Security engineer jobs in Rocklin, CA - 106 jobs

We are the movers of the world and the makers of the future. We get up every day, roll up our sleeves and build a better world -- together. At Ford, we're all a part of something bigger than ourselves. Are you ready to change the way the world moves? The Enterprise Cyber Security Cloud Security team is responsible for working with other security and cloud services teams to ensure alignment and collaboration in securing Ford's public cloud infrastructure. The teams work closely together to identify security gaps in the cloud environments and address them. The Cloud Security team is responsible for identifying, evaluating, and recommending cloud security tools and functions to enhance security around Ford's public cloud. The team is also responsible for developing and managing the following Security Services in Ford's public cloud environments: - Cloud Security Automation Development - GCP/Azure Security Compliance - GCP VPC Service Control - GCP Cloud Armor/ Azure WAF **What you'll do...** + Partner with other Cloud Security team members to identify and develop automation for security related workflows and audits (VPC SC, DLP, Exceptions, Org Policy, etc..). + Lead evaluation and develop an understanding of tools needed to address security gaps. + Lead/Collaborate with EPEO Services teams on security gap remediation. **You'll have...** + Bachelor's degree in Computer Science, Information Technology or related OR a combination of education and experience + 5+ years of scripting and automation experience + Proven experience in developing and implementing automation using scripting languages such as + Python, PowerShell, or Go, particularly for API integrations, security tool orchestration, and custom audit scripts. + Solid understanding and practical experience with Git and GitHub for version control, collaborative development, and security automation pipeline management. + Familiarity with CI/CD pipelines and automated deployment tools (e.g., Jenkins, Azure DevOps, GitHub Actions) to integrate security automation into the software development lifecycle. + Knowledge of Infrastructure-as-Code (IaC) principles and tools like Terraform. + Strong knowledge of security best practices and guidelines (at the enterprise-level) related to GCP and Azure Cloud deployments as well as common web application frameworks + Understand the functionality and secure usage of various GCP services: VPCs, IAM, security groups, compute engine, cloud storage, Security Command Center, VPC Service Control, Cloud DLP and Cloud Armor + Customer focused and strong team orientation + Self-starter and fast-learner + Strong communication and interpersonal skills + Strong problem solving and Analytical/Reasoning skills + Strong drive for results and ability to work independently + Demonstrated commitment to quality and project timing + Familiarity with the agile project planning process and use of Rally. + Document processes & procedures and developing other documentation. **Even better, you may have...** + Understand the functionality and secure usage of various Azure services: Virtual Machines, Virtual Networks, Azure Active Directory, App Services, Azure SQL Databases, Storage Accounts, Kubernetes, Containers, Key vaults. You may not check every box, or your experience may look a little different from what we've outlined, but if you think you can bring value to Ford Motor Company, we encourage you to apply! As an established global company, we offer the benefit of choice. You can choose what your Ford future will look like: will your story span the globe, or keep you close to home? Will your career be a deep dive into what you love, or a series of new teams and new skills? Will you be a leader, a changemaker, a technical expert, a culture builder...or all of the above? No matter what you choose, we offer a work life that works for you, including: - Immediate medical, dental, vision and prescription drug coverage - Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care and more - Family building benefits including adoption and surrogacy expense reimbursement, fertility treatments, and more - Vehicle discount program for employees and family members and management leases - Tuition assistance - Established and active employee resource groups - Paid time off for individual and team community service - A generous schedule of paid holidays, including the week between Christmas and New Year's Day - Paid time off and the option to purchase additional vacation time. For a detailed look at our benefits, click here: ******************************* This position is a range of salary grades 7-8. Visa sponsorship is not available for this position. SOUTHEAST MI RESIDENTS: This role is posted as remote unless you reside within 50 miles of Dearborn, MI-in which case we request on-site presence up to 4 days a week. Candidates for positions with Ford Motor Company must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire. We are an Equal Opportunity Employer committed to a culturally diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status or protected veteran status. In the United States, if you need a reasonable accommodation for the online application process due to a disability, please call **************. \#LI-Remote **Requisition ID** : 54783

Integrated Resources, Inc., is led by a seasoned team with combined decades in the industry. We deliver strategic workforce solutions that help you manage your talent and business more efficiently and effectively. Since launching in 1996, IRI has attracted, assembled and retained key employees who are experts in their fields. This has helped us expand into new sectors and steadily grow. We've stayed true to our focus of finding qualified and experienced professionals in our specialty areas. Our partner-employers know that they can rely on us to find the right match between their needs and the abilities of our top-tier candidates. By continually exceeding their expectations, we have built successful ongoing partnerships that help us stay true to our commitments of performance and integrity. Our team works hard to deliver a tailored approach for each and every client, critical in matching the right employers with the right candidates. We forge partnerships that are meant for the long term and align skills and cultures. At IRI, we know that our success is directly tied to our clients' success. Job Description Hi, Hope you are doing well, I am sending you below job open with one of my direct client, Send me your most updated copy of your resume in word document ASAP Position: Security Engineer Location: Sacramento CA Duration 1 Year + Start Date : 15th April 2016 Basic Qualifications (minimum 2 years' experience) • Modern security, monitoring, and logging practices for system administration • Modern continuous monitoring tools • Experience with OAuth 2.0, Identity Management systems, and API authorization methods • Experience with code quality tools, especially pertaining to code security vulnerabilities • Experience with network level and application level security threats (i.e., SQL injection, DDOS, man in the middle attacks, etc.) Nice to Have Skills (minimum 2 years' experience): • Experience working with NIST 800-53 controls • Experience working with IBM Main Frame permissions (i.e. RACF) Additional Information Thanks nagesh 732-429-1641

Ready to be pushed beyond what you think you're capable of? At Coinbase, our mission is to increase economic freedom in the world. It's a massive, ambitious opportunity that demands the best of us, every day, as we build the emerging onchain platform - and with it, the future global financial system. To achieve our mission, we're seeking a very specific candidate. We want someone who is passionate about our mission and who believes in the power of crypto and blockchain technology to update the financial system. We want someone who is eager to leave their mark on the world, who relishes the pressure and privilege of working with high caliber colleagues, and who actively seeks feedback to keep leveling up. We want someone who will run towards, not away from, solving the company's hardest problems. Our ******************************** is intense and isn't for everyone. But if you want to build the future alongside others who excel in their disciplines and expect the same from you, there's no better place to be. While many roles at Coinbase are remote-first, we are not remote-only. In-person participation is required throughout the year. Team and company-wide offsites are held multiple times annually to foster collaboration, connection, and alignment. Attendance is expected and fully supported. The Application Security organization at Coinbase is seeking to hire an experienced Offensive Security Engineer specializing in Web3 penetration testing and Web3 bug bounty program management and optimization. In this role, you will collaborate with the Bug Bounty Program Lead to drive Web3 bug bounty triage, validation, and strategic initiatives aimed at increasing program efficiency, maturity, and hacker engagement. You will work closely with whitehat hackers, security engineers, and cross-functional teams to enhance Coinbase's security posture through an effective bug bounty program. Additionally, you will perform penetration tests on Web3 technologies and applications, ensuring the security of Coinbase's blockchain-based products and services. *What you'll be doing (ie. job duties):* * Conduct security assessments of Web3 products and services, including smart contracts, DeFi protocols, and blockchain infrastructure. * Collaborate with partner teams to enhance detection and response capabilities for Web3 vulnerabilities. * Stay informed on emerging security trends, advisories, and academic research in the Web3 space. * Lead Web3 bug bounty triage and validation, ensuring timely and accurate assessments of reported vulnerabilities. * Develop and implement strategies to incentivize high-quality bug bounty submissions and engage with the hacker community. * Manage the Web3 bug bounty program, including scope updates, researcher communication, and payout disbursements. * Analyze bug bounty data to identify trends, common vulnerabilities, and areas for improvement. * Collaborate with engineering teams to prioritize and remediate vulnerabilities identified through the bug bounty program. * Mentor and train junior security engineers in Web3 bug bounty triage and analysis. * Provide on-call support for critical Web3 bug bounty-related incidents. * Document and report on Web3 bug bounty metrics and program effectiveness. *What we look for in you (ie. job requirements):* * Bachelor's or Master's degree in Computer Science, Cybersecurity, Software Engineering, or a related field. * 3+ years of experience in Web3 application security and penetration testing. * Proven track record of identifying critical vulnerabilities across the blockchain protocol stack, Web2, and Web3 components. * Extensive knowledge of the blockchain ecosystem, including L1/L2 networks, DeFi protocols, and staking mechanisms. * Deep understanding of Web2 security concepts and common vulnerabilities (e.g., OWASP Top 10, SANS Top 25). * Strong analytical skills to identify trends and patterns in vulnerabilities. * Excellent communication skills for engaging with internal teams. * Passion for security and a drive to improve Web3 security posture. * Ability to work independently and take ownership of penetration testing initiatives. * Energy and self-drive for continuous learning in the rapidly evolving crypto space. * Excellence in clear, direct, and kind communication with technical and non-technical stakeholders. * Experience building relationships with product, engineering, and security teams. *Nice to haves:* * Participation in CTFs, bug bounty programs, or open-source security research. * Expertise in Application Security, Network Security, or Cloud Security. * Relevant security certifications (e.g., OSCP, GPEN). * Experience developing and implementing security tooling to support bug bounty triage and analysis. * Experience with bug bounty programs and platforms, including triage, validation, and researcher communication. * Strong analytical skills to identify trends and patterns in bug bounty submissions. * Excellent communication skills to effectively engage with bug bounty researchers. Position ID: P69494 \#LI-remote *Pay Transparency Notice:* Depending on your work location, the target annual salary for this position can range as detailed below. Full time offers from Coinbase also include bonus eligibility + equity eligibility**+ benefits (including medical, dental, vision and 401(k)). Pay Range: $152,405-$179,300 USD Please be advised that each candidate may submit a maximum of four applications within any 30-day period. We encourage you to carefully evaluate how your skills and interests align with Coinbase's roles before applying. Commitment to Equal Opportunity Coinbase is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, gender, national origin, age, disability, veteran status, sex, gender expression or identity, sexual orientation or any other basis protected by applicable law. Coinbase will also consider for employment qualified applicants with criminal histories in a manner consistent with applicable federal, state and local law. For US applicants, you may view the *********************************************** in certain locations, as required by law. Coinbase is also committed to providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation because of a disability for any part of the employment process, please contact us at accommodations*********************************** *Global Data Privacy Notice for Job Candidates and Applicants* Depending on your location, the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA) may regulate the way we manage the data of job applicants. Our full notice outlining how data will be processed as part of the application procedure for applicable locations is available ********************************************************** By submitting your application, you are agreeing to our use and processing of your data as required. *AI Disclosure* For select roles, Coinbase is piloting an AI tool based on machine learning technologies to conduct initial screening interviews to qualified applicants. The tool simulates realistic interview scenarios and engages in dynamic conversation. A human recruiter will review your interview responses, provided in the form of a voice recording and/or transcript, to assess them against the qualifications and characteristics outlined in the job description. For select roles, Coinbase is also piloting an AI interview intelligence platform to transcribe and summarize interview notes, allowing our interviewers to fully focus on you as the candidate. *The above pilots are for testing purposes and Coinbase will not use AI to make decisions impacting employment*. To request a reasonable accommodation due to disability, please contact accommodations[at]coinbase.com

