Security Engineer Jobs in San Jose, CA

Job Title: Senior Embedded Security Engineer Employment Type: [Full-Time / Contract] Industry: Automotive / Embedded Systems / Cybersecurity We are seeking a Senior Embedded Security Engineer with deep technical expertise in embedded systems security to join a fast-paced, cutting-edge team developing next-generation automotive and IoT technologies. This role is critical to ensuring secure boot processes, low-level hardware protection, and comprehensive cybersecurity validation. Key Responsibilities: Lead and execute security validation efforts across embedded systems. Develop, implement, and assess secure boot mechanisms. Perform vulnerability assessments and penetration testing at the hardware/software boundary. Conduct JTAG and boundary scan testing with security-focused analysis. Design and run test suites for low-level hardware security features. Collaborate with software, hardware, and system architects to define robust security requirements. Support integration of automotive communication protocols (CAN, LIN, DoIP) from a security standpoint. Script and automate test processes and data analysis using Python. Document findings, provide risk assessments, and suggest mitigation strategies. Required Skills & Experience: 5+ years of hands-on experience in embedded system security. Proven expertise in secure boot, trusted execution environments, and hardware root of trust. Deep knowledge of JTAG, SWD, and hardware debug interfaces from a security lens. Strong experience in security validation and test methodology at the hardware and firmware levels. Solid programming/scripting with Python for test automation and analysis. Familiarity with automotive protocols such as CAN, LIN, and DoIP. In-depth understanding of common embedded security threats and defenses (e.g., side-channel, fault injection, secure firmware update). Preferred Qualifications: Experience in the automotive industry or with AUTOSAR and ISO 26262 environments. Certifications in embedded or cybersecurity (e.g., CEH, OSCP, GICSP) are a plus. Who You Are: A superstar in embedded security with a passion for deep technical challenges. Comfortable working independently and collaboratively across teams. Driven by excellence, with strong problem-solving and critical thinking skills.

About the Role We are seeking an outstanding Lead Security Engineer with a specialized focus on AI to innovate and safeguard Hinge Health's digital ecosystem against emerging threats. You'll be at the forefront of a rapidly evolving landscape, leading initiatives that redefine how AI supports security operations while ensuring robust data protection. This is your chance to make a profound impact on millions of lives by driving advancements in the healthcare industry, ensuring utmost security, compliance and privacy. As a Lead Security Engineer, you will be at the forefront of architecting and implementing secure, scalable, and cutting-edge solutions on AWS. Your role will be responsible for securing Hinge Health's digital assets against potential threats while still maintaining seamless accessibility for authorized users. You love the thrill of exploring new technologies and ensuring they meet the highest security standards and are passionate about the intersection of security and Artificial Intelligence. Your expertise in healthcare, compliance, and agile methodologies will lead the implementation of top-notch AI security best practices to shape the future of a secure and scalable Cloud environment. The ideal candidate should be passionate about security and eager to drive change, embrace challenges, and take healthcare security to new heights. What You'll Accomplish AI Enablement for Security Operations: Design, implement, and optimize AI-driven tools to enhance security monitoring, threat detection, incident response, and IAM tasks. Secure AI Implementation: Develop and enforce policies and protocols to protect AI tools and platforms from misuse, data breaches, and external threats. Stay abreast of industry trends and changing threat landscape and review technologies and services and make recommendations to continuously improve our capabilities. Provide solutions to complex security problems with new services: Design and deliver security solutions for new services by evaluating potential risks, stakeholder needs, and available tooling as well as custom solutions. Security, Compliance and Regulations: Meet all compliance regulations including HIPAA, privacy, and other relevant security frameworks. Ensure that new services introduced into our environment adhere to all relevant compliance obligations. Take a proactive approach to mitigate potential risks. Cyber Security Operations: Develop and drive cybersecurity initiatives related to incident response, threat intelligence, vulnerability management, monitoring, and reporting tools - to continuously improve and expand capabilities. Identity and Access Management: Design and implement IAM solutions - enabling secure and granular access controls for users and applications, enforcing least privilege principles, and utilizing automation and AI for privilege escalation, approvals, and overall developer experience. Security Governance, Auditing and Assessment: Collaborate with internal and external auditors to ensure continuous compliance with security standards. Work closely with engineering, IT, and compliance teams to align security measures with organizational goals and industry standards. Basic Qualifications Bachelor's degree in technical/engineering/scientific area or comparable education/experience. 7+ years in cybersecurity, with 3+ years focused on security operations or IAM. 5+ years of experience in cloud security operations, specifically AWS. 3+ years of coding experience. Hands-on experience securing AI/ML systems, including data pipelines, model deployments, API integrations, and their security challenges. Expert knowledge of enterprise IT infrastructure technology, systems, vulnerability, and incident management processes. Experience developing Terraform and updating existing infrastructure as code to conform with security standards. Preferred Qualifications AWS Solutions Architect Certification. AI/ML certifications are a plus. Familiarity with adversarial machine learning threats and mitigation strategies. SOC, PCI, HIPAA training certifications. Knowledge of low-level networking principles. Deep, low-level understanding of OAUTH2 and SAML. Compensation This position will have an annual salary, plus equity and benefits. Please note the annual salary range is a guideline, and individual total compensation will vary based on factors such as qualifications, skill level, competencies, and work location. The annual salary range for this position is $192,000 - $288,000. About Hinge Health Hinge Health is moving people beyond pain by transforming the way it is treated and prevented. Connecting people digitally and in-person with expert clinical care, we combine advanced technology, AI, and a care team of experts to guide people through personalized care directly from their phone. Our approach is proven to reduce pain by 68%, prevent 42% of new opioid prescriptions, and avoid more than half of joint replacement surgeries. Available to 18M people, Hinge Health is trusted by leading health plans and employers. What You'll Love About Us Inclusive healthcare and benefits: On top of comprehensive medical, dental, and vision coverage, we offer employees and their family members help with gender-affirming care, tools for family and fertility planning, and travel reimbursements if healthcare isn't available where you live. Planning for the future: Start saving for the future with our traditional or Roth 401k retirement plan options which include a 2% company match. Modern life stipends: Manage your own learning and development. Diversity and Inclusion We're committed to building diverse teams that reflect the communities we serve. Hinge Health is an equal opportunity employer and prohibits discrimination and harassment of any kind. We make employment decisions without regards to race, color, religion, sex, sexual orientation, gender identity, national origin, age, veteran status, disability status, pregnancy, or any other basis protected by federal, state or local law. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. We provide reasonable accommodations for candidates with disabilities. If you feel you need assistance or an accommodation due to a disability, let us know by reaching out to your recruiter. #J-18808-Ljbffr

