relevant experience in application security, software development, or DevSecOps. Skills: Application Security, Static & Dynamic Analysis, CI/CD Integration, OWASP Top 10, Security Tooling: Invicti, Checkmarx, Black Duck, GitLab CI/CD Duties: We are searching for an Application Security Analyst to support secure development and implementation of applications. Duties include: Conduct security reviews and static code analysis to identify application vulnerabilities. Integrate SAST, DAST, and SCA tools into CI/CD pipelines. Collaborate with developers to remediate vulnerabilities and promote secure coding practices. Generate and present risk-based security reports to engineering and management teams. Maintain security tooling configurations and ensure up-to-date signatures and policies. Non-Essential Functions: General Duty Requirements About Us: AttainX Inc. is SBA Certified 8(a), Women Owned Small Business (WOSB), Economically Disadvantaged WOSB (EDWOSB), CMMI Level 3, ISO 9001:2015 certified QMS and Silver Level SaFe Partner. For more than 12 years, AttainX, Inc. has delivered emergent technologies, software products, and high-quality services that meet the needs of our Federal Government customers. The last 4 years have shown significant company growth as we have increased our contracts portfolio and hold the “Best in Class” contract vehicles, GSA MAS and OASIS Small Business and 8(a) Pools 1, 2 and 3. In addition, we are prime on several Agency Specific IDIQ's and BPA's with the National Oceanic and Atmospheric Administration, Department of Energy, Navy, Health and Human Service and the Defense Intelligence Agency. AttainX is dedicated to quality and best practices for the services we provide. We understand our people are the key ingredient to ensuring our customers Mission and Goals are met with excellence. Benefits: We are proud to offer competitive compensation and benefits packages to include paid vacation, medical, dental, vision, matching 401K plan, tuition/training reimbursement, and Long & Short-Term Disability. EEO Commitment: AttainX Inc. is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, sexual orientation, or gender identity), national origin, age, disability, genetic information, veteran status, or any other status protected by applicable federal, state, or local law. We are committed to providing equal employment opportunities for individuals with disabilities and protected veterans in compliance with Section 503 of the Rehabilitation Act of 1973 and the Vietnam Era Veterans' Readjustment Assistance Act (VEVRAA). Accommodations: If you are an individual with a disability and would like to request a reasonable workplace accommodation, please send an email to **************. Indicate the specifics of the assistance needed. Physical Demands: Sitting and working on a computer for long, continuous periods each day; effective communications by telephone, email, and face-to-face; standing, walking, and sitting; handling and feeling objects or controls; reaching; talking and hearing; lifting and/or moving up to 10 pounds; and specific vision abilities including close vision, distance vision, color vision, peripheral vision, depth perception, and the ability to adjust and focus. Work Environment: The noise level in the work environment is usually moderate.

Posting TitleClassification Information Security Analyst . . TypeRegular . Hours Per Week40 . Working at NLRNLR is located at the foothills of the Rocky Mountains in Golden, Colorado is the nation's primary laboratory for energy systems research and development. Join the National Laboratory of the Rockies (NLR), where world-class scientists, engineers, and experts are accelerating energy innovation through breakthrough research and systems integration. From our mission to our collaborative culture, NLR stands out in the research community for its commitment to an affordable and secure energy future. Spanning foundational science to applied systems engineering and analysis, we focus on solving complex challenges to deliver advanced, secure, reliable, and cost-effective energy solutions. Our work helps strengthen U.S. industries, support job creation, and promote national economic growth. At NLR, you'll find a mission-driven environment supported by state-of-the-art facilities, multidisciplinary research teams, and strong collaborations with industry, academia, and other national laboratories. We offer robust professional development opportunities, and a competitive benefits package designed to support your career and well-being. Job Description The Office of Laboratory Protection (LP) is an organization focused on providing a secure, safe, and resilient NLR community. LP supports more than 4,000 staff located at four sites and the associated infrastructure. LP is comprised of a team of highly skilled managers and technical subject matter experts dedicated to personnel security, physical security, access control, information security, foreign national access management, emergency management, and protective force operations. The Safeguards & Security Group Manager is seeking a skilled and motivated Classification Information Security Analyst to join our team. This pivotal role is primarily responsible for the continued implementation and management of the Controlled Unclassified Information (CUI) program, while also supporting Classified Matter Protection and Control (CMPC), and Operations Security (OPSEC) programs as necessary. The successful candidate