Security engineer jobs in Des Moines, IA

Ready to be pushed beyond what you think you're capable of? At Coinbase, our mission is to increase economic freedom in the world. It's a massive, ambitious opportunity that demands the best of us, every day, as we build the emerging onchain platform - and with it, the future global financial system. To achieve our mission, we're seeking a very specific candidate. We want someone who is passionate about our mission and who believes in the power of crypto and blockchain technology to update the financial system. We want someone who is eager to leave their mark on the world, who relishes the pressure and privilege of working with high caliber colleagues, and who actively seeks feedback to keep leveling up. We want someone who will run towards, not away from, solving the company's hardest problems. Our ******************************** is intense and isn't for everyone. But if you want to build the future alongside others who excel in their disciplines and expect the same from you, there's no better place to be. While many roles at Coinbase are remote-first, we are not remote-only. In-person participation is required throughout the year. Team and company-wide offsites are held multiple times annually to foster collaboration, connection, and alignment. Attendance is expected and fully supported. The Application Security organization at Coinbase is seeking to hire an experienced Offensive Security Engineer specializing in Web3 penetration testing and Web3 bug bounty program management and optimization. In this role, you will collaborate with the Bug Bounty Program Lead to drive Web3 bug bounty triage, validation, and strategic initiatives aimed at increasing program efficiency, maturity, and hacker engagement. You will work closely with whitehat hackers, security engineers, and cross-functional teams to enhance Coinbase's security posture through an effective bug bounty program. Additionally, you will perform penetration tests on Web3 technologies and applications, ensuring the security of Coinbase's blockchain-based products and services. *What you'll be doing (ie. job duties):* * Conduct security assessments of Web3 products and services, including smart contracts, DeFi protocols, and blockchain infrastructure. * Collaborate with partner teams to enhance detection and response capabilities for Web3 vulnerabilities. * Stay informed on emerging security trends, advisories, and academic research in the Web3 space. * Lead Web3 bug bounty triage and validation, ensuring timely and accurate assessments of reported vulnerabilities. * Develop and implement strategies to incentivize high-quality bug bounty submissions and engage with the hacker community. * Manage the Web3 bug bounty program, including scope updates, researcher communication, and payout disbursements. * Analyze bug bounty data to identify trends, common vulnerabilities, and areas for improvement. * Collaborate with engineering teams to prioritize and remediate vulnerabilities identified through the bug bounty program. * Mentor and train junior security engineers in Web3 bug bounty triage and analysis. * Provide on-call support for critical Web3 bug bounty-related incidents. * Document and report on Web3 bug bounty metrics and program effectiveness. *What we look for in you (ie. job requirements):* * Bachelor's or Master's degree in Computer Science, Cybersecurity, Software Engineering, or a related field. * 3+ years of experience in Web3 application security and penetration testing. * Proven track record of identifying critical vulnerabilities across the blockchain protocol stack, Web2, and Web3 components. * Extensive knowledge of the blockchain ecosystem, including L1/L2 networks, DeFi protocols, and staking mechanisms. * Deep understanding of Web2 security concepts and common vulnerabilities (e.g., OWASP Top 10, SANS Top 25). * Strong analytical skills to identify trends and patterns in vulnerabilities. * Excellent communication skills for engaging with internal teams. * Passion for security and a drive to improve Web3 security posture. * Ability to work independently and take ownership of penetration testing initiatives. * Energy and self-drive for continuous learning in the rapidly evolving crypto space. * Excellence in clear, direct, and kind communication with technical and non-technical stakeholders. * Experience building relationships with product, engineering, and security teams. *Nice to haves:* * Participation in CTFs, bug bounty programs, or open-source security research. * Expertise in Application Security, Network Security, or Cloud Security. * Relevant security certifications (e.g., OSCP, GPEN). * Experience developing and implementing security tooling to support bug bounty triage and analysis. * Experience with bug bounty programs and platforms, including triage, validation, and researcher communication. * Strong analytical skills to identify trends and patterns in bug bounty submissions. * Excellent communication skills to effectively engage with bug bounty researchers. Position ID: P69494 \#LI-remote *Pay Transparency Notice:* Depending on your work location, the target annual salary for this position can range as detailed below. Full time offers from Coinbase also include bonus eligibility + equity eligibility**+ benefits (including medical, dental, vision and 401(k)). Pay Range: $152,405-$179,300 USD Please be advised that each candidate may submit a maximum of four applications within any 30-day period. We encourage you to carefully evaluate how your skills and interests align with Coinbase's roles before applying. Commitment to Equal Opportunity Coinbase is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, gender, national origin, age, disability, veteran status, sex, gender expression or identity, sexual orientation or any other basis protected by applicable law. Coinbase will also consider for employment qualified applicants with criminal histories in a manner consistent with applicable federal, state and local law. For US applicants, you may view the *********************************************** in certain locations, as required by law. Coinbase is also committed to providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation because of a disability for any part of the employment process, please contact us at accommodations*********************************** *Global Data Privacy Notice for Job Candidates and Applicants* Depending on your location, the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA) may regulate the way we manage the data of job applicants. Our full notice outlining how data will be processed as part of the application procedure for applicable locations is available ********************************************************** By submitting your application, you are agreeing to our use and processing of your data as required. *AI Disclosure* For select roles, Coinbase is piloting an AI tool based on machine learning technologies to conduct initial screening interviews to qualified applicants. The tool simulates realistic interview scenarios and engages in dynamic conversation. A human recruiter will review your interview responses, provided in the form of a voice recording and/or transcript, to assess them against the qualifications and characteristics outlined in the job description. For select roles, Coinbase is also piloting an AI interview intelligence platform to transcribe and summarize interview notes, allowing our interviewers to fully focus on you as the candidate. *The above pilots are for testing purposes and Coinbase will not use AI to make decisions impacting employment*. To request a reasonable accommodation due to disability, please contact accommodations[at]coinbase.com

Insight Global is hiring for our client's Information Security team that is seeking a seasoned professional to advance their Data Loss Prevention (DLP) program. As a Data Security Engineer, you will design, implement, and maintain technical data protection solutions-primarily within Microsoft Purview-to safeguard sensitive information across a large-scale hybrid environment. This role involves close collaboration with IT teams, business stakeholders, and vendors to identify risks, enforce data handling policies, and ensure regulatory alignment. Key Responsibilities - Develop, configure, and maintain DLP policies and labeling solutions across endpoints, email, cloud, and network environments using Microsoft Purview. - Build out new and continuously improve current DLP policies based on customer feedback, business needs, and regulatory requirements. - Manage configuration, deployment, and ongoing maintenance of DLP and data classification policies. - Integrate DLP solutions with SIEM, CASB, endpoint protection, and other security platforms. - Monitor and optimize technical components of the Data Protection program, tuning DLP rules to reduce false positives and manage exceptions. - Drive change management for DLP and data protection initiatives, ensuring smooth adoption and compliance. - Collaborate with security, IT, and business teams to understand data flows, integrate Purview capabilities, and align controls with business needs. - Partner with vendors to ensure alignment with industry best practices for data protection. - Analyze data protection risks in both persistent and transit layers; design sustainable mitigation strategies. - Document complex process flows and communicate technical details to both technical and non-technical audiences. - Stay current with emerging threats, technologies, and regulatory changes; recommend updates to DLP strategy. - Develop and execute test plans for DLP solutions across multiple environments (development, staging, production) to ensure robust deployment and minimize risk. Pay rate varies on experience $55/hr - $65/hr We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to ********************.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: **************************************************** Skills and Requirements - 5+ years of experience in data loss prevention/data security engineering - 2+ years of experience in a senior-level engineering role - Microsoft Purview Information Protection (MIP Labels & MS Data Loss Prevention) - Enterprise (large organization) Data Loss Prevention (DLP) administration and configuration. - Integration of DLP with SIEM, CASB, and endpoint protection platforms. - CISSP (Certified Information Systems Security Professional) - CISM (Certified Information Security Manager) - Experience with Microsoft Azure and Microsoft O365