TITLE: Systems Analyst with ACTIVE Secret security clearance (US Citizenship REQUIRED) RATE: Negotiable DURATION: 12+ months CLEARANCE: Active Secret Security clearance issued by the Department of Defense ***No C2C, we can NOT work with outside agencies/vendors, and we can NOT do 1099-US CITIZENSHIP IS REQUIRED*** RESPONSIBILITIES Developing and deploying solutions to maintain smooth operation of virtualized computer system environments. Lead technical development projects and hardware refresh efforts. Providing overall on-site maintenance and support of the Unix and Windows systems Serving as the primary point of contact for issue resolution Performing Backup/Restore/Disaster Recovery, Hardware/System Monitoring, and System Maintenance Creating and maintaining user, administrator, and service accounts Fine tuning system performance, maintaining system documentation, installing system wide software, and allocating mass storage space. REQUIREMENTS Active Secret security clearance Knowledge/experience in Windows, Linux, RHEL, AIX, Solaris, or equivalent System troubleshooting skills Strong interpersonal communication skills Ability to work as a member of a team in a dynamic environment Bachelors degree is desired but not required. Can exchange minimum 4 years' experience in lieu of degree Must have current Sec+ certification If you would like to interview for this position, please send an updated resume to Dee Smith, *********************

Network Engineer Pay: $120k to $140k/year Experience: Minimum 3 years of experience in: Full-stack network troubleshooting (OSI Layers 1-7) Layer 1: fiber, copper, circuits, PoE, wireless, cellular System administration: Windows Server, VMs, storage, Microsoft Domains Education: Bachelor's degree in EE, CompE, CS, or related field preferred. Type: Direct Hire Schedule: Monday-Friday Conde Group is seeking a Network Engineer to join a growing and dynamic team! This role will assist with multi-year transportation projects involving a city-wide video and analytics network. This hands-on role includes installing, maintaining, and troubleshooting advanced systems like IP cameras, video management systems, and virtual environments. The ideal candidate is technically strong, detail-oriented, and comfortable working both in-office and in the field. Job Description: Monitor and assess the daily health of all network systems to ens

REQUIRED SKILLS MARKED IN BOLD firewall support and configuration. AD/Forest management tasks and support primary knowledge and experience in the Palo Alto ecosystem or security platforms as well as Microsoft domain services. next generation firewalls (NGFW); rule management; access list generation; integration with AD o Palo Alto products: Firewalls, VPN, Prisma, XDR, XSOAR, XDR SIEM Threat Prevention, Wildfire sandboxing and IDPS o Tenable/Nessus - Vulnerability Management DESIRED okta sso o Strong scripting experience, such as powershell, vbscript, o Strong experience in packet analysis, tcpdump, wireshark, o Experience in Solarwinds NMS and Solarwinds ARM o Significant experience on AWS/Azure cloud security platforms upgrades/ remote access configuration/Panorama re-implementation/cloud integration.