will ensure that CUI requirements are integrated into organizational operations and information management processes. This role requires close collaboration with Legal, Export Control, Business Development, Information Governance, IT, and other stakeholders to ensure compliance with DOE and other federal agencies information protection policies. Responsibilities include: Policy Expertise: Maintain up-to-date knowledge of federal OPSEC, CUI, and Classification policies, laws, and regulations. Program Management: Lead the continued implementation and oversight of the CUI program, including policy, program, and procedure reviews and updates. Collaborate with peer CUI specialists to develop and integrate CUI management solutions into NLR's broader information protection framework. Support the OPSEC and CMPC programs in coordination with INFOSEC assurance analysts. Provide strategic planning, risk management, and program oversight. Mentor staff to ensure compliance with applicable requirements documents and procedures. Coordinate CUI misuse determination, resolution, and reporting. Conduct internal reviews and audits to ensure adherence to security requirements. Training & Education: Review and revise existing CUI training materials; participate in working groups to enhance awareness programs. Provide guidance on proper marking, handling, and safeguarding of CUI, classified, and sensitive information. Support onboarding and refresher training for NLR personnel. Analysis & Recommendations: Analyze information to determine appropriate CUI, OPSEC, and classification controls for NLR programs and initiatives. Work to resolve security related issues that impact organizational goals. Document Review & Incident Management: Assist in the review of information as requested to identify and protect sensitive and classified information. Assist with the oversight of proper labeling of CUI documents. Participate in the analysis and investigation of incidents of security concern. Stakeholder Engagement and Relationship Building: Collaborate with internal stakeholders (Legal, IT, Program Management, project managers) to ensure consistent CUI compliance. Build strong working relationships with DOE, lab leadership, and staff to balance security priorities with research and operations objectives in a customer focused manner. Additional Responsibilities: Prepare and maintain lab level procedures, training, and internal SOPs Promote a culture of safety, respect, accountability, and professionalism. Other duties as assigned by management. . Basic QualificationsRelevant Bachelor's Degree and 5 or more years of experience or equivalent relevant education/experience. Or, relevant Master's Degree and 3 or more years of experience or equivalent relevant education/experience. Or, relevant PhD or equivalent relevant education/experience. Or, relevant JD or equivalent relevant education/experience. Complete understanding and wide application of technical principles, theories and concepts in the field. General knowledge of other related disciplines. Considerable knowledge of laws, regulations, principles, procedures and practices related to specific field. Strong leadership, project management and problem solving skills. Ability to use various computer software programs. DOE Q or TS Clearance: Must be able to obtain and maintain a DOE security clearance at the DOE (Q) and SCI access or DoD (TS) and SCI level. SCI access may require a polygraph examination. Eligibility requirements: To obtain a clearance, an individual must be at least 18 years of age; U.S. citizenship is required except in very limited circumstances. See DOE O 472.2A for additional information. * Must meet educational requirements prior to employment start date. Additional Required Qualifications Ability to respond to inquiries about document markings and accountability requirements. Experience developing and delivering training on protecting CUI, proprietary, or classified information. Motivated self-starter with the ability to work independently and as part of collaborative teams across the laboratory and DOE complex. Strong problem-solving skills, with the ability to adapt to shifting priorities and meet deadlines. Proficient in Microsoft Office. Ability to use discretion and maintain strict confidentiality. Ability to work both independently and collaboratively in a team-based environment. Ability to obtain and maintain a TS clearance (see basic qualifications). Preferred Qualifications . Job Application Submission Window The anticipated closing window for application submission is up to 30 days and may be extended as needed. Annual Salary Range (based on full-time 40 hours per week) Job Profile: Professional III / Annual Salary Range: $83,600 - $150,500 NLR takes into consideration a candidate's education, training, and experience, expected quality and quantity of work, required travel (if any), external market and internal value, including seniority and merit systems, and internal pay alignment when determining the salary level for potential new employees. In compliance with the Colorado Equal Pay for Equal Work Act, a potential new employee's salary history will not be used in compensation decisions. Benefits SummaryBenefits include medical, dental, and vision insurance; short*- and long-term disability insurance; pension benefits*; 403(b) Employee Savings Plan with employer match*; life and accidental death and dismemberment (AD&D) insurance; personal time off (PTO) and