Description & Requirements Maximus is seeking a qualified Sr. Technical/Security Analyst for multiple projects, current and upcoming. The qualified candidate will be involved in technical/security planning and assessment projects with potentially multiple state agencies. The position requires the candidate to produce/review security relevant documentation, such as system security plans, POA&Ms, assessment plans, etc., produce technical/security analyses, develop estimates, review and contribute to requirements for large systems-planning efforts in the Child Support, Child Welfare and/or Integrated Eligibility public-sector domains. The individual will report directly to a Senior Manager. Maximus is a matrix-managed organization, which means the individual will have secondary reporting relationships to one or more Project Managers, depending on which projects they are assigned. *This role is remote but requires working standard business hours in the US time zone of the client.* Essential Duties and Responsibilities: - Collaborate with project managers on various initiatives and projects to track progress and provide support as necessary. - Support leadership in ensuring that the project is delivered to specifications, is on time, and within budget. - Work closely with management and work groups to create and maintain work plan documents. - Track the status and due dates of projects. - Manage relationships with project staff responsible for projects. - Produce regular weekly and monthly status reports that could include; work plan status, target dates, budget, resource capacity, and other reports as needed. - Facilitate regular meetings and reviews. - Adhere to contract requirements and comply with all corporate policies and procedures. Job Specific Duties and Responsibilities: -Perform duties independently under the direction of their direct manager and/or Project Managers on specific projects. -Review project documentation and client materials and provide analysis of technical and security related topics. -Participate in client meetings and offer observations and insight on technical and security related topics. -Identify risk areas and potential problems that require proactive attention. -Review and author artifacts and other project documents and identify potential gaps, inconsistencies, or other issues that may put the project at risk. Such artifacts and documents may include but are not limited to: *System Security Plan *Plan of Action and Milestones (POA&M) *Security Assessment Plan *Risk Assessment reports *CMS ARC-AMPE forms and documentation *Data Conversion and Migration Management Plan *Deployment and/or roll-out plans -Perform security assessments, lead security audit and assessment activities, and provide direct security oversight support to assigned clients and projects. -Identify and escalate to the Senior Manager / Project Manager risks, alternatives, and potential quality issues. -Attend interviews, focus groups, or other meetings necessary to gather information for project deliverables in accordance with the project scope of work. -Attend project meetings with the client, subcontractors, project stakeholders, or other Maximus Team members, as requested by the Senior Manager / Project Manager. -Complete project work in compliance with Maximus standards and procedures. -Support team to complete assigned responsibilities as outlined in the Project schedule. -Support all other tasks assigned by Senior Manager / Project Manager. Minimum Requirements - Bachelor's degree in related field. - 7-10 years of relevant professional experience required. - Equivalent combination of education and experience considered in lieu of degree. Job Specific Requirements: -Be available to work during standard client business hours. Projects may involve clients from any US time zone, so it is possible that work outside of the individual's local business hours will be required. -Bachelor's degree from an accredited college or university, or equivalent work experience. -7+ years of experience in information security, with at least 3 years of security-compliance work in a regulated industry. -5+ years of experience working with HIPAA, NIST 800-53 and/or CMS MARS-E or ARC-AMPE security frameworks. -Familiar with operating systems: Windows, Linux/UNIX, OS/X. -Familiar with AI tools, capabilities. -Strong command of cloud computing topics. -Strong command of agile software development practices as well as waterfall development practices. -Strong desktop software skills: proficient in MS Office, Excel, Word, Project. -Ability to explain and communicate technical subjects to non-technical audiences. -Ability to develop advanced concepts, techniques, and standards requiring a high level of interpersonal and technical skills. -Ability to work independently. -Good organizational skills and the ability to manage multiple tasks and deadlines simultaneously. -Strong interpersonal and team building skills, as well as an understanding of client relationship building are essential. -Excellent verbal and writing skills and be comfortable working with customers. -Ability to multi-task with supervision. -Self-motivated fast learner. Preferred Skills: -Prefer a candidate with experience in the Health & Human Services industry, which may include working with programs such as Child Support, Child Welfare, or Integrated Eligibility (SNAP, TANF, and Medicaid). -Preference for security related certifications, such as the CISSP (Certified Information Systems Security Professional). EEO Statement Maximus is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, age, national origin, disability, veteran status, genetic information and other legally protected characteristics. Pay Transparency Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances. Accommodations Maximus provides reasonable accommodations to individuals requiring assistance during any phase of the employment process due to a disability, medical condition, or physical or mental impairment. If you require assistance at any stage of the employment process-including accessing job postings, completing assessments, or participating in interviews,-please contact People Operations at **************************. Minimum Salary $ 120,000.00 Maximum Salary $ 140,000.00

Who We Are Looking For We are seeking an experienced and reliable SOC Analyst with a focus on CCTV and alarm monitoring. The ideal candidate will have sharp situational awareness, excellent communication skills, and a collaborative mindset. Primary responsibilities include the real-time monitoring of video surveillance systems, intrusion alarms, and access control events, as well as coordinating with on-site security teams to ensure timely and effective incident response. In addition to monitoring physical security systems, the SOC Analyst will also assist in tracking global events from verified sources to identify any potential impacts to personnel or assets. Candidates must be capable of quickly analyzing incoming information, escalating incidents as appropriate, and drafting clear, concise communications for a broad internal audience. This role is critical to maintaining a secure and informed environment across all operational sites. What You Will Work On Monitor, assess and acknowledge all daily alerts, reported incidents from client personnel, and site intrusion detection alarms Monitor and administer access control, video management, and intrusion detection systems, including dispatch of security officers when needed while meeting the performance criteria Monitor events through open-source collection and coordination with local assets Respond to inbound calls from employees and security personnel providing customer service focused responses Write security incident investigation reports to provide situational awareness and communicate risks to management Monitor designated online tools to conduct situational awareness on social media platforms Collect, evaluate, and disseminate intelligence to support action plans based on credibility and likelihood Perform proactive threat intelligence gathering and response, including but not limited to: event monitoring, persons of interest, execution protection intelligence Contribute to procedures and processes to standardize and enhance risk management Work closely with various teams responsible for security, operations, and incident management Provide emergency and non-emergency security system monitoring, event dispatch, and emergency notification services Process and maintain a wide variety of files, logs, reports, and forms Responsible for performing, evidencing, and supporting all necessary tasks for audits Processing badge requests - Printing, deactivating, adding and removing access levels Be cross trained in all Analyst services This Job Description is not a comprehensive list of all required activities, duties, or responsibilities. Duties, responsibilities, and activities may change at the discretion of the leadership at any time with or without notice What You Will Bring 1-3+ years of experience in a Security Operations Analyst role preferred Bachelor's degree in a related field is strongly preferred. Either bachelor's degree or equivalent military experience Have an interest or direct experience in the following: Intelligence, Security Operations, Critical Incident Management or Corporate Security, Emergency Management Must be well-versed in current technologies and open-source search methodologies Must be a competent user of Microsoft Suite and Google Suite Must be willing to sign an NDA and maintain strict confidentiality Must be able to communicate effectively, both verbally and in writing Ability to maintain a professional demeanor during stressful situations Must be able to quickly adapt and excel in dynamic situations Demonstrated organizational and time management skills Successful client management experience A demonstrated history of effective conflict resolution skills Maintain composure in dealing with authorities, executives, clients, staff, and the public occasionally under conditions of urgency and in pressure situations Ability to attend training events and mandatory meetings that fall outside normal work hours Ability to work 8 to 12-hour shifts both days and nights Work Environment With or without reasonable accommodation, requires the physical and mental capacity to effectively perform all essential functions. In addition to other demands, the demands of the job include: Undergoing and meet company standards for background and reference checks, and drug tests if required Exposure to sensitive and confidential information Regular computer usage Ability to handle multiple tasks concurrently Manual dexterity required for occasional reaching and lifting of small objects and operating office equipment Occasional reaching with hands and arms, stooping, kneeling, crouching and/or crawling Must be flexible with the ability to work evenings, odd hours, and weekends with little notice Frequent sitting and/or standing