Who we're looking for: We are looking for an individual who has experience in the common criteria evaluations of IT products and who has experience with FIPS validation of cryptographic modules ( FIPS 140-3) . They will be responsible for the end-end validation of the products ( performing initial assessment of the security functions and specifications; consult with various teams in the development of the process, design, and documentation required for the common criteria evaluations of our Mobile Device products and the FIPS 140-2/3 accreditation of our cryptographic modules. Role and Responsibilities: Develop the security target for our products, assist with the testing, documentation and working with the necessary engineering teams during the evaluation. Develop plans and procedures using applicable security controls, including NIAP Protection Profiles (MDFPP, VPN, WLAN, Biometric enrollment, and verification), assist with the CAVP algorithm testing ,drafting and review of the security policies for our cryptographic modules according to the FIPS 140-3 specifications, possess information around the DCID 6/3, DoD 8500, or NIST SP 800-53. Assist in the development and review of all test reports and required certification documentation for all the Common Criteria evaluations and FIPS 140-2/3 accreditation. Experience building testing environments, performing testing and reporting results (technical writing) for all of the common criteria and FIPS evaluations. Develop mitigation strategies to address vulnerabilities uncovered during security testing; and assist with completing all the required documentation to meet the specifications and certification requirements, as required. Perform vulnerability analysis of product or system designs against applicable security criteria using common tools, including Nessus, NMAP, and Wireshark. Project POC with Internal/External audience when required. Skills: Self-motivated individual with the ability to thrive in a team-based or independent environment. Detail-oriented with strong organization skills. Ability to work in a fast-paced environment. Limited supervision and the exercise of discretion. Ability to comprehend security standard requirements and specifications and apply them to products. Excellent communication (written/verbal) skills and analytical skills. Required Experience and Education: 5+ years of technical experience in Common Criteria evaluations NIAP-managed Common Criteria Evaluation and Validation Scheme (CCEVS or Scheme) of any product in the US scheme . Mobile device and Software knowledge highly preferred. Bachelor's Degree in Electrical Engineering, Computer/Information Science, Information Assurance/Cybersecurity, or equivalent degree (Master's Degree preferred). Knowledge of common security related protocols and their design (i.e., SSH, IPsec, TLS, etc.) Be highly proficient in FIPS 186-4/5, SP 800-186, SP800-90B and the FIPS 140-3 requirements and have knowledge around the cryptographic encryption algorithms, key exchange algorithms, hashing/message authentication algorithms, PKI, random number generators .

*LOCAL CANDIDATES ONLY. For better collaboration, HM expects candidates to be located in the Bay Area, as they may have regular in-person touch base meetings. The role is hybrid. HM expects to have the role to be onsite on a monthly basis, but will be adjusted when needed. TOP THINGS: - Deep understanding of security framework and IT assessment process; detail oriented Position Summary The Cyber Security Controls Assessment family is responsible for the assessment, verification, review, and audit of General Computer Controls across the enterprise. The Cyber Security Controls Assessor (“Assessor”) will be responsible for assessments which will require review and evaluation of IT and/or business systems and processes for compliance with defined regulatory standards, internal processes, and procedures. Additionally, the Assessor will be responsible for the identification of risks, evaluation of control deficiencies, and recommendation on remediation efforts consistent with IT organizational policies, standards, procedures, and regulatory requirements. Duties and Responsibilities • Perform multi-platform (application, database, operating system, middleware, monitoring tools, and business processes) level assessments based on predefined test objectives and test plans. Perform retest of controls that have been remediated or updated as a result of previously identified deficiencies. Obtain, review, and interpret evidence provided to validate controls are performed effectively. • Execute and report on results of IT Compliance assessments in accordance with industry best practices and established regulatory standards and requirements (e.g., NIST SP800-53, SP800-115, SOX, NERC CIP). • Obtain, review, and interpret organizational IT policies, standards and procedures to identify control points that would assist in mitigating risk to the business. • Review test results or interpret evidences to address vulnerabilities, gaps, or control deficiencies; work with stakeholders to establish plans for sustainable resolution. • Identify risks associated with control failures and supports the identification of mitigating controls • Partner with control owners to ensure control documentation is updated periodically to reflect current control environment • Perform other tasks as necessary to ensure that the Compliance meets its commitments to customers • Support the Compliance Sr. Manager/Manager as needed. Qualifications Minimum Education Required: • BA/BS in Computer Science, Business, or equivalent experience. Minimum On-the-Job Experience • Minimum of 3 years of general IT experience, including IT security or IT risk management experience • Experience using Excel worksheets, workbooks, and formulas • Experience managing multiple projects with conflicting priorities Desired Experience • Utility Industry Experience • Big 4 experience • Demonstrated experience with Sarbanes Oxley or National Institute of Standards and Technology (NIST) SP800-53 security controls catalog. Minimum Required License / Certification: At least one existing certification from the following list, which must be currently maintained and valid: certification: • Cisco Certified Networking Associate (CCNA) • Certified Information Systems Auditor (CISA); • Certified in Risk and Information System Control (CRISC); • Certified Internal Auditor (CIA); • Certified Information Systems Security Professional (CISSP); Desired License / Certification: One or more current and valid certifications directly applicable or complementary to the role and area of expertise, including those listed above, as well as: • Certified Ethical Hacker (CEH) • Information Technology Infrastructure Library (ITIL) • Microsoft Certified Professional/Security Engineer (MCP, MCSE) • Cisco Certified Network Associate/Professional (CCNA, CCNP) • Certified Information Security Manager (CISM) • Project Management Professional (PMP). Knowledge, Skills, and Abilities • Strong oral and written communication skills • Strong analytical skills • Understanding of application, database, network and systems security • Understanding of general computing controls (GCCs) • Able to identify complex control gaps. • Understanding of generally applicable and accepted auditing standards and framework (e.g. COBIT) and best practices for IT services management (e.g., ITIL), regulatory standards and requirements (e.g. Sarbanes Oxley Act, NERC/CIP) • Excellent planning, organizational, and project management skills • Able to multi-task projects or assessments • Ability to work with minimal supervision in a fast-paced environment • Detail oriented