Cardinal Health, Inc. (NYSE: CAH) is a global healthcare services and products company. We provide customized solutions for hospitals, healthcare systems, pharmacies, ambulatory surgery centers, clinical laboratories, physician offices and patients in the home. We are a distributor of pharmaceuticals and specialty products; a global manufacturer and distributor of medical and laboratory products; an operator of nuclear pharmacies and manufacturing facilities; and a provider of performance and data solutions. Working to be healthcare's most trusted partner, our customer-centric focus drives continuous improvement and leads to innovative solutions that improve the lives of people every day. With approximately 50,000 employees worldwide, Cardinal Health ranks among the top fifteen in the Fortune 500. **_Department Overview:_** **Information Technology** oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value. **Information Security and Risk** develops, implements, and enforces security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure, or destruction. This job family develops system back-up and disaster recovery plans, conducts incident responses, threat management, vulnerability scanning, virus management and intrusion detection as well as completes risk assessments. We are seeking a highly skilled and experienced Identity and Access Management (IAM) Engineer to join our team. In this pivotal role, you will be instrumental in designing, implementing, and managing IAM solutions that secure our enterprise applications and facilitate the secure, efficient, and seamless integration of identity and access systems in context of our rapid growth through Mergers and Acquisitions. You will ensure robust access controls, streamline user experiences, and maintain operational continuity across our diverse IT landscape. The ideal candidate will have deep technical expertise in modern IAM principles, protocols and products along with strong management and communication skills. **Responsibilities:** + **Application Integration Leadership:** Lead the integration of various enterprise applications (SaaS, on-premise, custom-built) with our core IAM infrastructure, ensuring secure authentication, authorization, and user provisioning/de-provisioning. + **M&A Integration Strategy & Execution:** Lead the planning, design, and execution of IAM integration strategies for M&A activities, ensuring alignment with overall business and security objectives. This includes assessing the IAM landscapes of merging entities to identify challenges and solutions. + **Identity System Merging & Consolidation:** Manage the complex process of merging disparate identity providers, user directories (e.g., Active Directory, Azure AD, LDAP), and access management systems from acquired companies into the existing infrastructure. + **User Lifecycle Management:** Streamline and automate user provisioning, de-provisioning, and periodic access reviews for employees, contractors, and partners across all integrated systems, ensuring smooth onboarding and offboarding during M&A transitions. + **Solution Design & Implementation:** Design, implement, and maintain IAM solutions including Single Sign-On (SSO), Multi-Factor Authentication (MFA), Privileged Access Management (PAM), and Role-Based Access Control (RBAC) frameworks. + **Security & Compliance:** Ensure IAM systems and processes comply with regulatory requirements (e.g., GDPR, HIPAA, SOX) and internal security policies, providing auditable records of access activities. Protect against data breaches by ensuring only authorized personnel can access sensitive information. + **Technical Troubleshooting & Support:** Troubleshoot, identify, and resolve technical identity and access management-related issues, providing expert support to internal teams and end-users during and after integration. + **Collaboration & Communication:** Coordinate cross-functional teams, including Information Security, IT Operations, HR, and Application Development, to ensure effective IAM implementation and seamless integration with business processes. Communicate complex security concepts to technical and non-technical stakeholders. + **Documentation & Best Practices:** Develop, review, and maintain comprehensive technical documentation, including architecture diagrams, configuration guides, and operational procedures. Stay up-to-date with IAM best practices, regulatory requirements, and security trends. **Qualifications:** + **Education:** Bachelor's degree in Computer Science, Information Technology, Information Security, or a related field, or equivalent practical experience. + **Experience:** 5+ years of progressive experience as an IAM Engineer, designing and implementing enterprise scale solutions with significant experience in supporting M&A integration projects preferred. + **Technical Expertise:** + Proficiency in directory services (e.g., Active Directory, Azure AD, LDAP). + Extensive knowledge and experience with authentication standards and technologies such as SSO (SAML, OAuth, OpenID Connect), MFA, and privileged access management (PAM). + Hands-on experience with leading IAM platforms (e.g., Okta, Microsoft Azure AD, CyberArk, ForgeRock, Ping Identity, SailPoint). + Experience with scripting languages (e.g., PowerShell, Python) for automation and integration. + Strong understanding of security principles, risk management, and access control models (e.g., RBAC). + Understanding of DevOps practices. + Familiarity with Zero Trust architecture principles. + Familiarity with AI/ML concepts and their practical application in security and risk management, especially in IAM context. + **M&A Specific Skills:** Proven track record of managing complex integration projects, including assessing existing IAM capabilities, workflow, systems, and processes of acquired entities. Ability to navigate the complexities of integrating diverse identity infrastructures. + Strong communication and interpersonal skills to collaborate effectively with various teams and stakeholders. + Detail-oriented mindset to ensure precise access control configurations and compliance. + Excellent problem-solving and analytical abilities to troubleshoot access issues and design solutions for unique business requirements + Must be a self-starter who takes full ownership of projects from inception to completion , holding oneself accountable for the security and operation integrity of IAM platform. + Ability to manage multiple priorities and meet tight deadlines in a fast-paced M&A environment. + Adaptability to stay ahead of evolving IAM technologies and security threats. **Anticipated salary range:** $94,900 - $135,600 **Bonus eligible:** No **Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being. + Medical, dental and vision coverage + Paid time off plan + Health savings account (HSA) + 401k savings plan + Access to wages before pay day with my FlexPay + Flexible spending accounts (FSAs) + Short- and long-term disability coverage + Work-Life resources + Paid parental leave + Healthy lifestyle programs **Application window anticipated to close:** 12/20/2025 *if interested in opportunity, please submit application as soon as possible. The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity. _Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._ _Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._ _To read and review this privacy notice click_ here (***************************************************************************************************************************

This role will provide security Incident Response (IR) services for our customers. IR activities would include all aspects of analysis, containment, eradication, and recovery, and would entail actions such as log reviews, malware analysis, evidence collection, and other forensic activities that are part of a cybersecurity incident investigation. This role will also advise on and deploy security technical solutions as well as perform internal and external oriented security assessments. These assessments range from deep technical security assessments, social engineering, broad-based risk, and security posture assessments. These assessments and services may be performed as individual projects or in a virtual Security Engineer (vSE) role. Additionally, this role will work with the Practice Manager - Digital Forensics & Incident Response to identify and develop new technical cybersecurity offerings. Roles and Responsibilities/ Essential Functions: Work as a member of the HBS Cybersecurity team that provides consultative and proactive security related support to Heartland's account base. Lead Incident Response cases from beginning to end, providing consulting and remediation efforts. Perform forensic analysis to identify systems artifacts which can be used as evidence of the “who, what, when, where, and how” during cybersecurity incident response activities or digital investigations. Serve as a Virtual Security Engineer (vSE) for customers. Obtain knowledge on other technologies, as directed by customer demand. Effectively present and explain security solutions to customers. Provide sales consultants and fellow Engineers with design assistance, review, validation, and optimization of security technologies and solutions. Contribute to product selection and research, configuration standards and best practices and educate our sales teams on these products and services so that they can sell them. Ability to work in a team atmosphere as both a leader and contributor, as assigned. Always maintaining a professional and respectful demeanor. Cross-training/Mentoring of other HBS employees. Participate in on-call to support the 24x7 IR services. Minimum of 1,350 hours billed per fiscal year prorated based on start date. These charge hour requirements will be balanced against professional development and on the job training. Requirements Competencies Accountability - Ability to accept responsibility and account for his/her actions. Active Listening - Ability to actively attend to, convey, and understand the questions of others. Adaptability - Ability to adapt to change in the workplace. Communication - Oral and Written - Ability to communicate effectively with others. Customer Oriented - Ability to take care of the customers' needs while following company policy. Decision Making - Ability to make critical decisions while following company procedures. Problem Solving - Ability to find a solution for or to deal proactively with work-related problems. Working Under Pressure - Ability to complete assigned tasks during stressful situations. Independence - Ability to work on your own to drive the desired results on assigned work. Required Experience: 8+ years of related IT experience 3+ years of AD and Azure experience Preferred Experience: 2+ years of experience handling and leading IR Experience with Digital Forensic handling and analysis Experience with Threat Hunting and analysis Experience with Active Directory specifically domain recovery Experience with Configuration on various firewall vendors and VPN Experience with Office 365 and Exchange Experience with Virtualization concepts and technologies (VMWare, Hyper-V) Experience with Data Center Operations (Networking, SAN/NAS, Servers) Required Skills, Education and/ or Certifications: Bachelor's degree or equivalent experience Preferred Skills, Education and/ or Certifications: CEH and/or CHFI or current industry standard certifications in areas of security expertise Equal Opportunity Employer - Including Disabled and Veterans #HBS