Your Role This role supports Stellarus within the Ascendiun Family of Companies. The Risk Management & Controls Assurance team delivers actional insights by quantifying IT and business risk to increase resilience while driving a security culture. We are seeking an Information Security Risk & Governance Specialist who will report to the Senior Manager. The successful candidate will be a highly experienced and proactive professional to lead regulatory compliance initiatives across the organization, with a focus on healthcare and technology-related standards. This senior individual contributor will be responsible for overseeing assessments and audits related to HIPAA, PCI-DSS, SOC 2, and other applicable frameworks, ensuring the organization maintains a strong security posture and meets all regulatory obligations. Our leadership model is about developing great leaders at all levels and creating opportunities for our people to grow - personally, professionally, and financially. We are looking for leaders that are energized by creative and critical thinking, building and sustaining high-performing teams, getting results the right way, and fostering continuous learning. Your Knowledge and Experience Requires a bachelor's degree or equivalent experience Requires at least 10 years of prior relevant experience Experience in portfolio management, preferably within an Agile or SAFe environment, JIRA experience a plus Experience partnering with all levels of management required Driven, energetic, team player with superior oral and written communication skills Strong analytical, organizational, and project management skills. Requires deep understanding of IT control frameworks; Artificial Intelligence Risk Management Framework is strongly preferred Desire one or more of the following: CRISC (Certified in Risk and Information Systems Control), CISM (Certified Information Security Manager), CISA (Certified Information Systems Auditor), CISSP (Certified Information Systems Security Professional) Your Work In this role, you will: Regulatory Program Leadership Serve as the primary point of contact for external audits, assessments, and regulatory inquiries. Develop and maintain compliance documentation, including policies, procedures, control matrices, and evidence repositories. Build plan and lead required assessments to comply with mandates and certifications (HIPAA, PCI DSS, SOC II, Type 2, etc.). Assessment & Audit Management Conduct internal gap analyses and risk assessments to identify areas of non-compliance or control weaknesses. Track and report on audit findings, remediation efforts, and compliance status to senior leadership. Cross-Functional Collaboration Partner with teams across the enterprise to ensure alignment with regulatory requirements and enterprise risk objectives. Provide subject matter expertise during product development, vendor onboarding, and system implementations to ensure compliance is embedded in processes. Policy & Control Frameworks Partner to maintain and enhance internal control frameworks aligned with regulatory standards and industry best practices (e.g., NIST, HITRUST, ISO 27001). Partner to ensure policies and procedures are up-to-date and reflect current regulatory expectations and organizational practices. Monitoring & Reporting Implement continuous monitoring processes for key compliance controls, findings and mitigation plans. Prepare and present compliance metrics, dashboards, and executive summaries to leadership and governance committees.

Pacific Coast Producers | Full-Time | On-Site | Exempt Salary Range: $110,000-$140,000/year (based on experience) Pacific Coast Producers (PCP) , a growing agricultural cooperative with food production facilities across the West Coast, is seeking a talented and innovative OT/ICS Security Engineer to join our team in Woodland, CA . PCP is dedicated to investing in its people and fostering a culture of service, where each employee can do their best to make affordable, high-quality food for customers across North America. We are seeking a highly skilled OT/ICS Security Engineer enhance the security posture of our Operational Technology (OT) and Industrial Control Systems (ICS) environments. This role is critical in ensuring the integrity, availability, and confidentiality of industrial networks, protecting critical infrastructure, and implementing robust cybersecurity strategies tailored to the unique needs of our industrial environments. Primary Duties & Responsibilities: This is a hands-on role that involves administering and implementing solutions, planning strategically, and resolving issues as they arise-all while maintaining sensitivity to plant and distribution center operations. Implement and Support OT/ICS security strategies that align with business goals and meet industry standards and regulatory requirements. Conduct risk assessments, manage vulnerabilities, and conduct security audits across operational technology systems. Collaborate with engineering, IT, and operations teams to integrate cybersecurity best practices into servers, PCs, SCADA, DCS, PLCs, and other industrial control systems. Monitor for cybersecurity threats, incidents, and anomalies impacting industrial assets, and coordinate appropriate response actions. Maintain OT security policies, procedures, and training programs to build awareness and strengthen security practices. Work closely with the CIO/CISO, VP of Operations, and Director of Engineering-teamwork and collaboration are critical to success in this role. Review existing architectures, identify security gaps, and recommend prioritized improvements with a risk-aware approach. Partner with external vendors and consultants to evaluate and implement new security technologies and solutions. Ensure security initiatives align with frameworks such as NIST CSF, ISA/IEC 62443, CIS Controls, and MITRE ATT&CK for ICS. Participate in incident response efforts for OT-related breaches, including forensic investigations and corrective action planning. Collaborate cross-functionally to audit and test networks, servers, and OT/ICS equipment to ensure system integrity and security Qualified candidates must have the following experience, education and skills: Bachelor's degree in Cybersecurity, Computer Science, Industrial Engineering, or a related field. 2+ years of cybersecurity experience, with at least 1 year specifically focused on OT/ICS environments. Strong networking background. Knowledge of SCADA, PLCs, DCS, HMIs, IIoT, and industrial network protocols such as Modbus, DNP3, OPC-UA, and BACnet. Some Hands-on experience with firewalls, IDS/IPS, network segmentation, and endpoint protection in OT environments. Strong analytical skills in threat detection, vulnerability management, and incident response. Excellent communication skills, with the ability to collaborate effectively with both technical and non-technical teams. Preferred Qualifications: Familiarity with risk management methodologies and compliance standards such as NERC CIP, ISO 27001, GDPR, and CISA guidelines . While not required, the following certifications are considered a plus: CISSP, GICSP, GRID, CISM, ISA/IEC 62443 Expert . The ability to strategize, document, and implement business continuity and disaster recovery. Salary Range $110,000-$140,000 per year; candidate will be paid based on their work experience and skills. This is a full-time , on-site role based at our Production Facility in Woodland, CA. Occasional travel to our other locations in California and Oregon will be required; frequency may vary based on business needs. The base salary range reflects the reasonable expectation for what the company anticipates paying for this role at the time of posting. The actual salary offered will depend on factors including, but not limited to: Relevant skills, education, and experience Job-related qualifications and certifications Internal pay equity Market conditions and business needs Why Join PCP? At PCP, we take care of our people. Here are just a few of the benefits full-time employees enjoy: Competitive pay with opportunities for advancement. This position is eligible for our annual profit-sharing bonus program. Medical, dental, and vision coverage for you and your family, starting the first of the month after you join us. Retirement plans to support your long-term security. Paid time off including vacation, holidays, parental leave, sick leave, and bereavement. Life and disability insurance plus an Employee Assistance Program. Development opportunities through online courses, classroom training, and on-the-job growth. The stability of a farmer-owned cooperative with more than 50 years of success. A mission-driven culture focused on feeding families across North America . If you are enthusiastic about securing industrial environments and ready to take on a leadership role in OT/ICS cybersecurity , we encourage you to apply and be part of our mission in safeguarding critical infrastructure. Sponsorship : This role is not eligible for current or future visa sponsorship. About PCP Summary Pacific Coast Producers, a cooperative owned by more than 165 family farmers who cultivate and transport diverse produce like tomatoes, peaches, pears, grapes, cherries, and others, was founded in 1971. The company operates processing and packaging facilities in California and Oregon and has a workforce of over 3,000 employees. PCP is committed to delivering top-quality products to customers in all channels of trade, such as foodservice distributors and grocery retailers throughout the United States and Canada. Our facility is located in Woodland, CA, a charming city in Yolo County, known for its rich agricultural history and small-town charm. With a historic downtown area, a thriving arts scene, and close proximity to Sacramento, Woodland offers a unique blend of rural and urban living. Additionally, the city has a strong economy and a growing business community, making it an ideal place to work and grow your career. AA/EEO Policy Statement Pacific Coast Producers is an affirmative action and equal opportunity employer. No employee or applicant will be discriminated against in any condition of employment because of race, color, national origin, sex, religion, age, disability, veteran status, or any other status protected by law.

Job Description Exciting Security Architect / Engineer - Zero Trust Architecture contract opportunity. Requirements 5 plus years of experience as a Security Architect / Engineer with expertise evaluating Zero Trust Architecture (ZTA). ZTA implementation roadmap (Plan, Schedule, and Decks), Cybersecurity Program and Architecture Risk Review and architect and engineer support for Zero Trust Architecture (ZTA) implementation activities Experience evaluating, recommending, and implementing commercial hardware and software security products to augment and enhance enterprise cybersecurity program. Experience with system, device, and application-level hardening and assessing the cybersecurity posture of software, hardware, and firmware. Experience with supporting an integrated, dynamic cyber defense and leveraging cybersecurity solutions to deliver cybersecurity operational services. Experience researching emerging technology, requisite security requirements, and emerging threats to develop a way forward to meet organizational goals B.S computer Science (CS), Management of Information Systems (MIS), Electrical Engineering (EE), or Cybersecurity from an accredited University. DESIRABLE QUALIFICATIONS: ISC2 Certified Information Systems Security Professional (CISSP), ISC2 Certified - Governance Risk and Compliance (CGRC) or Certified Authorization Professional (CAP), ISACA Certified Information Security Manager (CISM), ISACA Certified in Risk and Information Systems Control (CRISC), CompTIA Certified Advanced Security Practitioner (CASAP+), CompTIA Security+