Role: Network Engineer (On-Prem & Azure Cloud) Duration: 6-Month Contract-to-Hire Overview: We are seeking a highly skilled Network Engineer with over a decade of hands-on experience in managing complex network infrastructures across on-premises and Azure cloud environments. This role is ideal for professionals with strong expertise in Cisco and Meraki technologies, firewall implementations (Palo Alto and Fortinet), Zero Trust architectures, and network automation using Python. You will play a critical role in securing, architecting, maintaining, and optimizing the network infrastructure in a high-impact, senior-level position. Key Responsibilities: Network Infrastructure & Security Management Design, configure, and maintain Cisco routing and Meraki switching environments. Deploy and manage Fortinet and Palo Alto firewalls, including advanced security policies and SSL inspection. Implement IPS/IDS solutions for proactive threat monitoring. Zero Trust & Micro-Segmentation Architect and deploy Zero Trust Network Access (ZTNA 2.0) frameworks. Implement network micro-segmentation to minimize lateral threats and enforce granular access controls. Cloud Networking (Azure) Manage hybrid network architectures, ensuring secure and efficient connectivity between on-prem and Azure cloud. Configure Azure networking components like VNets, VPN Gateways, ExpressRoute, and NSGs. Network Automation & Scripting Develop Python scripts for automating network tasks and improving operational efficiency. Automate network configurations, monitoring, and incident response workflows. DMZ, NAT & IP Scheme Management Design and support DMZ architecture and NAT configurations. Manage IP schemes, including subnetting and IP planning for scalable network design. Documentation & Monitoring Create and maintain network flow diagrams and network SOPs (Standard Operating Procedures). Utilize tools like SolarWinds for performance monitoring and proactive troubleshooting. Cross-Functional Collaboration Work closely with security, IT, and cloud teams to implement integrated and secure network solutions. Communicate technical concepts clearly to non-technical stakeholders. Must-Have Skills & Qualifications: Certifications: CCIE (Required) or Palo Alto PCNSE (if CCIE is unavailable) 10+ years of hands-on experience in: Cisco routing/switching, Meraki wireless Palo Alto and Fortinet firewalls IPS/IDS, SSL traffic inspection, and advanced firewall policies IPsec tunneling, VPN, NAT, and DMZ configurations Azure cloud and hybrid network solutions Python scripting for automation Network micro-segmentation and Zero Trust (ZTNA 2.0) Strong knowledge of TCP/IP, BGP, OSPF, VLANs Proven experience with IP addressing/subnetting and IP allocation planning Excellent communication and collaboration skills Preferred Qualifications: Experience with SASE, Prisma Access, or Zscaler Hands-on experience with SD-WAN technologies Familiarity with Microsoft Intune and M365 Experience with high availability network design and disaster recovery planning Proficiency in network monitoring tools such as SolarWinds

Onsite The main function of a systems engineer is to apply the principles of computer science and mathematical analysis to the design, development, testing, and evaluation of the software and systems that make computers work. A typical systems engineer analyzes user needs, and then designs, tests, and develops software to meet those needs. Responsibilities: Modify existing databases and database management systems or direct programmers and analysts to make changes. Write and code logical and physical database descriptions and specify identifiers of database to management system or direct others in coding descriptions. Work as part of a project team to coordinate database development and determine project scope and limitations. Review project requests describing database user needs to estimate time and cost required to accomplish project. Skills: Verbal and written communication skills, problem solving skills, customer service and interpersonal skills. Ability to work independently and manage one's time. Basic mentoring skills necessary to provide support and constructive performance feedback. Knowledge of the full software development lifecycle: from business/systems analysis, through requirements gathering and functional specification authoring, to development, testing and delivery. Ability to troubleshoot issues and make system changes as needed to resolve issue. Knowledge of circuit boards, processors, electronic equipment and computer hardware and software. Knowledge of computer development software across multiple platforms. Education/Experience: Bachelor's degree in computer science, software engineering or relevant field required. Full benefits available, including paid time off, medical/dental/vision/life insurance, 401K, parental leave, and more. Our compensation reflects the cost of labor across several US geographic markets. Pay is based on several factors including market location and may vary depending on job-related knowledge, skills, and experience. THE PROMISES WE MAKE: At Crystal Equation, we empower people and advance technology initiatives by building trust. Your recruiter will prep you for the interview, obtain feedback, guide you through any necessary paperwork and provide everything you need for a successful start. We will serve to empower you along the way and provide the path for your professional journey. For more information regarding our Privacy Policy, please visit crystalequation.com/privacy.