Arete Technologies, Inc. offers set of innovative Consulting and Outsourcing services, bridging the gap between requirements and outputs of various dexterous and facile companies worldwide. The thrust of providing global deliverables with focus on providing paramount and unsurpassed services combined with cost saving solutions to the clients We understand the business requirements in the present day corporate scenario and aspire to provide world-class services enabling the organization to burgeon and flourish while keeping the work-life balance intact. The Global delivery mechanism followed at Arete Technologies, Inc. saddles proficient schemas and unconventional channels to provide one-stop solutions for all your workforce needs. our Team is an exquisite amalgamation of vast experiences of over 30 years in IT Consulting and Staffing industry. Connoisseurs in the field of staff augmentation for IT, we operate on 24 by 7 model with an aim of providing affordable and adept professionals with an assurance of satisfaction for both Consultants and Clients. We are pre-eminent service providers in the field of staff augmentation, IT Consultancy, Software development, Web Development providing unexcelled services and focusing on both the employers and employees. Job Description Description: The security analyst is responsible for advising IPERS in all policies regarding security. -Knowledge and understanding of information risk concepts and principles, as a means of relating business, needs to security controls. -Knowledge of and experience in developing and documenting security architecture and plans, including strategic, tactical and project plans. -Proficiency in performing risk, business impact, control and vulnerability assessments. -Knowledge of network infrastructure, including routers, switches, firewalls, and the associated network protocols and concepts. -Technical knowledge of Microsoft Windows and a wide range of security technologies, such as network security appliances, identity, and access mgt tools Desired skills: -Good Qualities: -SafeNet Luna HSM administration -COOP/COG coordinator -Windows PKI administration -Network Forensics -Log parsing -Incident Response -Continuous Monitoring - Powershel l Scripting -HID Credential Management System administration -Varonis DatAdvantage, DatAlert, and DataPrivilege administration -Vormetric DSM administration - file level encryption product -OSINT - Open Source Intelligence gathering and analysis -End User security training program administration -Maldoc analysis Skill Required / Desired Amount Years of Experience -Manage vulnerability scans and assist administrators in verification and remediation with Tripwire IP360 -Proxy administration, configuration, and troubleshooting; Forcepoint Triton AP Web -SIEM configuration, management, and analysis; SolarWinds Log and Event Manager -Application Whitelisting administration; Carbon Black Enterprise Protection (formerly bit 9) -Windows Forensics and Investigations -Internal Policies compliance -Risk Management -Familiarity with implementing CIS Critical Security Controls and/or Australian Signals Directorate Essential Eight Qualifications Need local candidates Additional Information Best Regards, Paramjot Singh

FGL Holdings-the F&G family of insurance companies-is committed to helping Americans prepare for and live comfortably in their retirement. Through its subsidiaries, F&G is a leading provider of annuity and life insurance products. For nearly 60 years, we have offered annuity and life insurance products to those who are seeking safety, protection and income solutions to meet their needs. At F&G, we believe our culture is what makes our company great. In 2019, we received a Top Workplace award, which we credit to our employees' shared cultural values: Collaborative, Authentic, Dynamic and Empowered. We believe that by embracing these values, we will continue to build and strengthen the company, while being a great place to work. We recruit talented and committed individuals to join our team, and we provide opportunities for personal and professional growth. This is for a position as an Application Security Analyst on the IT Security and Risk team. Organization The Application Security Analyst helps improve and maintain the application security program by providing guidance pertaining to secure web development design and testing. The resource will partner with Business Systems, Solutions Delivery, Engineering, and Operations teams to educate, evangelize, and validate secure development practices. Duties and Responsibilities Primarily responsible for application security assessments and code review as part of the software development lifecycle (SDLC) Develop, educate, promote, and monitor the use of secure software development practices Work with developers to implement and refine security checkpoints in the SDLC Obtain and review all required artifacts as part of go, no go analyses at security checkpoint phases in the development cycle Continue to drive security evaluation earlier in the cycles through iterative security testing Develop secure coding standards that are based on industry-accepted best practices such as OWASP Guide, SANS CWE Top 25, or CERT Secure Coding to address common coding vulnerabilities Provide regular status reports on the security of the software within the organization Manage the application security scanning process, including analysis, communication and remediation verification Implement and Govern automated secure coding tools and processes (SAST, DAST) to review code as it is written, promoted through the development lifecycle, and into production Provide advisory services in secure coding practices to application development teams Perform security activities, including security design reviews, threat modeling, code auditing on internally& externally developed software Operate as incident responder for triage pertaining to web-based vulnerabilities Work with information security analysts to refine web application penetration testing methods and breadth of security services Assist with periodic security risk assessments, IT security audits, and management reporting Help Build, maintain, and enforce application security development policies, procedures & standards Experience and Education Requirements · Bachelor's degree in Computer Science, Information Systems, Engineering, Mathematics, Business, or 5 years IT experience · Minimum of 3 years of experience with commonly used programming tools, workflows, and concepts · Security training or education a plus (Ex: SANS/GIAC, ISC2, ISACA, EC-Council, Offensive Security, etc.) Preferred Skills and Abilities · Ability to read and understand code as well as ability to script · A strong understanding of Unix, Windows and network security skills · Possess excellent verbal and written communication skills and are able to navigate in an environment with both highly technical and highly nontechnical individuals · Have passion for technology, security and innovation · Familiarity with commonly used programming tools, workflows, and concepts · Ability to work independently and in a team-oriented, collaborative environment · Ability to conform to shifting priorities, demands, and timelines through analytical and problem-solving capabilities · Ability to remain flexible during times of change and react to project adjustments and alterations promptly, efficiently and positively · Must be able to learn, understand and apply new technologies · Ability to effectively prioritize and execute tasks Physical Demands and Work Environment Typical office environment #INDHP #LI-JS1

About the job Our client is all about working together to make an impact. As part of our team, you'll have the opportunity to grow, contribute, and gain experience that matters. We strive to be caring leaders, close partners, and responsive experts-always supporting each other to do our best work. Join us, and let's improve lives together. The Senior Technology Security Engineer will be responsible for the design, build, deploy and support of our clients Privileged Access Management (PAM) platform implemented in CyberArk Cloud, including infrastructure, servers, services and privileged accounts that are part of the overall IT ecosystem. The Senior Technology Security Engineer will collaborate with various teams to ensure the seamless integration and effective use of CyberArk for managing privileged access, monitoring, and securing sensitive accounts. Serves as an information security subject matter expert on highly complex enterprise projects, software, and hardware enhancements. Assesses information security risks, recommends risk treatment, coordinates risk acceptance and remediation, and ensures appropriate remediation occurs. Serves as PAM subject matter expert, collaborates with stakeholders, offers guidance, and serves as main security point of contact during project planning and implementation and maintains the vendor relationship. Collects and provides documentation for internal and external audits and assessments. Oversees assigned security tools/services and vendor life cycle management. Essential Functions Serves as an information security subject matter expert on highly complex enterprise projects, software, and hardware enhancements. Identifies information security risks, provides recommendations, builds, and configures solutions, and troubleshoots issues. Collaborates with IT and security teams on project plans and meets with stakeholders to assess impacts and dependencies. Leads project activities to ensure timely deliverables and supports the establishment of a roadmap by evaluating and recommending new tools Leads highly complex information security projects across all security teams. Designs, builds, deploys, and maintains information security systems, including identity governance and access management solutions. Ensures the efficient operation of information security systems and resolves intricate security problems. Researches, evaluates, and proposes new information security solutions. Aligns information security systems with architectural requirements and strategies. Provides implementation and cost estimates for new solutions, including training requirements and system administration processes Collaborates with stakeholders to ensure the efficient operation of information security systems in alignment with architectural requirements and strategies Identifies and documents of highly complex information technology risks, assesses risk levels, recommends risk treatment, coordinates risk acceptance and remediation, and ensures appropriate remediation occurs Serves as the primary contact on assigned internal and third-party IT processes, risk assessments, and audits. Provides advice to key stakeholders on the security-relevant impact of findings Serves as security subject matter expert, collaborates with stakeholders, offers guidance, and serves as main security point of contact during project planning and implementation Leads troubleshooting sessions and knowledge transfers to resolve security issues including identity governance and access management Recommends solutions for aligning technology areas with future needs Collects and provides documentation for internal and external audits and assessments Documents information security systems policies, procedures, standards, needed improvements, and guidelines Maintains the document life cycle, including periodic reviews, updates, and approval cycles Oversees assigned security tools/services and vendor life cycle management Schedules vendor meetings to review products, services, and vendor/tool roadmaps Drives renewals and new purchases through the our clients vendor management and purchase process Education & Experience Bachelor's degree, preferably in information security, information technology, or a related field, or equivalent relevant experience Eight years of experience in information security, identity and access management, or related roles, including at least four years of experience in information security Master's degree, preferably in information security, information technology, or a related field or equivalent related experience and six years of experience in information security, identity and access management, or related roles, including at least four years of experience in information security Information security certifications (CISSP, CCSP, CCSK, AWS, Azure, Security+, CEH, GSEC) preferred Prior experience in the insurance industry preferred Knowledge, Skills, & Abilities Advanced knowledge of information security and privacy standards, concepts, principles, technologies, and audit practices Advanced knowledge of information technology including network, servers, cloud, and PKI/cryptography and identity and access management technologies Excellent knowledge of identity and access management concepts, principles, technologies Excellent ability to assess and report on information technology risks Strong knowledge of Linux and Windows operating systems Strong knowledge of secure cloud solutions within AWS, Google, and/or Azure cloud platforms Strong ability to perform and create automation tasks with tools (i.e., PowerShell, Python) preferred Experience in designing, building, and maintaining information security systems Excellent analytical and problem-solving abilities Strong verbal and written communication skills Excellent ability to work effectively with others at varying levels Excellent documentation skills Ability to lead moderate to highly complex technology projects Desired Skills SailPoint File Access Manager CyberArk Privileged Cloud Atlassian BitBucket Atlassian Confluence AWS EC2, Lambda SharePoint