sick leave; paid holidays; and tuition reimbursement*. NLR employees may be eligible for, but are not guaranteed, performance-, merit-, and achievement- based awards that include a monetary component. Some positions may be eligible for relocation expense reimbursement. Limited-term positions are not eligible for long-term disability or tuition reimbursement. * Based on eligibility rules Badging RequirementNLR is subject to Department of Energy (DOE) access restrictions. All employees must also be able to obtain and maintain a federal Personal Identity Verification (PIV) card as required by Homeland Security Presidential Directive 12 (HSPD-12), which includes a favorable background investigation.Drug Free Workplace NLR is committed to maintaining a drug-free workplace in accordance with the federal Drug-Free Workplace Act and complies with federal laws prohibiting the possession and use of illegal drugs. Under federal law, marijuana remains an illegal drug. If you are offered employment at NLR, you must pass a pre-employment drug test prior to commencing employment. Unless prohibited by state or local law, the pre-employment drug test will include marijuana. If you test positive on the pre-employment drug test, your offer of employment may be withdrawn. Submission Guidelines Please note that in order to be considered an applicant for any position at NLR you must submit an application form for each position for which you believe you are qualified. Applications are not kept on file for future positions. Please include a cover letter and resume with each position application. . Equal Opportunity Employer All qualified applicants will receive consideration for employment without regard basis of age (40 and over), color, disability, gender identity, genetic information, marital status, domestic partner status, military or veteran status, national origin/ancestry, race, religion, creed, sex (including pregnancy, childbirth, breastfeeding), sexual orientation, and any other applicable status protected by federal, state, or local laws. Reasonable Accommodations E-Verify ******************** For information about right to work, click here for English or here for Spanish. E-Verify is a registered trademark of the U.S. Department of Homeland Security. This business uses E-Verify in its hiring practices to achieve a lawful workforce.

Since 2002, Quantix ProTech has successfully delivered IT resources and solutions to companies while building a solid reputation for integrity and consistent quality. Quantix ProTech continues to partner with the commercial sector for specialized IT placement and staffing services. Quantix ProTech was recently featured in US News and World Report and Forbes. Job Title: Security Engineer Location: Denver, CO Type: Direct Hire Job Description: Our client in the Denver, Colorado area is looking for a Security Engineer to join their team on a direct hire basis. This person will join a small team that is developing a dedicated Security focus for the organization. This is a hands on position that will assist in reviewing potential and existing security threats, This position will provide monitoring, documentation, research, and risk analysis expertise to the company. Required Skills: 1) Cloud Servers / Security. 2) Google and MAC environment. 3) SOC2. 4) Linux command line scripting. 5) Application logging experience. Desired Skills: 1) ERP Experience. 2) Legal industry / financial Services experience. 3) Certifications (ISC2, ISACA, etc.) 4) Federal security assessments, major consulting firm experience. Qualifications Required Skills: 1) Cloud Servers / Security. 2) Google and MAC environment. 3) SOC2. 4) Linux command line scripting. 5) Application logging experience. Desired Skills: 1) ERP Experience. 2) Legal industry / financial Services experience. 3) Certifications (ISC2, ISACA, etc.) 4) Federal security assessments, major consulting firm experience. Additional Information All your information will be kept confidential according to EEO guidelines. If your interested, send a copy of your resume at henriquez@quantixinc. com or reach me at ************.

For one of our ongoing long term Multiyear project we are seeking a skilled and proactive Microsoft 365 Security Engineer to lead the assessment, enhancement, and implementation of Microsoft 365 security measures within our client's organizations. This role will focus on evaluating our current Microsoft 365 security posture, providing strategic recommendations, and implementing advanced security controls to safeguard our client's digital environment. Local candidates around Denver Preferred. QUALIFICATIONS Deep understanding of Microsoft 365 security components such as Azure AD, Microsoft Defender for Office 365, Microsoft Cloud App Security, and Intune. Proficiency in Microsoft security technologies and tools, including Purview Information Protection, DLP, data lifecycle management, records management, and Azure data governance Experience in implementing security controls for Identity and Access Management, Conditional Access, Threat Protection, and Data Loss Prevention within Microsoft 365. Experience with security frameworks such as NIST, ISO 27001, and CIS Controls Relevant certifications PREFERRED SKILLS Experience with PowerShell scripting for automation and reporting in Microsoft 365. Familiarity with Security Information and Event Management (SIEM) tools. Knowledge of zero-trust principles and their application within M365 environments.