The Server R&D Team focuses on the research and development of server hardware in the fields of computing, storage, heterogeneous computing, etc., software development, and the provision and delivery of relevant business solutions. Heterogeneous Hardware and Systems, which belongs to the Heterogeneous Computing Software and Hardware Integration Team under the Server R&D Team, is committed to the introduction of heterogeneous computing components, the planning of corresponding heterogeneous computing infrastructure, and the business delivery of Kunlun software-hardware integration for heterogeneous workloads. It is also responsible for the business requirements and solutions of the Group, Lingjun, and EGS. Sinian team focuses on heterogeneous compute and software-hardware cooperative technologies. We have worked on a unified heterogeneity-aware lowering and optimization platform, accelerating applications on various heterogeneous hardware. Our goal is to unleash the hardware computing power and deploy applications for improving portability, performance, and utilization. Your responsibilities include, but are not limited to: 1. Installation, configuration and bring-up of vendor heterogeneous computing hardware 2. Providing operational support for prototype hardware and software system including validation and troubleshooting 3. Troubleshoot and resolve any system-related issues arising during heterogeneous computing and deployment 4. Performance analysis, profiling and benchmarking of heterogeneous computing workloads running on system 5. Collaborate with production team to distill the requirements 6. Independently solving complex technical and logistical problems in a fast-paced environment Minimum qualification: 1. BS, MS, or Ph.D. in Computer Science, Computer Engineering, or related field; 2. At least 3-5 years industry experience or relevant experience; 3. Experience with heterogeneous hardware architectures and hardware accelerators; 4. Experience in heterogeneous computing frameworks and toolsets; 5. Ability to work independently, good communication and strong interpersonal skills; 6. Reliability and self-motivation in a dynamic product-oriented team; Preferred qualification: 1. Knowledge of heterogeneous hardware architecture; 2. Experience in large scale computing distributed training process; 3. Knowledge of heterogeneous computing algorithm and architecture; The pay range for this position at commencement of employment is expected to be between $168,000/year and $276,000/year. However, base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. If hired, employee will be in an “at-will position” and the Company reserves the right to modify base salary (as well as any other discretionary payment or compensation program) at any time, including for reasons related to individual performance, Company or individual department/team performance, and market factors.

Role Description: Infogain has an exciting opportunity to join our network infrastructure teams as an Optical Network Deployment Engineer working on Backbone Network capacity deployment. This role will be focused on network deployment (IP, optical), and network operations (decommissioning, retrofitting, capacity upgrades, migrations, etc.) We are looking for individuals with experience in routing/switching, deployment, optical, and leadership experience. This is a fast-paced environment, and we are looking for someone who is organized, can multi-task and enjoys working in a team environment. Responsibilities: Configuration, build, roll-out and testing of new DWDM line systems deployments, calibration, verification, BERT, etc. Deployment and commissioning of Optical devices such as Ciena and Infinera in new PoPs and Datacenter builds. Develop & update documentation, work cross functionally to develop and enhance network design & production workflows. Analyze data to diagnose and identify root causes to network and tooling issues. Analyze and improve eƯiciency, scalability, and stability of various system resources. Qualifications/Skills: Ciena 6500 knowledge and experience is required Ciena and/or Infinera certifications or equivalent experience is highly desirable. Expert working knowledge on DWDM components such as ROADM, Mux/Demux, Amplifiers, Transponders. Channel creation, optimization. Experience in Chassis installation, line cards installs PCR's and structure fiber installation Experience in device installation and testing, software/firmware upgrade, re-bootstrapping and decommission. Experience in network optimization (re-stripes, migrations, upgrades, swaps, capacity upgrades). Creating Bill of Materials and JSN's, (Job Start Notification) for deployments and upgrades. Excellent experience in maintaining documentation and teamwork. Excellent troubleshooting and communication skills. CCNA/JNCIA or equivalent knowledge. Strong knowledge of TCP/IP Strong understanding and preferably hands own experience in commonly used routing protocols (OSPF, BGP, MPLS) Multivendor testing and support experience. Demonstrated ability to analyze complex situations and utilize troubleshooting skills, systems and tools, and creative problem-solving abilities under pressure. Solid understanding and configuration experience of Channel builds and cross-connect builds. Good knowledge on DWDM testing methods and tools. Solid understanding of fiber-optic technology including cable types, connector types, optic types, patch panels, and optical transport technologies. Strong attention to detail with excellent time management and organization skills. About the Company: We combine people, platforms, and software Infogain is a human-centered digital platform and software engineering company based out of Silicon Valley. We engineer business outcomes for Fortune 500 companies and digital natives in the technology, healthcare, insurance, travel, and retail industries using technologies such as cloud, microservices, automation, IoT, and artificial intelligence. We accelerate experience-led transformation in the delivery of digital platforms. Infogain is also a Microsoft (NASDAQ: MSFT) Gold Partner and Azure Expert Managed Services Provider (MSP). Infogain, an Apax Partners portfolio company, has oƯices in California, Washington, Texas, the UK, the UAE, and Singapore, with delivery centers in Seattle, Houston, Austin, Kraków, New Delhi, Mumbai, Pune, and Bengaluru.