Exciting Security Architect / Engineer - Zero Trust Architecture contract opportunity. Requirements 5 plus years of experience as a Security Architect / Engineer with expertise evaluating Zero Trust Architecture (ZTA). ZTA implementation roadmap (Plan, Schedule, and Decks), Cybersecurity Program and Architecture Risk Review and architect and engineer support for Zero Trust Architecture (ZTA) implementation activities Experience evaluating, recommending, and implementing commercial hardware and software security products to augment and enhance enterprise cybersecurity program. Experience with system, device, and application-level hardening and assessing the cybersecurity posture of software, hardware, and firmware. Experience with supporting an integrated, dynamic cyber defense and leveraging cybersecurity solutions to deliver cybersecurity operational services. Experience researching emerging technology, requisite security requirements, and emerging threats to develop a way forward to meet organizational goals B.S computer Science (CS), Management of Information Systems (MIS), Electrical Engineering (EE), or Cybersecurity from an accredited University. DESIRABLE QUALIFICATIONS: ISC2 Certified Information Systems Security Professional (CISSP), ISC2 Certified - Governance Risk and Compliance (CGRC) or Certified Authorization Professional (CAP), ISACA Certified Information Security Manager (CISM), ISACA Certified in Risk and Information Systems Control (CRISC), CompTIA Certified Advanced Security Practitioner (CASAP+), CompTIA Security+

TITLE: INFORMATION SECURITY ENGINEERSTATUS: EXEMPTREPORTS TO: MANAGER - INFORMATION SECURITYDEPARTMENT: IT - INFORMATION SECURITY CODE: 11264GRADE: 21S PAY GRADE: $110,500.00 - $117,000.00 ANNUALLY GENERAL DESCRIPTION: The Information Security Engineer is responsible for securing our sensitive data and critical assets from current and emerging threats for Golden 1. This position utilizes business knowledge and technical experience of cybersecurity to provide a secure environment for Golden 1's technology and information needs. The Information Security Engineer works closely with technology, application teams and business units to develop and test security structures designed to protect the computer and network infrastructure. This position is responsible for performing technical assessments of risks, threats and vulnerabilities related to new and existing information systems and supporting process within Golden 1 and external vendor connections. TASKS, DUTIES, FUNCTIONS: Analyze, assess, and respond to various internal and external threats identified by intrusion detection system (IDS)/intrusion prevention systems (IPS), web application firewall, vulnerability scan results and other data sources. Provide recommendations to IT management and monitor to ensure that recommendations are effectively implemented. Perform vulnerability assessments and penetration testing to identify exposures and risks, and report findings to management. Communicate and collaborate with partner teams, service owners, Information Security, and senior leadership to influence, prioritize, and drive the resolution of discovered security findings. Provide consultative security guidance on a constant stream of new products and technologies as a subject matter expert on Golden 1 projects and initiatives Advise and participate in the development of business systems designs, ensuring hardening standards and configurations meet information security policy and procedures. Work in conjunction with IT to ensure appropriate procedures and processes are in place and effective in the detection and prevention of system intrusions as well as in establishing and managing a functional anti- virus/malware/DLP policy. Determine ways to monitor, measure, test and report on the effectiveness and efficiency of information security controls as well as compliance with information security policies and procedure. Implementation, administration, and maintenance of IDS/IPS, URL filter, email gateway, certificate issuance and control, network management, identity access control, and other information security infrastructure and controls as necessary. Regularly review IDS/IPS/SIEM rules, wireless rogue access point detection configuration and procedures and practices to ensure optimal effectiveness of security in the business environment. Participate in creating access privileges, control structures and resources to ensure optimal efficiency and adherence to information security standards. Engage with internal and external auditors during examinations, providing support and assistance in addressing audit recommendations. Participate in the security development of network systems architecture, design, and ongoing review of system configuration in collaboration with relevant team members and external partners. Keep management updated on outstanding issues that are not resolved in a timely manner in accordance with established escalation procedures. Develop and maintain a clear understanding of the business area needs and incorporating these needs into technical solutions by updating, developing, and maintaining a thorough knowledge of credit union procedures, products, service, and data processing systems. Monitor state and federal laws and regulations related to credit union compliance including Gramm-Leach-Bliley Act (GLBA), Payment Card Industry (PCI), Sarbanes-Oxley Act (SOX), etc. - and privacy laws. Performs other job-related duties as necessary PHYSICAL SKILLS, ABILITIES, AND EXERTION UTILIZED IN THEPERFORMANCE OF THESE TASKS: Demonstrate strong oral and written communication skills with a focus on troubleshooting and error identification. Must possess sufficient manual dexterity to skillfully operate applicable computer hardware, a variety of hand tools and standard office equipment. ORGANIZATIONAL CONTACTS & RELATIONSHIPS: INTERNAL: All levels of staff and management. EXTERNAL: Vendors, service providers, organizational groups, and other financial institutions as needed. QUALIFICATIONS: EDUCATION: Bachelor of Science in Computer Science, Management Information Systems, Information Security Information Assurance or equivalent work experience. EXPERIENCE: 3 years' experience in organizational information security, cybersecurity, information assurance or providing security consulting services Working knowledge of traditional security controls and technologies, such as SIEM systems, IDS/IPS, public key infrastructure (PKI), IDAM systems, antivirus, and firewalls, in addition to newer offerings such as endpoint detection and response (EDR), threat intelligence platforms, security automation and orchestration, deception technologies and application controls Strong technical and analytical skills, with a background in technology design, implementation, and delivery Working knowledge SIEM systems, firewalls, threat intelligence, security automation and orchestration solutions, IDS/IPS, data loss prevention (DLP) and other network and system monitoring tools Demonstrates understanding of network systems and applications including: DNS, LDAP, virtualization, Database design/hardening, Email/secure messaging, Data Loss Prevention, and end point protection. Demonstrate understanding of the NIST CSF and tracking KPIs to validate the cybersecurity program Demonstrates understanding of Windows, Linux, and cloud computing technologies, including software-, infrastructure- and platform-as-a-service, as well as public, private and hybrid environments. Strong sense of ethics, integrity, and professionalism Demonstrates the ability to articulate methodologies and concepts; communicate effectively in providing technical guidance and expertise to management and other staff PHYSICAL REQUIREMENTS: Prolonged sitting throughout the workday to accomplish tasks. Availability for emergency and on call duty 24 hours a day, 7 days a week, as needed. Occasional travel may be required. Lift and carry communications equipment and computer hardware weighing up to fifty pounds. Corrected vision in the normal range required to configure, test, and troubleshoot network server hardware and data. Hearing within normal range. May work additional work hours to accomplish tasks. LICENSES/CERTIFICATIONS: One of the following security certifications: CEH, Security +, SSCP, SANS GIAC, PCNSA, or equivalent Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records. REV. 10/10/2025

Cardinal Health, Inc. (NYSE: CAH) is a global healthcare services and products company. We provide customized solutions for hospitals, healthcare systems, pharmacies, ambulatory surgery centers, clinical laboratories, physician offices and patients in the home. We are a distributor of pharmaceuticals and specialty products; a global manufacturer and distributor of medical and laboratory products; an operator of nuclear pharmacies and manufacturing facilities; and a provider of performance and data solutions. Working to be healthcare's most trusted partner, our customer-centric focus drives continuous improvement and leads to innovative solutions that improve the lives of people every day. With approximately 50,000 employees worldwide, Cardinal Health ranks among the top fifteen in the Fortune 500. **_Department Overview:_** **Information Technology** oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value. **Information Security and Risk** develops, implements, and enforces security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure, or destruction. This job family develops system back-up and disaster recovery plans, conducts incident responses, threat management, vulnerability scanning, virus management and intrusion detection as well as completes risk assessments. Lead IAM work for new customer onboardings and migrations. Collaborate with CAH Account Management, Application Teams, and Customers to design, implement, and test federated SSO solution based on customer login requirements. Provide technical guidance and act as primary point of contact for business partners and customer related to IAM work for onboarding. Additional responsibilities include supporting application integrations and enhancing SSO self service application onboarding. **Responsibilities:** + **Customer Onboarding IAM Efforts - Strategy & Execution :** Lead the planning, design, and execution for Customer Onboarding via federated SSO, ensuring alignment with overall business and security objectives. This includes assessing multiple Cardinal Health e-commerce applications, understanding login requirements for new/existing customers, designing, testing and implementing solutions etc to ensure top notch user login experience and enhancing Cardinal Health's security posture. + **Collaboration & Communication:** Coordinate cross-functional teams, including Customer Business and IT teams, Cardinal Health's Account Management/Sales and Application teams, Information Security and others to ensure effective IAM implementation and seamless integration with business processes. Communicate complex security concepts to technical and non-technical internal and external stakeholders. + **Application Integration Leadership:** Lead the integration of various enterprise applications (SaaS, on-premise, custom-built) with our core IAM infrastructure, ensuring secure authentication, authorization, and user provisioning/de-provisioning. + **User Lifecycle Management:** Streamline and automate user provisioning, de-provisioning, and periodic access reviews for employees, contractors, and partners across all integrated systems, ensuring smooth onboarding and offboarding during M&A transitions. + **Solution Design & Implementation:** Design, implement, and maintain IAM solutions including Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Role-Based Access Control (RBAC) frameworks. + **Technical Troubleshooting & Support:** Troubleshoot, identify, and resolve technical identity and access management-related issues, providing expert support to internal teams and end-users during and after integration. + **Documentation & Best Practices:** Develop, review, and maintain comprehensive technical documentation, including architecture diagrams, configuration guides, and operational procedures. Stay up-to-date with IAM best practices, regulatory requirements, and security trends. **Qualifications:** + **Education:** Bachelor's degree in Computer Science, Information Technology, Information Security, or a related field, or equivalent practical experience. + **Experience:** 5+ years of progressive experience as an IAM Engineer, designing and implementing enterprise scale solutions with significant experience in supporting M&A integration projects preferred. + **Technical Expertise:** + Extensive knowledge and experience with authentication standards and technologies such as SSO (SAML, OAuth, OpenID Connect), MFA + Proficiency in directory services (e.g., Active Directory, Azure AD, LDAP). + Hands-on experience with leading IAM platforms (e.g., Okta, Microsoft Azure AD, CyberArk, ForgeRock, Ping Identity, SailPoint). + Strong understanding of security principles, risk management, and access control models (e.g., RBAC). + Familiarity with Zero Trust architecture principles. + Familiarity with AI/ML concepts and their practical application in security and risk management, especially in IAM context. + Strong communication and interpersonal skills to collaborate effectively with various teams and stakeholders. + Detail-oriented mindset to ensure precise access control configurations and compliance. + Excellent problem-solving and analytical abilities to troubleshoot access issues and design solutions for unique business requirements + Must be a self-starter who takes full ownership of projects from inception to completion , holding oneself accountable for the security and operation integrity of IAM platform. + Ability to manage multiple priorities and meet tight deadlines in a fast-paced M&A environment. **Anticipated salary range:** $94,900 - $135,600 **Bonus eligible:** No **Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being. + Medical, dental and vision coverage + Paid time off plan + Health savings account (HSA) + 401k savings plan + Access to wages before pay day with my FlexPay + Flexible spending accounts (FSAs) + Short- and long-term disability coverage + Work-Life resources + Paid parental leave + Healthy lifestyle programs **Application window anticipated to close:** 12/20/2025 *if interested in opportunity, please submit application as soon as possible. The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity. _Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._ _Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._ _To read and review this privacy notice click_ here (***************************************************************************************************************************