Wiz is looking for a Security Engineer for Product & Production Infrastructure who has experience performing security reviews, vulnerability management, and detection and response operations in cloud-native environments. You'll get to collaborate with our software development and DevOps teams to secure Wiz's products, CI/CD infrastructure, and production infrastructure. You'll also have the opportunity to influence our product roadmap by utilizing Wiz-for-Wiz to assess, monitor, and harden our environments. WHAT YOU'LL DO Lead threat modeling and security reviews across Wiz's products and cloud infrastructure, identifying attack surfaces and developing scalable mitigation strategies Build automation, policy-as-code, and security tooling that enables development teams to "shift left" and integrate end-to-end security into their workflows Design and implement secure baselines for cloud resources and Kubernetes based infrastructure Drive vulnerability management and remediation efforts - prioritizing issues, implementing mitigations, and designing strategic preventative controls in software supply chains from development through production Extend our detection and response capabilities - building scalable solutions to identify malicious activity, triage alerts, and investigate and remediate incidents Collaborate with our Wiz Federal team - extending our DevSecOps and Product Security practices to Wiz's FedRAMP environment and ensure it meets key security requirements Build deep functional partnerships with Wiz's engineering and operations teams - helping them deliver secure-by-design solutions WHAT YOU'LL BRING 7+ years of experience in security engineering or security operations work in cloud environments, with a focus on the below: Strong AWS cloud security experience (we will also consider equivalent experience in Azure and GCP with some level of AWS experience) Cloud native Kubernetes services (EKS/GKE/AKS) and strong container security principles Deep understanding of securing IAM and cloud identities at scale Proven ability to lead technical security reviews of products and architectures, conduct threat modeling exercises, and translate findings into actionable security controls Practical understanding of web application security concepts (such as OWASP Top-10 and similar) Hands-on experience with IAC and related tools (Terraform, CloudFormation, Helm, Pulumi) Experience with automation and tooling development in one or more: Python, Go, Shell, HCL, Rego PREFERRED QUALIFICATIONS Bachelor's degree in computer science or a related field and / or candidates with equivalent job experience in lieu of a degree Experience working with remote, globally distributed teams Experience working in organizations that develop software and/or operate managed infrastructure and technology services for their own customers Experience with CNAPP, CSPM, or CIEM solutions For this position, you may be required to provide evidence that you meet EAR part 772 and ITAR 120.15 definition of a U.S. person (Any individual who is granted U.S. citizenship; or, any individual who is granted U.S. permanent residence (green card holder); or, any individual who is granted status as a "protected person") and that you reside in the contiguous United States.