As a Security Engineer at Brale, you will work within an experienced, security-focused engineering team to help bolster existing defenses and use your industry experience to identify and reinforce weaknesses in applications, systems, and processes. You enjoy threat modeling, designing security protocols, discovering vulnerabilities in software systems, and working closely with the team to document and resolve known issues. Staying up to date on the latest threats and trends enables you to evolve the company's security posture. Your background in cryptography and secure coding will help Brale protect both on and off-chain assets by defining and building systems that leverage multi-party authorization and follow sound processes. (Bonus points if you have previously worked with blockchain technologies!) As a security engineer at a small startup, you will need to wear a lot of hats. Your responsibilities will include: Maintain threat models and other security-related system documentation. Coordinate penetration testing with independent test team and triage and drive resolution of any identified issues. Perform white-box security testing of security-critical features. Participate in the design process for application features and AWS platform infrastructure by defining security requirements and reviewing designs to ensure requirements are met and best practices are followed. Participate in the design and implementation of controls for regulatory and standards compliance. Define internal best practices for secure development and data handling, including key material management. Identify SIEM tooling needs and help select suitable solutions for our scale and budget. Maintain the security incident response plan and lead incident response in case of a security event. Understand the threat environment and establish and maintain monitoring for endpoints and application systems. Share knowledge with other engineering roles to improve overall understanding of security topics. Qualifications: Five or more years experience in a security engineering or related role Proven experience with a wide variety of different of aspects of security engineering, including network security, incident response, threat modeling, and identity and access management. Ability to identify and lead initiatives to improve information security without direct oversight. Strong communication skills for communicating with both technical and non-technical audiences in a remote environment.

Trustmark's mission is to improve wellbeing - for everyone. It is a mission grounded in a belief in equality and born from our caring culture. It is a culture we can only realize by building trust. Trust established by ensuring associates feel respected, valued and heard. At Trustmark, you'll work collaboratively to transform lives and help people, communities and businesses thrive. Flourish in a culture of diversity and inclusion where appreciation, mutual respect and trust are constants, not just for our customers but for ourselves. At Trustmark, we have a commitment to welcoming people, no matter their background, identity or experience, to a workplace where they feel safe being their whole, authentic selves. A workplace made up of diverse, empowered individuals that allows ideas to thrive and enables us to bring the best to our colleagues, clients and communities. We are seeking a highly skilled Cyber Security Engineer to join our team and play a pivotal role in safeguarding our organization's digital assets. The ideal candidate will possess a deep understanding of cybersecurity principles, a strong technical background, and a passion for protecting sensitive information. You will be responsible for engineering, implementing and monitoring security measures for the protection of Trustmark's computer systems, networks and information. The role helps identify and define system security requirements as well as develop detailed cyber security designs. **Responsibilities:** + Design, implement, and maintain security architectures, systems, and solutions to protect critical infrastructure and data. + Conduct vulnerability assessments and penetration testing to identify and mitigate risks. + Develop and implement security policies, standards, and procedures. + Monitor security systems and respond to incidents promptly and effectively. + Stay up-to-date with the latest cybersecurity threats and trends. + Collaborate with cross-functional teams to ensure security is integrated into all aspects of the business. + Provide technical guidance and support to internal stakeholders. **Qualifications:** + Bachelor's degree in Computer Science, Information Technology, or a related field or + 3-5 Years of network engineering or cyber engineering experience + Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO 27001). + Proficiency in network security, systems security, application security, and data security. + Hands-on experience with security tools and technologies (e.g., firewalls, intrusion detection systems, encryption, SIEM). + Excellent problem-solving and analytical skills. + Strong communication and interpersonal skills. + Ability to work independently and as part of a team. **Preferred Qualifications:** + Certifications such as CISSP, CISA, or CEH. + Experience with cloud security (e.g., AWS, Azure, GCP). + Knowledge of scripting and programming languages (e.g., Python, PowerShell). Brand: Trustmark Come join a team at Trustmark that will not only utilize your current skills but will enhance them as well. Trustmark benefits include health/dental/vision, life insurance, FSA and HSA, 401(k) plan, Employee Assistant Program, Back-up Care for Children, Adults and Elders and many health and wellness initiatives. We also offer a Wellness program that enables employees to participate in health initiatives to reduce their insurance premiums. **For the fourth consecutive year we were selected as a Top Workplace by the Chicago Tribune.** The award is based exclusively on Trustmark associate responses to an anonymous survey. The survey measured 15 key drivers of engaged cultures that are critical to the success of an organization. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, sexual identity, age, veteran or disability. Join a passionate and purpose-driven team of colleagues who contribute to Trustmark's mission of helping people increase wellbeing through better health and greater financial security. At Trustmark, you'll work collaboratively to transform lives and help people, communities and businesses thrive. Flourish in a culture where appreciation, mutual respect and trust are constants, not just for our customers but for ourselves. Introduce yourself to our recruiters and we'll get in touch if there's a role that seems like a good match. When you join Trustmark, you become part of an organization that makes a positive difference in people's lives. You will play a vital role in delivering on our mission of helping people increase wellbeing through better health and greater financial security. Our customers tell us they simply appreciate the personal attention and knowledgeable service. Others tell us we've changed their lives. At Trustmark, you'll be part of a close-knit team. You'll enjoy abundant opportunities to grow your career. That's why so many of our associates stay at Trustmark and thrive. Trustmark benefits from more than 100 years of experience but pairs that rich history with a palpable sense of optimism, growth and excitement for what's ahead - and beyond. This is a place where associates bring their whole selves to work each day. A place where you can be yourself. Whatever your beyond is, you can achieve it at Trustmark.

Mindlance is a national recruiting company which partners with many of the leading employers in IT, financial services, engineering, semiconductor, clinical and pharmaceutical domains. You can learn more about us at ***************** . Job Description · 3-7 years of experience in Information Security focusing on security solution design, engineering, implementation and assurance. · 3-5 years of experience defining and managing the implementation of controls to address access security and IT control requirements. · 3-5 years of experience working with Information Security and IT general controls, including experience defining and documenting controls using COBIT 4.1 or 5.0, the NIST Cybersecurity Framework, the ISO 27k framework, the SANS 20 critical controls or similar experience. · Deep understanding of Information Security technologies including firewalls, IDS/IPS, Password Vaults, CASBs, SIEM, IT GRC, DLP, etc. · Understanding of the regulatory environment and experience with regulators. · Comfort delivering tasks and assignments in an evolving and a maturing environment. · Application security experience and corresponding technologies (e.g. Jenkins). · Experience with the FFIEC Cyber Security Assessment Tool. · Applicable certifications (e.g. CISSP, CISA, CISM, CGEIT, CRISC). Additional Information All your information will be kept confidential according to EEO guidelines.