Trustmark's mission is to improve wellbeing - for everyone. It is a mission grounded in a belief in equality and born from our caring culture. It is a culture we can only realize by building trust. Trust established by ensuring associates feel respected, valued and heard. At Trustmark, you'll work collaboratively to transform lives and help people, communities and businesses thrive. Flourish in a culture of diversity and inclusion where appreciation, mutual respect and trust are constants, not just for our customers but for ourselves. At Trustmark, we have a commitment to welcoming people, no matter their background, identity or experience, to a workplace where they feel safe being their whole, authentic selves. A workplace made up of diverse, empowered individuals that allows ideas to thrive and enables us to bring the best to our colleagues, clients and communities. We are seeking a highly skilled Cyber Security Engineer to join our team and play a pivotal role in safeguarding our organization's digital assets. The ideal candidate will possess a deep understanding of cybersecurity principles, a strong technical background, and a passion for protecting sensitive information. You will be responsible for engineering, implementing and monitoring security measures for the protection of Trustmark's computer systems, networks and information. The role helps identify and define system security requirements as well as develop detailed cyber security designs. **Responsibilities:** + Design, implement, and maintain security architectures, systems, and solutions to protect critical infrastructure and data. + Conduct vulnerability assessments and penetration testing to identify and mitigate risks. + Develop and implement security policies, standards, and procedures. + Monitor security systems and respond to incidents promptly and effectively. + Stay up-to-date with the latest cybersecurity threats and trends. + Collaborate with cross-functional teams to ensure security is integrated into all aspects of the business. + Provide technical guidance and support to internal stakeholders. **Qualifications:** + Bachelor's degree in Computer Science, Information Technology, or a related field or + 3-5 Years of network engineering or cyber engineering experience + Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO 27001). + Proficiency in network security, systems security, application security, and data security. + Hands-on experience with security tools and technologies (e.g., firewalls, intrusion detection systems, encryption, SIEM). + Excellent problem-solving and analytical skills. + Strong communication and interpersonal skills. + Ability to work independently and as part of a team. **Preferred Qualifications:** + Certifications such as CISSP, CISA, or CEH. + Experience with cloud security (e.g., AWS, Azure, GCP). + Knowledge of scripting and programming languages (e.g., Python, PowerShell). Brand: Trustmark Come join a team at Trustmark that will not only utilize your current skills but will enhance them as well. Trustmark benefits include health/dental/vision, life insurance, FSA and HSA, 401(k) plan, Employee Assistant Program, Back-up Care for Children, Adults and Elders and many health and wellness initiatives. We also offer a Wellness program that enables employees to participate in health initiatives to reduce their insurance premiums. **For the fourth consecutive year we were selected as a Top Workplace by the Chicago Tribune.** The award is based exclusively on Trustmark associate responses to an anonymous survey. The survey measured 15 key drivers of engaged cultures that are critical to the success of an organization. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, sexual identity, age, veteran or disability. Join a passionate and purpose-driven team of colleagues who contribute to Trustmark's mission of helping people increase wellbeing through better health and greater financial security. At Trustmark, you'll work collaboratively to transform lives and help people, communities and businesses thrive. Flourish in a culture where appreciation, mutual respect and trust are constants, not just for our customers but for ourselves. Introduce yourself to our recruiters and we'll get in touch if there's a role that seems like a good match. When you join Trustmark, you become part of an organization that makes a positive difference in people's lives. You will play a vital role in delivering on our mission of helping people increase wellbeing through better health and greater financial security. Our customers tell us they simply appreciate the personal attention and knowledgeable service. Others tell us we've changed their lives. At Trustmark, you'll be part of a close-knit team. You'll enjoy abundant opportunities to grow your career. That's why so many of our associates stay at Trustmark and thrive. Trustmark benefits from more than 100 years of experience but pairs that rich history with a palpable sense of optimism, growth and excitement for what's ahead - and beyond. This is a place where associates bring their whole selves to work each day. A place where you can be yourself. Whatever your beyond is, you can achieve it at Trustmark.

Country: United States of America Onsite U.S. Citizen, U.S. Person, or Immigration Status Requirements: Active and transferable U.S. government issued security clearance is required prior to start date. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance Security Clearance: DoD Clearance: Secret This position is responsible for implementing and enforcing the security compliance directives with hands-on execution and oversight for assigned programs and labs. The ISSO performs a combination of information system security compliance responsibilities and lab security sustainment responsibilities as the primary point of contact for sensitive engineering programs and their cybersecurity needs. Position will create, sustain, and enforce standard operating procedures developed from government compliance documents/regulations (NISPOM, DFARS, DAAPM, JSIG, etc.), while still being able to interpret and troubleshoot requests and tasks of volatile complexity. This position utilizes a wide variety of cybersecurity technologies and tools and requires knowledge and experience with a comprehensive selection of Information Technology skill sets. **This is an onsite position in Sterling, VA** What YOU will do: Responsible for designated information system compliance at system level; including but not limited to technical configuration analysis, change control facilitation, hardware/software management, audit and inspections, incident response and troubleshooting, etc. Responsible for the System Security Plan maintenance. Sitting member on Change Control boards, providing technical and compliance related. Ensure all users have the requisite security clearances, authorization, need-to-know, and provide security training and guidance. Collect, review, document, and archive security event logs, reports and files in accordance with the System Security Plan (SSP), reporting any anomalies. Monitor and analyze all available resources that track user activity, provide warnings of system vulnerabilities, and provide system performance information in accordance with cybersecurity plans and policies. Manage the tracking, accounting, safeguarding, and disposition of material assets associated with the secure systems. Communicate with customers in regard to secure system status and security posture. Possess and maintain technical competence and a working knowledge of system functions, security policies, technical security safeguards, and operational security measures. Understands implications of work and makes recommendations for solutions. Qualifications YOU Must Have: Typically requires a University Degree and minimum 2 years of prior relevant experience or an Advanced Degree in a related field If position is U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance. Must at minimum possess a DOD Secret clearance with eligibility to obtain a TS clearance as required. DoD 8570-compliant industry certification at IAM Level I (Security +). Qualifications We Prefer: Desired certifications: CGRC, CASP+ , Cisco (CCNA), CISSP, CISM Knowledge and/or experience with NIST SP 800-series RMF framework and guidelines. Knowledge and/or experience with STIGs, SCAP, Splunk or other system hardening and compliance, vulnerability assessment, and/or SIEM tools. Willingness to learn new technologies & take on new projects to grow experience. Ability to work in a high energy, fast paced environment, able to adapt to changing business needs. Highly self-directed and able to learn quickly with a strong ability to drive and deliver results. Comfort working with minimal daily supervision and to balance numerous priorities. Ability to remain calm and composed under pressure, in a fast-paced environment of rapidly changing demands. What We Offer: Some of our competitive benefits packages include: Medical, dental, and vision insurance. Three weeks of vacation for newly hired employees. Generous 401(k) plan that includes employer matching funds and separate. employer retirement contribution, including a Lifetime Income Strategy option. Tuition reimbursement program. Student Loan Repayment Program. Life insurance and disability coverage. Optional coverages you can buy pet insurance, home and auto insurance, additional life and accident insurance, critical illness insurance, group legal, ID theft protection. Birth, adoption, parental leave benefits. Ovia Health, fertility, and family planning. Adoption Assistance. Autism Benefit. Employee Assistance Plan, including up to 10 free counseling sessions. Healthy You Incentives, wellness rewards program. Doctor on Demand, virtual doctor visits. Bright Horizons, child, and elder care services. Teladoc Medical Experts, second opinion program. And more! Learn More & Apply Now! Do you want to be a part of something bigger? A team whose impact stretches across the world, and even beyond? At Collins Aerospace, our Mission Systems team helps civilian, military and government customers complete their most complex missions - whatever and wherever they may be. Our customers depend on us for intelligent and secure communications, missionized systems for specialized aircraft and spacecraft and collaborative space solutions. By joining our team, you'll have your own critical part to play in ensuring our customer succeeds today while anticipating their needs for tomorrow. Are you up for the challenge? Join our mission today. WE ARE REDEFINING AEROSPACE. * Please consider the following role type definitions as you apply for this role. Onsite: Employees who are working in Onsite roles will work primarily onsite. This includes all production and maintenance employees, as they are essential to the development of our products. Regardless of your role type, collaboration and innovation are critical to our business and all employees will have access to digital tools so they can work with colleagues around the world - and access to Collins sites when their work requires in-person meetings. At Collins, the paths we pave together lead to limitless possibility. And the bonds we form - with our customers and with each other -- propel us all higher, again and again. Apply now and be part of the team that's redefining aerospace, every day. As part of our commitment to maintaining a secure hiring process, candidates may be asked to attend select steps of the interview process in-person at one of our office locations, regardless of whether the role is designated as on-site, hybrid or remote. The salary range for this role is 75,800 USD - 144,200 USD. The salary range provided is a good faith estimate representative of all experience levels. RTX considers several factors when extending an offer, including but not limited to, the role, function and associated responsibilities, a candidate's work experience, location, education/training, and key skills.Hired applicants may be eligible for benefits, including but not limited to, medical, dental, vision, life insurance, short-term disability, long-term disability, 401(k) match, flexible spending accounts, flexible work schedules, employee assistance program, Employee Scholar Program, parental leave, paid time off, and holidays. Specific benefits are dependent upon the specific business unit as well as whether or not the position is covered by a collective-bargaining agreement.Hired applicants may be eligible for annual short-term and/or long-term incentive compensation programs depending on the level of the position and whether or not it is covered by a collective-bargaining agreement. Payments under these annual programs are not guaranteed and are dependent upon a variety of factors including, but not limited to, individual performance, business unit performance, and/or the company's performance.This role is a U.S.-based role. If the successful candidate resides in a U.S. territory, the appropriate pay structure and benefits will apply.RTX anticipates the application window closing approximately 40 days from the date the notice was posted. However, factors such as candidate flow and business necessity may require RTX to shorten or extend the application window. RTX is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or veteran status, or any other applicable state or federal protected class. RTX provides affirmative action in employment for qualified Individuals with a Disability and Protected Veterans in compliance with Section 503 of the Rehabilitation Act and the Vietnam Era Veterans' Readjustment Assistance Act. Privacy Policy and Terms: Click on this link to read the Policy and Terms