Network Engineer - Restaurant POS Systems Job Type: Full-time Department: Technical Operations / IT Infrastructure *PLEASE NOTE: This position is not eligible for visa sponsorships. Candidates must be authorized to work in the United States without current or future need for sponsorship. About the Role We're seeking a skilled and proactive Network Engineer to support the deployment, configuration, and ongoing management of network infrastructure for restaurant point-of-sale (POS) environments. You'll play a critical role in ensuring secure, reliable, and scalable connectivity for our clients' systems, often in complex real-world conditions. Key Responsibilities - Design and implement wired and wireless networks for new restaurant locations. - Configure and manage routers, firewalls, managed switches, access points, and other network hardware. - Deploy and support VLANs, static IP schemes, and isolated POS networks. - Troubleshoot connectivity issues remotely and on-site (as required). - Collaborate with the onboarding and support teams to ensure seamless POS installations. - Maintain detailed documentation of network setups, configurations, and change logs. - Ensure network setups align with PCI compliance and internal security standards. Requirements - 2+ years of hands-on experience in network engineering preferably within the restaurant, hospitality, or retail POS industry. - Strong understanding of: TCP/IP, DHCP, NAT, VLANs, and network isolation; Firewall configuration and security principles; Ubiquiti UniFi, TP-Link Omada, MikroTik, or similar platforms. - Ability to perform remote diagnostics using network monitoring and access tools. - Experience configuring and managing commercial-grade Wi-Fi and mesh networks. - Willingness to travel occasionally for on-site installations or escalations. - Strong communication and documentation skills. Preferred Qualifications - Certifications: CompTIA Network+, CCNA, or equivalent. - Experience with cloud-managed networks (e.g., Meraki, UniFi Cloud Controller). - Familiarity with restaurant POS systems and their network requirements (e.g., payment terminal routing, KDS, printers). What We Offer - Competitive salary - Flexible work environment - Opportunities for career growth in a fast-scaling company - A collaborative, mission-driven team that values innovation and reliability

Get to know Okta Okta is The World's Identity Company. We free everyone to safely use any technology, anywhere, on any device or app. Our flexible and neutral products, Okta Platform and Auth0 Platform, provide secure access, authentication, and automation, placing identity at the core of business security and growth. At Okta, we celebrate a variety of perspectives and experiences. We are not looking for someone who checks every single box - we're looking for lifelong learners and people who can make us better with their unique experiences. Join our team! We're building a world where Identity belongs to you. Role Summary: We seek an experienced and detail-oriented Staff Data Security Analyst to contribute to our strategic Data Classification and Governance Program. In this role, you will be instrumental in the operational execution of our data governance strategy. You will work hands-on with data discovery and classification tools, apply data protection policies, and collaborate extensively with cross-functional teams, including Business Technology (BT), Legal, Data & Insights (D&I), and other Security teams. Your focus will be on implementing and maintaining the data classification framework, supporting the rollout of technical controls, and ensuring that our data handling practices align with our security and compliance objectives. Key Responsibilities: Data Classification & Labeling: Actively participate in data discovery initiatives to identify and inventory sensitive data (PII, SPI, financial, IP, AI training data) across key enterprise systems (e.g., Google Workspace, Salesforce, Workday, NetSuite, Snowflake). Assist in executing pilot programs for data classification on high-priority systems and contribute to refining classification processes. Policy Operationalization & Control Support: Assist data Stewards and system owners in implementing the data classification policy and data handling standards to support their operationalization. Collaborate with BT and Security engineering teams to test and validate the implementation of technical controls (e.g., DLP rules, CASB configurations) based on data classification. Help define and test controls related to sensitive data input into enabled AI tools. Tooling & Process Support: Become proficient in using selected data discovery, classification, and governance tools (potential tools include Varonis, native Google/Snowflake capabilities). Assist with the configuration, including helping to set up scans and reviewing results. Contribute to developing and maintaining documentation for classification procedures and tool usage. Collaboration & Stakeholder Engagement: Work closely with Data Stewards (from D&I and business units) to understand data context, validate classification results, and ensure alignment with business needs. Partner with BT application owners to facilitate classification efforts and implement necessary data handling changes. Support Security GRC by providing data and insights for risk assessments and compliance reporting related to data classification. Monitoring, Reporting & Continuous Improvement: Assist in establishing and tracking key metrics for data classification coverage, accuracy, and the effectiveness of associated controls. Contribute to developing dashboards and reports for program stakeholders and the Data Governance Council. Required Qualifications & Skills: Bachelor's degree in Information Security, Computer Science, Information Systems, or a related field, or equivalent practical experience. 7+ years of experience in data security, governance, IT risk management, or a similar analytical role focusing on data protection. Strong, demonstrable understanding of data classification principles, methodologies, data lifecycle management, and data handling best practices. Hands-on experience with data discovery and/or data classification tools and technologies. Solid understanding of data protection concepts and technologies (e.g., DLP, data masking, tokenization, encryption, IAM). Knowledge of key data privacy regulations (e.g., CCPA, GDPR) and their impact on data handling. Excellent analytical, problem-solving, and critical-thinking skills with meticulous attention to detail. Proven ability to work effectively in a cross-functional team environment and manage multiple tasks. Strong written and verbal communication skills, with the ability to articulate technical concepts to varied audiences. Preferred Qualifications: Experience with specific data governance or classification platforms (e.g., Varonis, OneTrust, Google Cloud DLP, Snowflake Data Classification). Experience implementing or operating data security controls in SaaS environments (e.g., Salesforce, Workday, Google Workspace, M365) and cloud platforms (AWS, Azure, GCP). Familiarity with security considerations for AI/ML systems and data inputs, including knowledge of AI-native solutions for data labeling and classification. Hands-on experience with AI governance principles and frameworks, including implementing controls for responsible AI use. Experience in developing and delivering training or awareness materials. Relevant industry certifications (e.g., CISM, CISSP, CIPP, CDMP, or tool-specific certifications). #LI-BF1 #LI-Hybrid The annual base salary range for this position for candidates located in the San Francisco Bay area is between: $128,000—$192,000 USD Below is the annual base salary range for candidates located in California, Colorado, New York and Washington. Your actual base salary will depend on factors such as your skills, qualifications, experience, and work location. In addition, Okta offers equity (where applicable), bonus, and benefits, including health, dental and vision insurance, 401(k), flexible spending account, and paid leave (including PTO and parental leave) in accordance with our applicable plans and policies. To learn more about our Total Rewards program please visit: **************************** The annual base salary range for this position for candidates located in California (excluding San Francisco Bay Area), Colorado, New York, and Washington is between:$114,000—$172,000 USD What you can look forward to as a Full-Time Okta employee! Amazing Benefits Making Social Impact Developing Talent and Fostering Connection + Community at Okta Okta cultivates a dynamic work environment, providing the best tools, technology and benefits to empower our employees to work productively in a setting that best and uniquely suits their needs. Each organization is unique in the degree of flexibility and mobility in which they work so that all employees are enabled to be their most creative and successful versions of themselves, regardless of where they live. Find your place at Okta today! ************************************** Some roles may require travel to one of our office locations for in-person onboarding. Okta is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, marital status, age, physical or mental disability, or status as a protected veteran. We also consider for employment qualified applicants with arrest and convictions records, consistent with applicable laws. If reasonable accommodation is needed to complete any part of the job application, interview process, or onboarding please use this Form to request an accommodation. Okta is committed to complying with applicable data privacy and security laws and regulations. For more information, please see our Privacy Policy at *************************************