If you are a cyber security architect looking for an opportunity to grow, Emerson has an opening for you! Based in our Marshalltown, Iowa location, you will play a critical role in ensuring the security of our Industrial Automation and Control Systems (IACS) and Operational Technology products. You will work closely with multi-functional teams to embed security standard processes and frameworks into our product design, development, and deployment processes. Collaborating with the business Group Product Security Officer, this position will also coordinate with Emerson Enterprise Product Security resources to ensure compliance with Emerson's Product Security requirements and applicable reference architectures for all products in scope through product development activities, processes, and tools. IN THIS ROLE, YOUR RESPONSIBILITIES WILL BE: Develop Security Frameworks: Create and implement security control frameworks tailored to IACS products, ensuring compliance with industry standards and regulations. Risk Assessment: Conduct risk assessments and threat modeling to identify potential security vulnerabilities in product designs. Security Architecture: Design and review security architectures for IACS products, ensuring robust protection against cyber threats. Familiarity with reference and concept architectures such as; TOGAF, ISA 62443, NAMUR, and Zero Trust. Collaboration: Partner with development teams to communicate security requirements and promote secure design practices. Incident Response: Assist in responding to security incidents, guiding in root cause analysis and remediation. Compliance Monitoring: Monitor compliance with security frameworks and customer requirements, ensuring continuous improvement. Technical Leadership: Provide technical leadership and guidance to security and development teams, fostering a culture of security awareness and practice maturity. WHO YOU ARE: You pursue everything with energy, drive, and the need to finish. You always keep the end in sight and put in extra effort to meet deadlines. You create teamwork allowing others across the organization to achieve shared objectives. You partner with others to get work done. You achieve gained trust and support of others. You ask the right questions to accurately analyze situations. You evaluate pros and cons, risks and benefits of different solution options. For This Role, You Will Need: Bachelor's in Computer science, Cyber Security, Engineering, Information Security, or a related field. 5+ years of experience and familiarity with product security standards and initiatives or practical work experience related to the implementation of products, services, and solutions. 3 years of experience in security architecture, preferably in the industrial automation sector. Strong understanding of security standards and regulations (e.g., NIST, IEC 62443). Proficiency in threat and risk assessment, threat modeling, and secure architecture and design. Experience with secure coding practices and security testing methodologies. Experience in secure by design principles, standard processes, and the integration of security into preexisting development practices. Familiar with concepts such as secure development lifecycle, secure by design, and defense in depth. Familiar with Microsoft Office tools for effective communications and information management. Excellent communication skills with the ability to organize, prepare and make compelling presentations to non-technical customers. Self-motivated and able to work under timelines. Strong problem solving / interaction management skills Up to 25% travel expected. Strong organizational and collaboration skills Legal authorization to work in the United States without need for sponsorship now or in the future Preferred Qualifications that Set You Apart: Master's degree in Computer Science, Cyber Security, Engineering, Information Security, or a related field Problem-Solving: Ability to think critically and solve complex security challenges. Collaborative mentality with the ability to work effectively in a team environment. Continuous Learning: Commitment to staying updated with the latest security trends and technologies. Experience with industrial control systems (ICS) and operational technology (OT) security Experience with software bills of material (SBOM). Relevant certifications such as CISSP, CISM, or GIAC are preferred Our Culture & Commitment to You At Emerson, we prioritize a workplace where every employee is valued, respected, and empowered to grow. We foster an environment that encourages innovation, collaboration, and diverse perspectives-because we know that great ideas come from great teams. Our commitment to ongoing career development and growing an inclusive culture ensures you have the support to thrive. Whether through mentorship, training, or leadership opportunities, we invest in your success so you can make a lasting impact. We believe diverse teams, working together are key to driving growth and delivering business results. We recognize the importance of employee wellbeing. We prioritize providing flexible, competitive benefits plans to meet you and your family's physical, mental, financial, and social needs. We provide a variety of medical insurance plans, with dental and vision coverage, Employee Assistance Program, 401(k), tuition reimbursement, employee resource groups, recognition, and much more. Our culture offers flexible time off plans, including paid parental leave (maternal and paternal), vacation and holiday leave. Learn more about our Culture & Values. #LI-BA1 #LI-HYBRID

**About this role:** Wells Fargo is seeking a Lead Information Security Engineer - Palo Alto Firewalls to join our Chief Technology Office (CTO). Learn more about the career areas and business divisions at wellsfargojobs.com. We are looking for a skilled and driven Lead Information Security Engineer - Palo Alto Firewalls to join our team and contribute to the design, deployment, and ongoing support of secure, scalable network infrastructures. This role is ideal for professionals with a strong foundation in enterprise firewall technologies, particularly Palo Alto Networks and Fortinet, along with working knowledge of Cisco infrastructure products. You will be responsible for implementing and maintaining advanced security solutions, leading firewall migrations, and ensuring the integrity and performance of network security systems. A key part of this role involves using industry-standard migration tools to transition legacy systems to modern platforms with minimal disruption. The ideal candidate brings a proactive approach to problem-solving, a deep understanding of network security principles, and the ability to work across teams to align security strategies with business goals. Experience in multi-vendor environments and a willingness to adapt to evolving technologies will be highly valued. **Key Responsibilities:** + Design, implement, and maintain secure network infrastructures using Palo Alto Networks, Fortinet, and Cisco routing and switching products. + Lead and support firewall migration projects, including policy analysis, configuration translation, and deployment using tools such as Expedition, FortiConverter, SmartMove, and other vendor utilities. + Build and deploy new network security infrastructures, including greenfield implementations and expansion of existing environments. + Perform security policy reviews, rulebase optimization, and threat prevention tuning to align with best practices and compliance requirements. + Troubleshoot and resolve complex network security issues across multi-vendor environments, ensuring minimal downtime and optimal performance. + Collaborate with cross-functional teams (network, cloud, infrastructure, and application teams) to integrate security controls into enterprise architecture. + Maintain accurate and up-to-date documentation, including network diagrams, configuration standards, and operational procedures. + Monitor and respond to security events, alerts, and incidents, escalating as necessary and contributing to root cause analysis and remediation. + Participate in a rotational on-call schedule to provide after-hours support for critical network security incidents and maintenance activities. + Stay current with emerging threats, vulnerabilities, and technologies to continuously improve the organization's security posture. **Required Qualifications:** + 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education + 4+ years of hands-on experience in network security engineering, with a strong focus on enterprise-grade firewall platforms and secure network architecture. + 4+ years of experience configuring, managing, and troubleshooting firewalls and security management systems across Palo Alto Networks + 4+ years of experience in security policy design, rulebase optimization, and hardening of multi-vendor firewall environments to meet organizational and compliance standards. + 2+ years of experience in Panorama - template stacks, device groups, policy hierarchy, logging, reporting, custom dashboards, role-based control **Desired Qualifications:** + Industry certifications such as Palo Alto Networks Certified Network Security Administrator (PCNSA), Palo Alto Networks Certified Network Security Engineer (PCNSE), Fortinet Network Security Expert 4 or 5 (NSE4/5 + 2+ years of practical experience using firewall migration tools such as Expedition, FortiConverter, SmartMove + Proficiency in troubleshooting complex network and security issues across multi-vendor environments, including deep packet inspection, log analysis, and root cause identification + Strong understanding of network protocols, routing and switching, VPN technologies, NAT, and intrusion prevention systems + Familiarity with incident response, log analysis, and security monitoring tools + Familiarity with automation and scripting for network security tasks using tools like Python, Ansible, or Terraform + Familiarity with cloud security architectures and controls in AWS, Azure, or Google Cloud Platform + Exposure to SIEM platforms, log management, and threat intelligence tools + Ability to manage and prioritize multiple projects in a fast-paced, dynamic environment + Strong interpersonal skills and the ability to communicate technical concepts to non-technical stakeholders. + Ability to participate in a rotational on-call schedule and respond to after-hours incidents or maintenance tasks + Strong documentation skills and attention to detail **Job Expectations:** + This position offers a hybrid work schedule + This position is not eligible for Visa sponsorship + Relocation assistance is not available for this position + Flexibility to work in a 24/7 on-call environment **Pay Range** Reflected is the base pay range offered for this position. Pay may vary depending on factors including but not limited to achievements, skills, experience, or work location. The range listed is just one component of the compensation package offered to candidates. $119,000.00 - $224,000.00 **Benefits** Wells Fargo provides eligible employees with a comprehensive set of benefits, many of which are listed below. Visit Benefits - Wells Fargo Jobs (*************************************************************** for an overview of the following benefit plans and programs offered to employees. + Health benefits + 401(k) Plan + Paid time off + Disability benefits + Life insurance, critical illness insurance, and accident insurance + Parental leave + Critical caregiving leave + Discounts and savings + Commuter benefits + Tuition reimbursement + Scholarships for dependent children + Adoption reimbursement **Posting End Date:** 7 Dec 2025 ***** **_Job posting may come down early due to volume of applicants._** **We Value Equal Opportunity** Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements. **Applicants with Disabilities** To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo (****************************************************************** . **Drug and Alcohol Policy** Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy (********************************************************************** to learn more. **Wells Fargo Recruitment and Hiring Requirements:** a. Third-Party recordings are prohibited unless authorized by Wells Fargo. b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process. **Req Number:** R-494636