Join a multibillion-dollar global company that brings together amazing technology, people, and operational scale to become a powerhouse in the memory industry. Headquartered in Rancho Cordova, California, Solidigm combines elements of an established, successful technology company with the spirit, agility, and entrepreneurial mindset of a start-up. In addition to the U.S. headquarters and other facilities in the U.S., the company has international presence in Asia, Europe, and the Americas. Solidigm will continue to lead the world in innovating new Memory technologies with aspirations to be the #1 NAND memory company in the world. At Solidigm, we view problems as opportunities to define innovative solutions that hold the power to change the world and unleash the potential technological needs that the future holds. At Solidigm, we are One Team that fosters a diverse, equitable, and inclusive culture that embraces individual uniqueness and empowers us to bring our best selves to deliver excellence in support of Solidigm's vision and mission to be the go-to partner for optimized data storage solutions. You can be part of the takeoff of an innovative business that develops cutting-edge products, delivers strong business value for customers, provides an engaging workplace for its employees, and serves a greater impact on the world. This is a golden opportunity for the right applicant to join us and help design, build, and lead Solidigm. We want a diverse team of dedicated professionals who will not just be Solidigm team members but contribute to how we shape the future of the organization. We are seeking applicants who will grow and thrive in our culture; be customer inspired, trusting, innovative, team-oriented, inclusive, results driven, collaborative, passionate, and flexible. Job Description The Network Security Engineer (Level 7) is a hands-on technical specialist responsible for the engineering, configuration, maintenance, and operational support of Solidigm's global network security controls. This role serves as a Palo Alto Networks subject matter expert, supporting the configuration and operation of the enterprise firewall stack across data centers, labs, cloud environments, and remote access platforms. Primary responsibilities include global firewall operations, lab network segmentation, on-prem and cloud proxies, and supporting VPN security operations. This is an execution-focused, engineering-driven role with no people-management, MSP oversight, roadmap ownership, or governance leadership responsibilities. Essential Duties & Responsibilities Firewall Engineering & Operations (Primary Responsibility) Configure, maintain, and troubleshoot Palo Alto NGFWs, Panorama policies, security profiles, and routing. Perform firewall rule deployments, address/object updates, and security policy tuning. Maintain Cortex and Strata integrations aligned with the enterprise ELA framework. Monitor firewall system health, sessions, licensing, and platform performance. Perform packet captures, traffic analysis, and security event troubleshooting. Lab Network Segmentation (Secondary Responsibility) Configure segmentation policies and firewall rules for lab VLANs, research environments, and isolated network zones. Support secure connectivity between engineering labs, data centers, and development platforms. Validate segmentation controls through testing and routine verification. Proxy & Secure Web Gateway Operations Support the engineering and administration of: On-premise proxy appliances Cloud-based secure web gateways Perform policy changes, URL filtering updates, and certificate handling. Troubleshoot user proxy access issues and web security events. VPN & Remote Access Support Support day-to-day operations of Palo Alto Global Protect and remote access security controls. Troubleshoot authentication, tunnel stability, routing, and posture-based access issues. Ensure proper integration between VPN, RADIUS, and AD authentication services. Operational Support & Procedures Execute change requests for firewall, segmentation, VPN, and proxy environments. Respond to L2/L3 tickets related to global network security platforms. Maintain technical documentation for configurations, SOPs, and runbooks. Support incident response activities related to firewall or remote access infrastructure. Qualifications Bachelor's degree in IT, Engineering, Cybersecurity, or equivalent experience. 5-7 years of experience in network security engineering. Strong hands-on experience with Palo Alto firewalls, Panorama, security policies, objects, NAT, and routing. Experience with Cortex, Strata, and associated Palo Alto toolsets. Familiarity with: Global Protect VPN, Secure web gateways and proxies, Network segmentation, DNS/DHCP fundamentals (preferably Infoblox) Solid understanding of TCP/IP, BGP/OSPF, SSL/TLS, PKI, SAML/SSO. Preferred certifications: Palo Alto PCNSE, CCNP Security, Cloud networking cert (Azure/AWS) a plus. Additional Information The compensation range for this role is $91,500 - $157,300. Actual compensation is influenced by a variety of factors including but not limited to skills, experience, qualifications, and geographic location. This is a hybrid position that can be based out of Rancho Cordova CA, San Jose CA, or Longmont CO. Powered by SmartRecruiters - Candidate Privacy Policy

About GoodLeap:GoodLeap is a technology company delivering best-in-class financing and software products for sustainable solutions, from solar panels and batteries to energy-efficient HVAC, heat pumps, roofing, windows, and more. Over 1 million homeowners have benefited from our simple, fast, and frictionless technology that makes the adoption of these products more affordable, accessible, and easier to understand. Thousands of professionals deploying home efficiency and solar solutions rely on GoodLeap's proprietary, AI-powered applications and developer tools to drive more transparent customer communication, deeper business intelligence, and streamlined payment and operations. Our platform has led to more than $30 billion in financing for sustainable solutions since 2018. GoodLeap is also proud to support our award-winning nonprofit, GivePower, which is building and deploying life-saving water and clean electricity systems, changing the lives of more than 1.6 million people across Africa, Asia, and South America. Position Summary The GoodLeap security team is responsible for both business enablement and safeguarding the organization's information assets; it is involved in virtually all aspects of the business, from product safety and resilience, to building security paved roads, customer, partner, and regulatory trust, managing technology governance and compliance, and ensuring the privacy, and safety of GoodLeap's customers, partners, and employees information. The senior security engineer role provides a unique opportunity to shape the security and resilience of GoodLeap corporate systems, services, and operational processes. In this role, you will work closely with product, engineering, IT, and business teams within GoodLeap, acting as the key individual with both the authority and responsibility to ensure the safety and resilience of enterprise systems, products, and services. Your oversight will encompass: - Enterprise systems:Identifying potential misuse and abuse cases, proposing solutions to address these scenarios, and identifying product features, configuration settings, and/or mitigating or compensating controls to meet resilience requirements. - Build-time controls: Managing applications/products security controls and activities during development. - Runtime controls: Overseeing security measures at runtime, from prevention to detection and response. Additionally, you will be involved with aspects of internally built products and represent all areas of security, spanning governance, risk, and compliance (GRC) to security monitoring, for a number of departments/teams. You will also have the authority and ability to involve other security team members as needed. While you will take on multiple responsibilities-from advisor to builder and beyond-your primary focus will be designing and building security patterns and practices for services and processes, and fostering strong relationships with product, business, and engineering. Essential Job Duties & Responsibilities Lead, participate in, and contribute to partnerships between security, IT, General & Administrative teams, engineering, product, and operations teams to build, orchestrate, and automate security controls and services in GoodLeap enterprise systems, products, services, and operational processes. Identify potential misuse and abuse cases in enterprise systems, propose solutions to address these scenarios, and identify product features, configuration settings, and/or mitigating or compensating controls to meet resilience requirements. Support or develop components of the security analytics platform. Contribute to investigations, threat hunting, and incident response activities in a supporting role. Collaborate with the monitoring and response team to create playbooks for specific incident response scenarios related to the products and services you oversee. These investigations, incidents, and playbooks may address security, fraud, privacy, resilience, and related concerns. Support the security operations team with the vulnerability management lifecycle for products and services under your purview. Ensure technical alignment for the products and services you oversee with team initiatives, including GRC, security operations, and monitoring and response activities. Required Skills, Knowledge & Abilities Strong communicator with the ability to lead technical architecture discussions, drive technical decisions, and effectively communicate with non-technical audiences. Expertise in agile product lifecycles. Ideally, you have experience in a product manager or engineering manager role and understand how SaaS products (B2B, B2B2C, and B2C) are built, including roadmap planning and feature and defect prioritization. Experience with threat modeling methodologies, with the ability to create efficient and scalable approaches to conducting such assessments. Familiarity with AWS services, including KMS, SST, Container Registry, ELBs, Lambda, API Gateway, CloudTrail, and IAM (knowledge of GCP and/or Azure is a plus). Proven ability to establish credibility and build trust with business, engineers, and operational staff; confident yet humble. Hands-on experience with managing security for core enterprise systems, e.g., ERP, HCM, Salesforce, etc. Strong understanding of both human and non-human identity management and common enterprise and consumer authentication standards and use cases. Practical experience with CI/CD pipelines and DevOps tools, including Infrastructure-as-Code (IaC) tools like Terraform, Pulumi, or CDK; GitHub and GitHub Actions; artifact management; and secrets management tools like Doppler and HashiCorp Vault. Passionate about learning new technologies. While you're not expected to know everything, you should demonstrate a willingness and ability to learn as needed. Prior experience interfacing and supporting with G&A teams, internal product teams, and other cross-functional areas. Proficiency in writing automation scripts in multiple languages, with prior experience automating security processes in cloud or SaaS environments. Experience engaging with vendors in design partnerships. Experience overseeing vulnerability and threat management at the platform and application levels. Familiarity with penetration testing and red team exercises, including manual verification, exploitation, and lateral movement. Ability to balance a high-level view of security strategy with attention to detail, ensuring thorough and effective execution. In addition to the above salary, this role may be eligible for a bonus. Additional Information Regarding Job Duties and s: Job duties include additional responsibilities as assigned by one's supervisor or other managers related to the position/department. This job description is meant to describe the general nature and level of work being performed; it is not intended to be construed as an exhaustive list of all responsibilities, duties and other skills required for the position. The Company reserves the right at any time with or without notice to alter or change job responsibilities, reassign or transfer job position or assign additional job responsibilities, subject to applicable law. The Company shall provide reasonable accommodations of known disabilities to enable a qualified applicant or employee to apply for employment, perform the essential functions of the job, or enjoy the benefits and privileges of employment as required by the law. If you are an extraordinary professional who thrives in a collaborative work culture and values a rewarding career, then we want to work with you! Apply today! We are committed to protecting your privacy. To learn more about how we collect, use, and safeguard your personal information during the application process, please review our Employment Privacy Policy and Recruiting Policy on AI. We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.