You Want: To be part of a small, close-knit team To work for a company that is making the world better and make a lot of money along the way An agile environment (TDD, short release cycles) Mac OS X as your development environment You Have: Worked on at least one high-performance, consumer-facing web site and / or a github account that speaks for itself Skills in all tiers of the web application stack Rewritten code to help yourself sleep better at night You Can: Navigate the command-line in a Linux environment Integrate ruby code with web service APIs Navigate and intimately and completely understand an existing, large code base Skills & Requirements: Write clean and performant code in ruby, Javascript, ERB, and interface with a NoSQL database Contribute to our bottom line through rigorous analytics and A/B testing Aggressively re-factor the codebase to improve its quality About Us: xDev is a network of talented developers and engineers in the bay area. We have a strong focus on web application and mobile development.

Job Title: Senior Embedded Security Engineer Employment Type: [Full-Time / Contract] Industry: Automotive / Embedded Systems / Cybersecurity We are seeking a Senior Embedded Security Engineer with deep technical expertise in embedded systems security to join a fast-paced, cutting-edge team developing next-generation automotive and IoT technologies. This role is critical to ensuring secure boot processes, low-level hardware protection, and comprehensive cybersecurity validation. Key Responsibilities: Lead and execute security validation efforts across embedded systems. Develop, implement, and assess secure boot mechanisms. Perform vulnerability assessments and penetration testing at the hardware/software boundary. Conduct JTAG and boundary scan testing with security-focused analysis. Design and run test suites for low-level hardware security features. Collaborate with software, hardware, and system architects to define robust security requirements. Support integration of automotive communication protocols (CAN, LIN, DoIP) from a security standpoint. Script and automate test processes and data analysis using Python. Document findings, provide risk assessments, and suggest mitigation strategies. Required Skills & Experience: 5+ years of hands-on experience in embedded system security. Proven expertise in secure boot, trusted execution environments, and hardware root of trust. Deep knowledge of JTAG, SWD, and hardware debug interfaces from a security lens. Strong experience in security validation and test methodology at the hardware and firmware levels. Solid programming/scripting with Python for test automation and analysis. Familiarity with automotive protocols such as CAN, LIN, and DoIP. In-depth understanding of common embedded security threats and defenses (e.g., side-channel, fault injection, secure firmware update). Preferred Qualifications: Experience in the automotive industry or with AUTOSAR and ISO 26262 environments. Certifications in embedded or cybersecurity (e.g., CEH, OSCP, GICSP) are a plus. Who You Are: A superstar in embedded security with a passion for deep technical challenges. Comfortable working independently and collaboratively across teams. Driven by excellence, with strong problem-solving and critical thinking skills.