This is Sushil Singh from 360 IT Professionals Inc. We are based in Fremont, California that offers complete technology services in IT staffing, Mobile development, Web development and Cloud computing . 360 IT Professionals work along with its clients to deliver high-performance results, based exclusively on the one of a kind requirement. Qualifications CCNa or CCNP+ or CCSA and Linux Additional Information W2 only or local

General Atomics (GA), and its affiliated companies, is one of the world's leading resources for high-technology systems development ranging from the nuclear fuel cycle to remotely piloted aircraft, airborne sensors, and advanced electric, electronic, wireless and laser technologies. Whether a specific satellite for a specific mission or a constellation of interconnected spacecraft, the GA-EMS Space Systems team is re-defining how customers can access the possibilities of space. GA-EMS offers modular and scalable satellite platforms backed with a history of operational flight experience to support defense, civil, commercial, and academic mission requirements. We're seeking a Space Systems Cyber Security Analyst to join our team in Englewood, CO. In this role, you'll collaborate closely with the lead cyber security engineer to implement program strategies aimed at achieving and maintaining authority to operate (ATO) for our cutting-edge space systems solutions. DUTIES AND RESPONSIBILITIES: Serve as an individual contributor on one or more development programs ensuring cyber security requirements are satisfied. Security requirements: Capture, refine, and integrate information security requirements into system designs and development processes Security assessments: Conduct technical assessments to identify system vulnerabilities and ensure compliance with applicable regulations Security architecture: Design and implement secure system architectures, including hardware, software, data, and operational procedures Threat mitigation: Evaluate and mitigate system security threats and associated risks Security controls: Review and tailor security controls to meet specific program needs and ensure effectiveness Security documentation: Develop and maintain Risk Management Framework (RMF) documentation and supporting artifacts Standards compliance: Assess systems against relevant cybersecurity standards, frameworks, and publications Secure operations: Support the secure operation, monitoring, and maintenance of deployed systems Other Responsibilities: Participate in and lead discussions in cyber security/information assurance working group meetings with our customers Develop content and present at program design and readiness reviews. Support development and execution of tests required for accreditation. Responsible for technical and schedule execution of the cyber security scope of work of one or more programs. Ensures all work products are produced in accordance with the project plan to satisfy the customer requirements. Ensures all work product are completed on schedule. Define Integrated Master Schedule (IMS) tasks necessary to complete the scope of work and achieve program milestones. Maintains the strict confidentiality of sensitive information. Performs other duties as assigned. Responsible for observing all laws, regulations and other applicable obligations wherever and whenever business is conducted on behalf of the Company. Expected to work in a safe manner in accordance with established operating procedures and practices. We recognize and appreciate the value and contributions of individuals with diverse backgrounds and experiences and welcome all qualified individuals to apply. Typically requires a bachelors degree in related field and five or more years of professional computer system security experience or related field. Equivalent professional experience may be substituted in lieu of education. Possess one or more of the following security certifications: CISSP, GIAC (any), CISM, CISA, or Security+ Experience with system design aligned to the NIST Risk Management Framework (RMF) or similar standards, including full lifecycle activities such as Approval & Authorization, POA&M development, and continuous monitoring Familiarity with NIST Special Publications, including SP 800-30, 800-53, 800-82, and 800-171 Knowledge of ISO/IEC 27000 series information security standards Experience applying DISA Security Technical Implementation Guides (STIGs) Hands-on experience with virtualized environments using VMware and/or Amazon Web Services (AWS) Ability to work extended hours to support critical test activities or operational needs Must have or be able to obtain a TS/SCI security clearance. Preferred Qualifications: Experience with NASA's Security Information Technology policies, specifically NPR 2810.1 Background in the space domain, including satellite ground systems, mission management, command and control systems, or satellites Strong understanding of network architecture, including TCP/IP and UDP design, as well as experience with switches, routers, and firewalls