Meta Security is looking for a threat intelligence investigator with extensive experience in investigating cyber threats with an intelligence-driven approach. You will be proactively responding to a broad set of security threats, as well as tracking actor groups with an interest or capability to target Meta and its employees. You will also be identifying the gaps in current detections and preventions by long-term intelligence tracking and research, and working with cross-functional stakeholders to improve Meta's security posture. **Required Skills:** Security Engineer - IR Threat Intelligence Responsibilities: 1. Track threat clusters posing threats to Meta's infrastructure and employees, and identify, develop and implement countermeasures on our corporate network 2. Investigate, mitigate, and forecast emerging technical trends and communicate effectively with actionable suggestions to different types of audiences 3. Work closely with incident responders to provide useful and timely intelligence to enrich ongoing investigations 4. Improve the tooling of threat cluster tracking and intelligence data integration to existing systems 5. Engage constructively in cross-functional projects to improve the security posture of Meta's infrastructure, such as red team operations, surface detection coverage expansion and vulnerability management discussions **Minimum Qualifications:** Minimum Qualifications: 6. 5+ years threat intelligence experience 7. Bachelor's degree or equivalent experience in Security 8. Familiarity with campaign tracking techniques and ability to convert the tracking results to long term countermeasures 9. Familiarity with threat modeling framework, such as Diamond Model or/and MITRE ATT&CK framework 10. Experience intelligence-driven hunting to spot suspicious activities in the network and identify potential risks 11. Proven track record of managing and executing on short term and long term projects 12. Ability to work with a team spanning multiple locations/time zones 13. Ability to prioritize and execute tasks with minimal direction or oversight 14. Ability to think critically and qualify assessments with solid communications skills 15. Coding or scripting experience in one or more scripting languages such as Python or PHP **Preferred Qualifications:** Preferred Qualifications: 16. Experience close collaborating with incident responders on incident investigations 17. Familiarity with malware analysis or network traffic analysis 18. Familiarity with nation-state, sophisticated criminal, or supply chain threats 19. Production of file-based or network-based rules and signatures for detection and tracking of complex threats, such as YARA or Snort 20. Experience in one or more query languages such as SQL 21. Experience writing production code for threat intelligence tooling 22. Experience conducting large scale data analysis 23. Experience working across the broader security community **Public Compensation:** $154,000/year to $217,000/year + bonus + equity + benefits **Industry:** Internet **Equal Opportunity:** Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment. Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@fb.com.

Your Role This role supports Stellarus within the Ascendiun Family of Companies. The Risk Management & Controls Assurance team delivers actionable insights by quantifying IT and business risk to increase resilience while driving a security culture. Reporting to the Senior Manager, in this role, we are seeking a highly experienced and strategic individual contributor to lead the development, implementation, and governance of our enterprise-wide Business Continuity and Disaster Recovery (BC/DR) program. This role will be responsible for ensuring organizational resilience through effective planning, risk assessment, and coordination across business units and technology teams. Our leadership model is about developing great leaders at all levels and creating opportunities for our people to grow - personally, professionally, and financially. We are looking for leaders that are energized by creative and critical thinking, building and sustaining high-performing teams, getting results the right way, and fostering continuous learning. Your Knowledge and Experience Requires a bachelor's degree or equivalent experience Requires at least 10 years of prior relevant experience Experience in portfolio management, preferably within an Agile or SAFe environment, JIRA experience is a plus Experience partnering with all levels of management required Driven, energetic, team player with superior oral and written communication skills Proven track record of leading enterprise BC/DR programs in complex environments Requires deep understanding of BC/DR frameworks, methodologies, and technologies. Strong analytical, organizational, and project management skills. Ability to work independently and influence cross-functional teams. Desire one or more of the following: CBCP (Certified Business Continuity Planning Professional)- highly desired, CRISC (Certified in Risk and Information Systems Control), CISM (Certified Information Security Manager), CISA (Certified Information Systems Auditor), CISSP (Certified Information Systems Security Professional) Your Work In this role, you will: Program Development & Governance Design and implement a comprehensive Business Continuity (BC)/Disaster Recovery (DR) framework aligned with industry standards (e.g., ISO 22301, NIST SP 800-34), including an incident command center. Establish governance structures, policies, and procedures to support BC/DR initiatives. Develop and maintain BC/DR program documentation, including charters, plans, and metrics Establish and implement critical technology to support management of plans and alerts for enterprise Risk Assessment & Impact Analysis Conduct Business Impact Analyses (BIAs) and risk assessments to identify critical business functions and dependencies. Collaborate with stakeholders to define Recovery Time Objectives (RTOs) and Recovery Point Objectives (RPOs). Plan Development & Maintenance Lead the creation and maintenance of Business Continuity Plans (BCPs) and Disaster Recovery Plans (DRPs) across departments. Ensure plans are updated regularly to reflect changes in business operations, technology, and risk landscape across departments. Develop and implement an incident command center, includes but not limited to, defining playbooks, critical roles and responsibilities, plan and roadmap. Testing & Exercises Design and execute BC/DR testing strategies, including tabletop exercises, failover tests, and full-scale simulations. Analyze test results and drive continuous improvement initiatives. Identify and assign high risk findings to be addressed by owners Audit & Compliance Ensure compliance with regulatory requirements, association mandates, and internal audit standards. Prepare and present reports to senior leadership and auditors. Vendor & Third-Party Coordination Assess and coordinate with third-party BC/DR capabilities and ensure alignment with organizational standards.