Meta Security is looking for a threat intelligence investigator with extensive experience in investigating cyber threats with an intelligence-driven approach. You will be proactively responding to a broad set of security threats, as well as tracking actor groups with an interest or capability to target Meta and its employees. You will also be identifying the gaps in current detections and preventions by long-term intelligence tracking and research, and working with cross-functional stakeholders to improve Meta's security posture. You will help the team establish, lead and execute multi-year roadmaps that improve research efficiency and quality across the team, and drive improvements to stakeholder management across a broad range of intelligence requirements. **Required Skills:** Detection & Response Security Engineer, Threat Intelligence Responsibilities: 1. Influence and align the team's vision and strategy. Collaboratively prioritize and deliver specific multi-year roadmaps and projects 2. Build, cultivate, and maintain impactful relationships with intelligence stakeholders to identify and facilitate solutions to increase the impact of the team's work 3. Refine operational metrics, key performance indicators, and service level objectives to measure Intelligence research and services 4. Lead cross-functional projects to improve the security posture of Meta's infrastructure, such as red team operations, surface detection coverage expansion and vulnerability management discussions 5. Track threat clusters posing threats to Meta's infrastructure and employees, and identify, develop and implement countermeasures on our corporate network 6. Investigate, mitigate, and forecast emerging technical trends and communicate effectively with actionable suggestions to different types of audiences 7. Work closely with incident responders to provide useful and timely intelligence to enrich ongoing investigations 8. Improve the tooling of threat cluster tracking and intelligence data integration to existing systems **Minimum Qualifications:** Minimum Qualifications: 9. 8+ years threat intelligence experience 10. B.S. or M.S. in Computer Science or related field, or equivalent experience 11. Be a technical and process subject matter expert regarding Security Operations and Threat Intelligence services 12. Experience developing and delivering information on threats, incidents and program status for leadership 13. Expertise with campaign tracking techniques and converting tracking results to long term countermeasures 14. Expertise with threat modeling frameworks, such as Diamond Model or/and MITRE ATT&CK framework 15. Experience intelligence-driven hunting to spot suspicious activities in the network and identify potential risks 16. Proven track record of managing and executing on short term and long term projects 17. Ability to work with a team spanning multiple locations/time zones 18. Ability to prioritize and execute tasks with minimal direction or oversight 19. Ability to think critically and qualify assessments with solid communications skills 20. Coding or scripting experience in one or more scripting languages such as Python or PHP **Preferred Qualifications:** Preferred Qualifications: 21. Experience recruiting, building, and leading technical teams, including performance management 22. Experience close collaborating with incident responders on incident investigations 23. Experience in threat hunting including leveraging intelligence data to proactively identify and iteratively investigates suspicious behavior across networks and systems 24. Familiarity with malware analysis or network traffic analysis 25. Familiarity with nation-state, sophisticated criminal, or supply chain threats 26. Familiarity with file-based or network-based rules and signatures for detection and tracking of complex threats, such as YARA or Snort 27. Experience in one or more query languages such as SQL 28. Experience authoring production code for threat intelligence tooling 29. Experience conducting large scale data analysis 30. Experience working across the broader security community **Public Compensation:** $177,000/year to $251,000/year + bonus + equity + benefits **Industry:** Internet **Equal Opportunity:** Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment. Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@fb.com.

Cardinal Health, Inc. (NYSE: CAH) is a global healthcare services and products company. We provide customized solutions for hospitals, healthcare systems, pharmacies, ambulatory surgery centers, clinical laboratories, physician offices and patients in the home. We are a distributor of pharmaceuticals and specialty products; a global manufacturer and distributor of medical and laboratory products; an operator of nuclear pharmacies and manufacturing facilities; and a provider of performance and data solutions. Working to be healthcare's most trusted partner, our customer-centric focus drives continuous improvement and leads to innovative solutions that improve the lives of people every day. With approximately 50,000 employees worldwide, Cardinal Health ranks among the top fifteen in the Fortune 500. **_Department Overview:_** **Information Technology** oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value. **Information Security and Risk** develops, implements, and enforces security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure, or destruction. This job family develops system back-up and disaster recovery plans, conducts incident responses, threat management, vulnerability scanning, virus management and intrusion detection as well as completes risk assessments. Lead IAM work for new customer onboardings and migrations. Collaborate with CAH Account Management, Application Teams, and Customers to design, implement, and test federated SSO solution based on customer login requirements. Provide technical guidance and act as primary point of contact for business partners and customer related to IAM work for onboarding. Additional responsibilities include supporting application integrations and enhancing SSO self service application onboarding. **Responsibilities:** + **Customer Onboarding IAM Efforts - Strategy & Execution :** Lead the planning, design, and execution for Customer Onboarding via federated SSO, ensuring alignment with overall business and security objectives. This includes assessing multiple Cardinal Health e-commerce applications, understanding login requirements for new/existing customers, designing, testing and implementing solutions etc to ensure top notch user login experience and enhancing Cardinal Health's security posture. + **Collaboration & Communication:** Coordinate cross-functional teams, including Customer Business and IT teams, Cardinal Health's Account Management/Sales and Application teams, Information Security and others to ensure effective IAM implementation and seamless integration with business processes. Communicate complex security concepts to technical and non-technical internal and external stakeholders. + **Application Integration Leadership:** Lead the integration of various enterprise applications (SaaS, on-premise, custom-built) with our core IAM infrastructure, ensuring secure authentication, authorization, and user provisioning/de-provisioning. + **User Lifecycle Management:** Streamline and automate user provisioning, de-provisioning, and periodic access reviews for employees, contractors, and partners across all integrated systems, ensuring smooth onboarding and offboarding during M&A transitions. + **Solution Design & Implementation:** Design, implement, and maintain IAM solutions including Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Role-Based Access Control (RBAC) frameworks. + **Technical Troubleshooting & Support:** Troubleshoot, identify, and resolve technical identity and access management-related issues, providing expert support to internal teams and end-users during and after integration. + **Documentation & Best Practices:** Develop, review, and maintain comprehensive technical documentation, including architecture diagrams, configuration guides, and operational procedures. Stay up-to-date with IAM best practices, regulatory requirements, and security trends. **Qualifications:** + **Education:** Bachelor's degree in Computer Science, Information Technology, Information Security, or a related field, or equivalent practical experience. + **Experience:** 5+ years of progressive experience as an IAM Engineer, designing and implementing enterprise scale solutions with significant experience in supporting M&A integration projects preferred. + **Technical Expertise:** + Extensive knowledge and experience with authentication standards and technologies such as SSO (SAML, OAuth, OpenID Connect), MFA + Proficiency in directory services (e.g., Active Directory, Azure AD, LDAP). + Hands-on experience with leading IAM platforms (e.g., Okta, Microsoft Azure AD, CyberArk, ForgeRock, Ping Identity, SailPoint). + Strong understanding of security principles, risk management, and access control models (e.g., RBAC). + Familiarity with Zero Trust architecture principles. + Familiarity with AI/ML concepts and their practical application in security and risk management, especially in IAM context. + Strong communication and interpersonal skills to collaborate effectively with various teams and stakeholders. + Detail-oriented mindset to ensure precise access control configurations and compliance. + Excellent problem-solving and analytical abilities to troubleshoot access issues and design solutions for unique business requirements + Must be a self-starter who takes full ownership of projects from inception to completion , holding oneself accountable for the security and operation integrity of IAM platform. + Ability to manage multiple priorities and meet tight deadlines in a fast-paced M&A environment. **Anticipated salary range:** $94,900 - $135,600 **Bonus eligible:** No **Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being. + Medical, dental and vision coverage + Paid time off plan + Health savings account (HSA) + 401k savings plan + Access to wages before pay day with my FlexPay + Flexible spending accounts (FSAs) + Short- and long-term disability coverage + Work-Life resources + Paid parental leave + Healthy lifestyle programs **Application window anticipated to close:** 12/20/2025 *if interested in opportunity, please submit application as soon as possible. The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity. _Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._ _Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._ _To read and review this privacy notice click_ here (***************************************************************************************************************************