Job Description Crusoe's mission is to accelerate the abundance of energy and intelligence. We're crafting the engine that powers a world where people can create ambitiously with AI - without sacrificing scale, speed, or sustainability. Be a part of the AI revolution with sustainable technology at Crusoe. Here, you'll drive meaningful innovation, make a tangible impact, and join a team that's setting the pace for responsible, transformative cloud infrastructure. We are seeking a highly skilled Staff Infrastructure Security Engineer to architect, deploy, and operationalize the foundational security services that will underpin our shift to a Zero Trust model. In this strategic role, you will define and establish the "roots of trust" for our organization, serving as a technical leader in Secrets Management and Identity architecture. While your immediate focus is to serve as the Subject Matter Expert (SME) driving our enterprise HashiCorp Vault platform from Proof-of-Concept (PoC) to global production readiness, your long-term scope is far broader. You will be responsible for evolving our credentials management strategy, onboarding engineering teams to secure self-service workflows, and designing scalable trust patterns across our hybrid multi-cloud environment. Key Responsibilities 1. Strategic Architecture & Governance Zero Trust Architecture: Architect a highly available, disaster-resilient, and scalable multi-cluster secrets management platform that serves as the foundation for the organization's Zero Trust strategy. Technical Leadership: Drive consensus across Cloud Engineering, DevOps, and SRE teams to define standardized secret management workflows and integrate security patterns into the SDLC. Compliance & Governance: Ensure the platform design meets rigorous internal policies and external compliance frameworks (e.g., SOX, ISO 27001). Policy as Code: Design and implement advanced governance controls, including Sentinel Policy as Code, to automate security guardrails and access decisions. 2. Platform Engineering & Implementation Infrastructure as Code (IaC): Lead the engineering of the Vault infrastructure using Terraform, ensuring all deployments are reproducible, version-controlled, and automated. Identity Integration: Architect the integration between the secrets platform, Identity Providers (Okta), and workload identities (Kubernetes Service Accounts) to establish robust machine-to-machine authentication. Advanced Secrets Capabilities: Configure and tune essential secrets engines (KV, Transit, KMIP) and Enterprise features (Performance Replication, Seal automation) to support diverse engineering use cases. 3. Operational Excellence & Developer Enablement Vault as a Service (VaaS): Operationalize the platform by building self-service mechanisms, distinct "paved road" onboarding procedures, and documentation that allows engineering teams to easily consume security services. Observability: Implement comprehensive monitoring, alerting, and audit logging to ensure platform health, provide visibility into usage patterns, and satisfy audit requirements. Lifecycle Management: Own the full operational lifecycle of the production environment, including patching, version upgrades, backup/restore procedures, and incident response runbooks. Required Qualifications 6+ years (or equivalent) hands-on experience in cloud security, DevOps, or infrastructure engineering. Deep expertise and proven track record deploying and managing HashiCorp Vault in an enterprise environment (experience with the Enterprise edition is highly preferred). Expert-level knowledge of Secrets Management, X.509 PKI (Public Key Infrastructure), Certificate Authority Operations, and Cryptography concepts. Strong experience with Google Cloud Platform (GCP) and cloud native identity and access management (IAM). Proficiency with Infrastructure as Code (IaC) tools, especially Terraform, for automating the deployment and configuration of Vault and its dependent infrastructure. Technical Skills Fluent in at least one programming language (ideally Go or Python). Demonstrable experience with Kubernetes and container security principles, especially integrating secrets into microservices architectures. Strong understanding of network security concepts (IP addressing, IP routing, firewalls, segmentation, Zero Trust). Benefits: Industry competitive pay Restricted Stock Units in a fast growing, well-funded technology company Health insurance package options that include HDHP and PPO, vision, and dental for you and your dependents Employer contributions to HSA accounts Paid Parental Leave Paid life insurance, short-term and long-term disability Teladoc 401(k) with a 100% match up to 4% of salary Generous paid time off and holiday schedule Cell phone reimbursement Tuition reimbursement Subscription to the Calm app MetLife Legal Company paid commuter benefit; $300 per month Crusoe is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, disability, genetic information, pregnancy, citizenship, marital status, sex/gender, sexual preference/ orientation, gender identity, age, veteran status, national origin, or any other status protected by law or regulation.

Cardinal Health, Inc. (NYSE: CAH) is a global healthcare services and products company. We provide customized solutions for hospitals, healthcare systems, pharmacies, ambulatory surgery centers, clinical laboratories, physician offices and patients in the home. We are a distributor of pharmaceuticals and specialty products; a global manufacturer and distributor of medical and laboratory products; an operator of nuclear pharmacies and manufacturing facilities; and a provider of performance and data solutions. Working to be healthcare's most trusted partner, our customer-centric focus drives continuous improvement and leads to innovative solutions that improve the lives of people every day. With approximately 50,000 employees worldwide, Cardinal Health ranks among the top fifteen in the Fortune 500. **_Department Overview:_** **Information Technology** oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value. **Information Security and Risk** develops, implements, and enforces security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure, or destruction. This job family develops system back-up and disaster recovery plans, conducts incident responses, threat management, vulnerability scanning, virus management and intrusion detection as well as completes risk assessments. We are seeking a highly skilled and experienced Identity and Access Management (IAM) Engineer to join our team. In this pivotal role, you will be instrumental in designing, implementing, and managing IAM solutions that secure our enterprise applications and facilitate the secure, efficient, and seamless integration of identity and