Pacific Coast Producers | Full-Time | On-Site | Exempt Salary Range: $110,000-$140,000/year (based on experience) Pacific Coast Producers (PCP), a growing agricultural cooperative with food production facilities across the West Coast, is seeking a talented and innovative OT/ICS Security Engineer to join our team in Woodland, CA. PCP is dedicated to investing in its people and fostering a culture of service, where each employee can do their best to make affordable, high-quality food for customers across North America. We are seeking a highly skilled OT/ICS Security Engineer enhance the security posture of our Operational Technology (OT) and Industrial Control Systems (ICS) environments. This role is critical in ensuring the integrity, availability, and confidentiality of industrial networks, protecting critical infrastructure, and implementing robust cybersecurity strategies tailored to the unique needs of our industrial environments. Primary Duties & Responsibilities: This is a hands-on role that involves administering and implementing solutions, planning strategically, and resolving issues as they arise-all while maintaining sensitivity to plant and distribution center operations. Implement and Support OT/ICS security strategies that align with business goals and meet industry standards and regulatory requirements. Conduct risk assessments, manage vulnerabilities, and conduct security audits across operational technology systems. Collaborate with engineering, IT, and operations teams to integrate cybersecurity best practices into servers, PCs, SCADA, DCS, PLCs, and other industrial control systems. Monitor for cybersecurity threats, incidents, and anomalies impacting industrial assets, and coordinate appropriate response actions. Maintain OT security policies, procedures, and training programs to build awareness and strengthen security practices. Work closely with the CIO/CISO, VP of Operations, and Director of Engineering-teamwork and collaboration are critical to success in this role. Review existing architectures, identify security gaps, and recommend prioritized improvements with a risk-aware approach. Partner with external vendors and consultants to evaluate and implement new security technologies and solutions. Ensure security initiatives align with frameworks such as NIST CSF, ISA/IEC 62443, CIS Controls, and MITRE ATT&CK for ICS. Participate in incident response efforts for OT-related breaches, including forensic investigations and corrective action planning. Collaborate cross-functionally to audit and test networks, servers, and OT/ICS equipment to ensure system integrity and security Qualified candidates must have the following experience, education and skills: Bachelor's degree in Cybersecurity, Computer Science, Industrial Engineering, or a related field. 2+ years of cybersecurity experience, with at least 1 year specifically focused on OT/ICS environments. Strong networking background. Knowledge of SCADA, PLCs, DCS, HMIs, IIoT, and industrial network protocols such as Modbus, DNP3, OPC-UA, and BACnet. Some Hands-on experience with firewalls, IDS/IPS, network segmentation, and endpoint protection in OT environments. Strong analytical skills in threat detection, vulnerability management, and incident response. Excellent communication skills, with the ability to collaborate effectively with both technical and non-technical teams. Preferred Qualifications: Familiarity with risk management methodologies and compliance standards such as NERC CIP, ISO 27001, GDPR, and CISA guidelines. While not required, the following certifications are considered a plus: CISSP, GICSP, GRID, CISM, ISA/IEC 62443 Expert. The ability to strategize, document, and implement business continuity and disaster recovery. Salary Range $110,000-$140,000 per year; candidate will be paid based on their work experience and skills. This is a full-time, on-site role based at our Production Facility in Woodland, CA. Occasional travel to our other locations in California and Oregon will be required; frequency may vary based on business needs. The base salary range reflects the reasonable expectation for what the company anticipates paying for this role at the time of posting. The actual salary offered will depend on factors including, but not limited to: Relevant skills, education, and experience Job-related qualifications and certifications Internal pay equity Market conditions and business needs Why Join PCP? At PCP, we take care of our people. Here are just a few of the benefits full-time employees enjoy: Competitive pay with opportunities for advancement. This position is eligible for our annual profit-sharing bonus program. Medical, dental, and vision coverage for you and your family, starting the first of the month after you join us. Retirement plans to support your long-term security. Paid time off including vacation, holidays, parental leave, sick leave, and bereavement. Life and disability insurance plus an Employee Assistance Program. Development opportunities through online courses, classroom training, and on-the-job growth. The stability of a farmer-owned cooperative with more than 50 years of success. A mission-driven culture focused on feeding families across North America. If you are enthusiastic about securing industrial environments and ready to take on a leadership role in OT/ICS cybersecurity, we encourage you to apply and be part of our mission in safeguarding critical infrastructure. Sponsorship: This role is not eligible for current or future visa sponsorship. About PCP Summary Pacific Coast Producers, a cooperative owned by more than 165 family farmers who cultivate and transport diverse produce like tomatoes, peaches, pears, grapes, cherries, and others, was founded in 1971. The company operates processing and packaging facilities in California and Oregon and has a workforce of over 3,000 employees. PCP is committed to delivering top-quality products to customers in all channels of trade, such as foodservice distributors and grocery retailers throughout the United States and Canada. Our facility is located in Woodland, CA, a charming city in Yolo County, known for its rich agricultural history and small-town charm. With a historic downtown area, a thriving arts scene, and close proximity to Sacramento, Woodland offers a unique blend of rural and urban living. Additionally, the city has a strong economy and a growing business community, making it an ideal place to work and grow your career. AA/EEO Policy Statement Pacific Coast Producers is an affirmative action and equal opportunity employer. No employee or applicant will be discriminated against in any condition of employment because of race, color, national origin, sex, religion, age, disability, veteran status, or any other status protected by law.

Cardinal Health, Inc. (NYSE: CAH) is a global healthcare services and products company. We provide customized solutions for hospitals, healthcare systems, pharmacies, ambulatory surgery centers, clinical laboratories, physician offices and patients in the home. We are a distributor of pharmaceuticals and specialty products; a global manufacturer and distributor of medical and laboratory products; an operator of nuclear pharmacies and manufacturing facilities; and a provider of performance and data solutions. Working to be healthcare's most trusted partner, our customer-centric focus drives continuous improvement and leads to innovative solutions that improve the lives of people every day. With approximately 50,000 employees worldwide, Cardinal Health ranks among the top fifteen in the Fortune 500. **_Department Overview:_** **Information Technology** oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value. **Information Security and Risk** develops, implements, and enforces security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure, or destruction. This job family develops system back-up and disaster recovery plans, conducts incident responses, threat management, vulnerability scanning, virus management and intrusion detection as well as completes risk assessments. We are seeking a highly skilled and experienced Identity and Access Management (IAM) Engineer to join our team. In this pivotal role, you will be instrumental in designing, implementing, and managing IAM solutions that secure our enterprise applications and facilitate the secure, efficient, and seamless integration of identity and access systems in context of our rapid growth through Mergers and Acquisitions. You will ensure robust access controls, streamline user experiences, and maintain operational continuity across our diverse IT landscape. The ideal candidate will have deep technical expertise in modern IAM principles, protocols and products along with strong management and communication skills. **Responsibilities:** + **Application Integration Leadership:** Lead the integration of various enterprise applications (SaaS, on-premise, custom-built) with our core IAM infrastructure, ensuring secure authentication, authorization, and user provisioning/de-provisioning. + **M&A Integration Strategy & Execution:** Lead the planning, design, and execution of IAM integration strategies for M&A activities, ensuring alignment with overall business and security objectives. This includes assessing the IAM landscapes of merging entities to identify challenges and solutions. + **Identity System Merging & Consolidation:** Manage the complex process of merging disparate identity providers, user directories (e.g., Active Directory, Azure AD, LDAP), and access management systems from acquired companies into the existing infrastructure. + **User Lifecycle Management:** Streamline and automate user provisioning, de-provisioning, and periodic access reviews for employees, contractors, and partners across all integrated systems, ensuring smooth onboarding and offboarding during M&A transitions. + **Solution Design & Implementation:** Design, implement, and maintain IAM solutions including Single Sign-On (SSO), Multi-Factor Authentication (MFA), Privileged Access Management (PAM), and Role-Based Access Control (RBAC) frameworks. + **Security & Compliance:** Ensure IAM systems and processes comply with regulatory requirements (e.g., GDPR, HIPAA, SOX) and internal security policies, providing auditable records of access activities. Protect against data breaches by ensuring only authorized personnel can access sensitive information. + **Technical Troubleshooting & Support:** Troubleshoot, identify, and resolve technical identity and access management-related issues, providing expert support to internal teams and end-users during and after integration. + **Collaboration & Communication:** Coordinate cross-functional teams, including Information Security, IT Operations, HR, and Application Development, to ensure effective IAM implementation and seamless integration with business processes. Communicate complex security concepts to technical and non-technical stakeholders. + **Documentation & Best Practices:** Develop, review, and maintain comprehensive technical documentation, including architecture diagrams, configuration guides, and operational procedures. Stay up-to-date with IAM best practices, regulatory requirements, and security trends. **Qualifications:** + **Education:** Bachelor's degree in Computer Science, Information Technology, Information Security, or a related field, or equivalent practical experience. + **Experience:** 5+ years of progressive experience as an IAM Engineer, designing and implementing enterprise scale solutions with significant experience in supporting M&A integration projects preferred. + **Technical Expertise:** + Proficiency in directory services (e.g., Active Directory, Azure AD, LDAP). + Extensive knowledge and experience with authentication standards and technologies such as SSO (SAML, OAuth, OpenID Connect), MFA, and privileged access management (PAM). + Hands-on experience with leading IAM platforms (e.g., Okta, Microsoft Azure AD, CyberArk, ForgeRock, Ping Identity, SailPoint). + Experience with scripting languages (e.g., PowerShell, Python) for automation and integration. + Strong understanding of security principles, risk management, and access control models (e.g., RBAC). + Understanding of DevOps practices. + Familiarity with Zero Trust architecture principles. + Familiarity with AI/ML concepts and their practical application in security and risk management, especially in IAM context. + **M&A Specific Skills:** Proven track record of managing complex integration projects, including assessing existing IAM capabilities, workflow, systems, and processes of acquired entities. Ability to navigate the complexities of integrating diverse identity infrastructures. + Strong communication and interpersonal skills to collaborate effectively with various teams and stakeholders. + Detail-oriented mindset to ensure precise access control configurations and compliance. + Excellent problem-solving and analytical abilities to troubleshoot access issues and design solutions for unique business requirements + Must be a self-starter who takes full ownership of projects from inception to completion , holding oneself accountable for the security and operation integrity of IAM platform. + Ability to manage multiple priorities and meet tight deadlines in a fast-paced M&A environment. + Adaptability to stay ahead of evolving IAM technologies and security threats. **Anticipated salary range:** $94,900 - $135,600 **Bonus eligible:** No **Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being. + Medical, dental and vision coverage + Paid time off plan + Health savings account (HSA) + 401k savings plan + Access to wages before pay day with my FlexPay + Flexible spending accounts (FSAs) + Short- and long-term disability coverage + Work-Life resources + Paid parental leave + Healthy lifestyle programs **Application window anticipated to close:** 12/20/2025 *if interested in opportunity, please submit application as soon as possible. The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity. _Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._ _Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._ _To read and review this privacy notice click_ here (***************************************************************************************************************************