Job DescriptionDescription: This role will provide security Incident Response (IR) services for our customers. IR activities would include all aspects of analysis, containment, eradication, and recovery, and would entail actions such as log reviews, malware analysis, evidence collection, and other forensic activities that are part of a cybersecurity incident investigation. This role will also advise on and deploy security technical solutions as well as perform internal and external oriented security assessments. These assessments range from deep technical security assessments, social engineering, broad-based risk, and security posture assessments. These assessments and services may be performed as individual projects or in a virtual Security Engineer (vSE) role. Additionally, this role will work with the Practice Manager - Digital Forensics & Incident Response to identify and develop new technical cybersecurity offerings. Roles and Responsibilities/ Essential Functions: Work as a member of the HBS Cybersecurity team that provides consultative and proactive security related support to Heartland's account base. Lead Incident Response cases from beginning to end, providing consulting and remediation efforts. Perform forensic analysis to identify systems artifacts which can be used as evidence of the “who, what, when, where, and how” during cybersecurity incident response activities or digital investigations. Serve as a Virtual Security Engineer (vSE) for customers. Obtain knowledge on other technologies, as directed by customer demand. Effectively present and explain security solutions to customers. Provide sales consultants and fellow Engineers with design assistance, review, validation, and optimization of security technologies and solutions. Contribute to product selection and research, configuration standards and best practices and educate our sales teams on these products and services so that they can sell them. Ability to work in a team atmosphere as both a leader and contributor, as assigned. Always maintaining a professional and respectful demeanor. Cross-training/Mentoring of other HBS employees. Participate in on-call to support the 24x7 IR services. Minimum of 1,350 hours billed per fiscal year prorated based on start date. These charge hour requirements will be balanced against professional development and on the job training. Requirements: Competencies Accountability - Ability to accept responsibility and account for his/her actions. Active Listening - Ability to actively attend to, convey, and understand the questions of others. Adaptability - Ability to adapt to change in the workplace. Communication - Oral and Written - Ability to communicate effectively with others. Customer Oriented - Ability to take care of the customers' needs while following company policy. Decision Making - Ability to make critical decisions while following company procedures. Problem Solving - Ability to find a solution for or to deal proactively with work-related problems. Working Under Pressure - Ability to complete assigned tasks during stressful situations. Independence - Ability to work on your own to drive the desired results on assigned work. Required Experience: 8+ years of related IT experience 3+ years of AD and Azure experience Preferred Experience: 2+ years of experience handling and leading IR Experience with Digital Forensic handling and analysis Experience with Threat Hunting and analysis Experience with Active Directory specifically domain recovery Experience with Configuration on various firewall vendors and VPN Experience with Office 365 and Exchange Experience with Virtualization concepts and technologies (VMWare, Hyper-V) Experience with Data Center Operations (Networking, SAN/NAS, Servers) Required Skills, Education and/ or Certifications: Bachelor's degree or equivalent experience Preferred Skills, Education and/ or Certifications: CEH and/or CHFI or current industry standard certifications in areas of security expertise Equal Opportunity Employer - Including Disabled and Veterans #HBS

Arete Technologies, Inc. offers set of innovative Consulting and Outsourcing services, bridging the gap between requirements and outputs of various dexterous and facile companies worldwide. The thrust of providing global deliverables with focus on providing paramount and unsurpassed services combined with cost saving solutions to the clients We understand the business requirements in the present day corporate scenario and aspire to provide world-class services enabling the organization to burgeon and flourish while keeping the work-life balance intact. The Global delivery mechanism followed at Arete Technologies, Inc. saddles proficient schemas and unconventional channels to provide one-stop solutions for all your workforce needs. our Team is an exquisite amalgamation of vast experiences of over 30 years in IT Consulting and Staffing industry. Connoisseurs in the field of staff augmentation for IT, we operate on 24 by 7 model with an aim of providing affordable and adept professionals with an assurance of satisfaction for both Consultants and Clients. We are pre-eminent service providers in the field of staff augmentation, IT Consultancy, Software development, Web Development providing unexcelled services and focusing on both the employers and employees. Job Description Description: Knowledge and understanding of information risk concepts and principles, as a means of relating business, needs to security controls. Knowledge of and experience in developing and documenting security architecture and plans, including strategic, tactical and project plans. Proficiency in performing risk, business impact, control and vulnerability assessments. Knowledge of network infrastructure, including routers, switches, firewalls, and the associated network protocols and concepts. Technical knowledge of Microsoft Windows and a wide range of security technologies, such as network security appliances, identity and access mgt tools Desired skills: Good Qualities: SafeNet Luna HSM administration COOP/COG coordinator Windows PKI administration Network Forensics Log parsing Incident Response Continuous Monitoring Powershell Scripting HID Credential Management System administration Varonis DatAdvantage, DatAlert, and DataPrivilege administration Vormetric DSM administration - file level encryption product OSINT - Open Source Intelligence gathering and analysis End User security training program administration Maldoc analysis Qualifications ***Local Candidate Strongly preferred*** Additional Information Best Regards, Amrit Lal

Job DescriptionAbout the job Our client is all about working together to make an impact. As part of our team, you'll have the opportunity to grow, contribute, and gain experience that matters. We strive to be caring leaders, close partners, and responsive experts-always supporting each other to do our best work. Join us, and let's improve lives together. The Senior Technology Security Engineer will be responsible for the design, build, deploy and support of our clients Privileged Access Management (PAM) platform implemented in CyberArk Cloud, including infrastructure, servers, services and privileged accounts that are part of the overall IT ecosystem. The Senior Technology Security Engineer will collaborate with various teams to ensure the seamless integration and effective use of CyberArk for managing privileged access, monitoring, and securing sensitive accounts. Serves as an information security subject matter expert on highly complex enterprise projects, software, and hardware enhancements. Assesses information security risks, recommends risk treatment, coordinates risk acceptance and remediation, and ensures appropriate remediation occurs. Serves as PAM subject matter expert, collaborates with stakeholders, offers guidance, and serves as main security point of contact during project planning and implementation and maintains the vendor relationship. Collects and provides documentation for internal and external audits and assessments. Oversees assigned security tools/services and vendor life cycle management. Essential Functions Serves as an information security subject matter expert on highly complex enterprise projects, software, and hardware enhancements. Identifies information security risks, provides recommendations, builds, and configures solutions, and troubleshoots issues. Collaborates with IT and security teams on project plans and meets with stakeholders to assess impacts and dependencies. Leads project activities to ensure timely deliverables and supports the establishment of a roadmap by evaluating and recommending new tools Leads highly complex information security projects across all security teams. Designs, builds, deploys, and maintains information security systems, including identity governance and access management solutions. Ensures the efficient operation of information security systems and resolves intricate security problems. Researches, evaluates, and proposes new information security solutions. Aligns information security systems with architectural requirements and strategies. Provides implementation and cost estimates for new solutions, including training requirements and system administration processes Collaborates with stakeholders to ensure the efficient operation of information security systems in alignment with architectural requirements and strategies Identifies and documents of highly complex information technology risks, assesses risk levels, recommends risk treatment, coordinates risk acceptance and remediation, and ensures appropriate remediation occurs Serves as the primary contact on assigned internal and third-party IT processes, risk assessments, and audits. Provides advice to key stakeholders on the security-relevant impact of findings Serves as security subject matter expert, collaborates with stakeholders, offers guidance, and serves as main security point of contact during project planning and implementation Leads troubleshooting sessions and knowledge transfers to resolve security issues including identity governance and access management Recommends solutions for aligning technology areas with future needs Collects and provides documentation for internal and external audits and assessments Documents information security systems policies, procedures, standards, needed improvements, and guidelines Maintains the document life cycle, including periodic reviews, updates, and approval cycles Oversees assigned security tools/services and vendor life cycle management Schedules vendor meetings to review products, services, and vendor/tool roadmaps Drives renewals and new purchases through the our clients vendor management and purchase process Education & Experience Bachelor's degree, preferably in information security, information technology, or a related field, or equivalent relevant experience Eight years of experience in information security, identity and access management, or related roles, including at least four years of experience in information security Master's degree, preferably in information security, information technology, or a related field or equivalent related experience and six years of experience in information security, identity and access management, or related roles, including at least four years of experience in information security Information security certifications (CISSP, CCSP, CCSK, AWS, Azure, Security+, CEH, GSEC) preferred Prior experience in the insurance industry preferred Knowledge, Skills, & Abilities Advanced knowledge of information security and privacy standards, concepts, principles, technologies, and audit practices Advanced knowledge of information technology including network, servers, cloud, and PKI/cryptography and identity and access management technologies Excellent knowledge of identity and access management concepts, principles, technologies Excellent ability to assess and report on information technology risks Strong knowledge of Linux and Windows operating systems Strong knowledge of secure cloud solutions within AWS, Google, and/or Azure cloud platforms Strong ability to perform and create automation tasks with tools (i.e., PowerShell, Python) preferred Experience in designing, building, and maintaining information security systems Excellent analytical and problem-solving abilities Strong verbal and written communication skills Excellent ability to work effectively with others at varying levels Excellent documentation skills Ability to lead moderate to highly complex technology projects Desired Skills SailPoint File Access Manager CyberArk Privileged Cloud Atlassian BitBucket Atlassian Confluence AWS EC2, Lambda SharePoint Powered by JazzHR T0AM7pwqj5