access systems in context of our rapid growth through Mergers and Acquisitions. You will ensure robust access controls, streamline user experiences, and maintain operational continuity across our diverse IT landscape. The ideal candidate will have deep technical expertise in modern IAM principles, protocols and products along with strong management and communication skills. **Responsibilities:** + **Application Integration Leadership:** Lead the integration of various enterprise applications (SaaS, on-premise, custom-built) with our core IAM infrastructure, ensuring secure authentication, authorization, and user provisioning/de-provisioning. + **M&A Integration Strategy & Execution:** Lead the planning, design, and execution of IAM integration strategies for M&A activities, ensuring alignment with overall business and security objectives. This includes assessing the IAM landscapes of merging entities to identify challenges and solutions. + **Identity System Merging & Consolidation:** Manage the complex process of merging disparate identity providers, user directories (e.g., Active Directory, Azure AD, LDAP), and access management systems from acquired companies into the existing infrastructure. + **User Lifecycle Management:** Streamline and automate user provisioning, de-provisioning, and periodic access reviews for employees, contractors, and partners across all integrated systems, ensuring smooth onboarding and offboarding during M&A transitions. + **Solution Design & Implementation:** Design, implement, and maintain IAM solutions including Single Sign-On (SSO), Multi-Factor Authentication (MFA), Privileged Access Management (PAM), and Role-Based Access Control (RBAC) frameworks. + **Security & Compliance:** Ensure IAM systems and processes comply with regulatory requirements (e.g., GDPR, HIPAA, SOX) and internal security policies, providing auditable records of access activities. Protect against data breaches by ensuring only authorized personnel can access sensitive information. + **Technical Troubleshooting & Support:** Troubleshoot, identify, and resolve technical identity and access management-related issues, providing expert support to internal teams and end-users during and after integration. + **Collaboration & Communication:** Coordinate cross-functional teams, including Information Security, IT Operations, HR, and Application Development, to ensure effective IAM implementation and seamless integration with business processes. Communicate complex security concepts to technical and non-technical stakeholders. + **Documentation & Best Practices:** Develop, review, and maintain comprehensive technical documentation, including architecture diagrams, configuration guides, and operational procedures. Stay up-to-date with IAM best practices, regulatory requirements, and security trends. **Qualifications:** + **Education:** Bachelor's degree in Computer Science, Information Technology, Information Security, or a related field, or equivalent practical experience. + **Experience:** 5+ years of progressive experience as an IAM Engineer, designing and implementing enterprise scale solutions with significant experience in supporting M&A integration projects preferred. + **Technical Expertise:** + Proficiency in directory services (e.g., Active Directory, Azure AD, LDAP). + Extensive knowledge and experience with authentication standards and technologies such as SSO (SAML, OAuth, OpenID Connect), MFA, and privileged access management (PAM). + Hands-on experience with leading IAM platforms (e.g., Okta, Microsoft Azure AD, CyberArk, ForgeRock, Ping Identity, SailPoint). + Experience with scripting languages (e.g., PowerShell, Python) for automation and integration. + Strong understanding of security principles, risk management, and access control models (e.g., RBAC). + Understanding of DevOps practices. + Familiarity with Zero Trust architecture principles. + Familiarity with AI/ML concepts and their practical application in security and risk management, especially in IAM context. + **M&A Specific Skills:** Proven track record of managing complex integration projects, including assessing existing IAM capabilities, workflow, systems, and processes of acquired entities. Ability to navigate the complexities of integrating diverse identity infrastructures. + Strong communication and interpersonal skills to collaborate effectively with various teams and stakeholders. + Detail-oriented mindset to ensure precise access control configurations and compliance. + Excellent problem-solving and analytical abilities to troubleshoot access issues and design solutions for unique business requirements + Must be a self-starter who takes full ownership of projects from inception to completion , holding oneself accountable for the security and operation integrity of IAM platform. + Ability to manage multiple priorities and meet tight deadlines in a fast-paced M&A environment. + Adaptability to stay ahead of evolving IAM technologies and security threats. **Anticipated salary range:** $94,900 - $135,600 **Bonus eligible:** No **Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being. + Medical, dental and vision coverage + Paid time off plan + Health savings account (HSA) + 401k savings plan + Access to wages before pay day with my FlexPay + Flexible spending accounts (FSAs) + Short- and long-term disability coverage + Work-Life resources + Paid parental leave + Healthy lifestyle programs **Application window anticipated to close:** 12/20/2025 *if interested in opportunity, please submit application as soon as possible. The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity. _Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._ _Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._ _To read and review this privacy notice click_ here (***************************************************************************************************************************