Meta Platforms, Inc. (Meta), formerly known as Facebook Inc., builds technologies that help people connect, find communities, and grow businesses. When Facebook launched in 2004, it changed the way people connect. Apps and services like Messenger, Instagram, and WhatsApp further empowered billions around the world. Now, Meta is moving beyond 2D screens toward immersive experiences like augmented and virtual reality to help build the next evolution in social technology. To apply, click "Apply to Job" online on this web page. **Required Skills:** Security Engineer Responsibilities: 1. Build tools that enable connectivity to our infrastructure only from Meta owned and managed devices. 2. Build machine attestation and secure certificate storage solutions to enable strong client trust. 3. Deploy systems that help mitigate security risks by understanding and controlling what software is allowed to execute on our client devices. 4. Develop, validate, and enforce our client security policies. 5. Build and deploy tools and automation that proactively detect and respond to security risks and threats to internal corporate services. 6. Advise and collaborate with other teams. 7. Telecommuting from anywhere in the U.S. allowed. **Minimum Qualifications:** Minimum Qualifications: 8. Requires Bachelor's Degree (or foreign equivalent) in Computer Science, Engineering or a related field and 1 year of experience in the job offered or a computer-related occupation 9. Requires 12 months of experience involving the following: 10. PHP, Golang, Python, C/C++, Rush, or Ruby 11. Designing and deploying security infrastructure such as PKI, key management, and certificate management 12. Endpoint Security & Management 13. Certificate Lifecycle 14. Devices & OS hardening and security policies 15. Identity & Access Management (Authentication & Authorization, SSO) 16. Network Security and 17. Programming and Code Review **Public Compensation:** $178,041/year to $200,200/year + bonus + equity + benefits **Industry:** Internet **Equal Opportunity:** Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment. Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@fb.com.

Cardinal Health, Inc. (NYSE: CAH) is a global healthcare services and products company. We provide customized solutions for hospitals, healthcare systems, pharmacies, ambulatory surgery centers, clinical laboratories, physician offices and patients in the home. We are a distributor of pharmaceuticals and specialty products; a global manufacturer and distributor of medical and laboratory products; an operator of nuclear pharmacies and manufacturing facilities; and a provider of performance and data solutions. Working to be healthcare's most trusted partner, our customer-centric focus drives continuous improvement and leads to innovative solutions that improve the lives of people every day. With approximately 50,000 employees worldwide, Cardinal Health ranks among the top fifteen in the Fortune 500. **_Department Overview:_** **Information Technology** oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value. **Information Security and Risk** develops, implements, and enforces security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure, or destruction. This job family develops system back-up and disaster recovery plans, conducts incident responses, threat management, vulnerability scanning, virus management and intrusion detection as well as completes risk assessments. **Responsibilities:** + **M&A Integration Execution:** Collaborate and engage with IAM Lead and other business partners on planning, design, and execution of IAM integration strategies for M&A activities, ensuring alignment with overall business and security objectives. This includes assessing the IAM landscapes of merging entities to identify challenges and solutions. + **Design and Implement Sailpoint IIQ Solutions:** Configure and customize Sailpoint IIQ components (Lifecycel Manager, Compliance Manager etc). Also develop workflows, rules, and connectors for identity governance. + **Application integration with Sailpoint IIQ:** Integrate Sailpoint IIQ with enterprise applications, directories and cloud platforms in addition to developing and maintaining connectros for provisioning and de-provisioning. + **Sailpoint IIQ Development and Scripting:** Write and maintain BeanShell scripts, Java code and XML configurations, develop customer Sailpoint tasks and workflows. + **Identity System Merging & Consolidation:** Manage the complex process of merging disparate identity providers, user directories (e.g., Active Directory, Azure AD, LDAP), and access management systems from acquired companies into the existing infrastructure. + **User Lifecycle Management:** Streamline and automate user provisioning, de-provisioning, and periodic access reviews for employees, contractors, and partners across all integrated systems, ensuring smooth onboarding and offboarding during M&A transitions. + **Security & Compliance:** Ensure IAM systems and processes comply with regulatory requirements (e.g., GDPR, HIPAA, SOX) and internal security policies, providing auditable records of access activities. Protect against data breaches by ensuring only authorized personnel can access sensitive information. + **Technical Troubleshooting & Support:** Troubleshoot, identify, and resolve technical identity and access management-related issues, providing expert support to internal teams and end-users during and after integration. + **Collaboration & Communication:** Coordinate cross-functional teams, including Information Security, IT Operations, HR, and Application Development, to ensure effective IAM implementation and seamless integration with business processes. Communicate complex security concepts to technical and non-technical stakeholders. + **Documentation & Best Practices:** Develop, review, and maintain comprehensive technical documentation, including architecture diagrams, configuration guides, and operational procedures. Stay up-to-date with IAM best practices, regulatory requirements, and security trends. **Qualifications** + Experience with SailPoint IdentityIQ (IIQ) is a must + Experience with SailPoint IIQ Integrations (Workday, Active Directory/LDAP, Webservices, SCIM, JDBC, SAP) + Experience implementing Life Cycle Manager (LCM) Configuration workflow tasks that model business functions, including Lifecycle Requests (Role or Entitlement), Lifecycle Events (Joiner, Mover, or Leaver), and LCM Workflow Details (Workflows and Subprocesses) + Solid understanding of the SailPoint object model, rules, and policies + Experience with both lifecycle manager (LCM) and compliance manager (CM) modules + Knowledge of Active Directory, LDAP, Workday, and cloud platforms (GCP, MS Entra ID) is required + Proven track record of successful IAM implementations including large scale enterprise deployments. + Experience working within regulatory standards and requirements such as, SOX, HIPAA, GDPR etc. is desired. **Anticipated salary range:** $94,900 - $135,600 **Bonus eligible:** No **Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being. + Medical, dental and vision coverage + Paid time off plan + Health savings account (HSA) + 401k savings plan + Access to wages before pay day with my FlexPay + Flexible spending accounts (FSAs) + Short- and long-term disability coverage + Work-Life resources + Paid parental leave + Healthy lifestyle programs **Application window anticipated to close:** 12/20/2025 *if interested in opportunity, please submit application as soon as possible. The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity. _Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._ _Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._ _To read and review this privacy notice click_ here (***************************************************************************************************************************