REQUIRED SKILLS MARKED IN BOLD firewall support and configuration. AD/Forest management tasks and support primary knowledge and experience in the Palo Alto ecosystem or security platforms as well as Microsoft domain services. next generation firewalls (NGFW); rule management; access list generation; integration with AD o Palo Alto products: Firewalls, VPN, Prisma, XDR, XSOAR, XDR SIEM Threat Prevention, Wildfire sandboxing and IDPS o Tenable/Nessus - Vulnerability Management DESIRED okta sso o Strong scripting experience, such as powershell, vbscript, o Strong experience in packet analysis, tcpdump, wireshark, o Experience in Solarwinds NMS and Solarwinds ARM o Significant experience on AWS/Azure cloud security platforms upgrades/ remote access configuration/Panorama re-implementation/cloud integration.

*LOCAL CANDIDATES ONLY. For better collaboration, HM expects candidates to be located in the Bay Area, as they may have regular in-person touch base meetings. The role is hybrid. HM expects to have the role to be onsite on a monthly basis, but will be adjusted when needed. TOP THINGS: - Deep understanding of security framework and IT assessment process; detail oriented Position Summary The Cyber Security Controls Assessment family is responsible for the assessment, verification, review, and audit of General Computer Controls across the enterprise. The Cyber Security Controls Assessor (“Assessor”) will be responsible for assessments which will require review and evaluation of IT and/or business systems and processes for compliance with defined regulatory standards, internal processes, and procedures. Additionally, the Assessor will be responsible for the identification of risks, evaluation of control deficiencies, and recommendation on remediation efforts consistent with IT organizational policies, standards, procedures, and regulatory requirements. Duties and Responsibilities • Perform multi-platform (application, database, operating system, middleware, monitoring tools, and business processes) level assessments based on predefined test objectives and test plans. Perform retest of controls that have been remediated or updated as a result of previously identified deficiencies. Obtain, review, and interpret evidence provided to validate controls are performed effectively. • Execute and report on results of IT Compliance assessments in accordance with industry best practices and established regulatory standards and requirements (e.g., NIST SP800-53, SP800-115, SOX, NERC CIP). • Obtain, review, and interpret organizational IT policies, standards and procedures to identify control points that would assist in mitigating risk to the business. • Review test results or interpret evidences to address vulnerabilities, gaps, or control deficiencies; work with stakeholders to establish plans for sustainable resolution. • Identify risks associated with control failures and supports the identification of mitigating controls • Partner with control owners to ensure control documentation is updated periodically to reflect current control environment • Perform other tasks as necessary to ensure that the Compliance meets its commitments to customers • Support the Compliance Sr. Manager/Manager as needed. Qualifications Minimum Education Required: • BA/BS in Computer Science, Business, or equivalent experience. Minimum On-the-Job Experience • Minimum of 3 years of general IT experience, including IT security or IT risk management experience • Experience using Excel worksheets, workbooks, and formulas • Experience managing multiple projects with conflicting priorities Desired Experience • Utility Industry Experience • Big 4 experience • Demonstrated experience with Sarbanes Oxley or National Institute of Standards and Technology (NIST) SP800-53 security controls catalog. Minimum Required License / Certification: At least one existing certification from the following list, which must be currently maintained and valid: certification: • Cisco Certified Networking Associate (CCNA) • Certified Information Systems Auditor (CISA); • Certified in Risk and Information System Control (CRISC); • Certified Internal Auditor (CIA); • Certified Information Systems Security Professional (CISSP); Desired License / Certification: One or more current and valid certifications directly applicable or complementary to the role and area of expertise, including those listed above, as well as: • Certified Ethical Hacker (CEH) • Information Technology Infrastructure Library (ITIL) • Microsoft Certified Professional/Security Engineer (MCP, MCSE) • Cisco Certified Network Associate/Professional (CCNA, CCNP) • Certified Information Security Manager (CISM) • Project Management Professional (PMP). Knowledge, Skills, and Abilities • Strong oral and written communication skills • Strong analytical skills • Understanding of application, database, network and systems security • Understanding of general computing controls (GCCs) • Able to identify complex control gaps. • Understanding of generally applicable and accepted auditing standards and framework (e.g. COBIT) and best practices for IT services management (e.g., ITIL), regulatory standards and requirements (e.g. Sarbanes Oxley Act, NERC/CIP) • Excellent planning, organizational, and project management skills • Able to multi-task projects or assessments • Ability to work with minimal supervision in a fast-paced environment • Detail oriented

Role: Network Engineer (On-Prem & Azure Cloud) Duration: 6-Month Contract-to-Hire Overview: We are seeking a highly skilled Network Engineer with over a decade of hands-on experience in managing complex network infrastructures across on-premises and Azure cloud environments. This role is ideal for professionals with strong expertise in Cisco and Meraki technologies, firewall implementations (Palo Alto and Fortinet), Zero Trust architectures, and network automation using Python. You will play a critical role in securing, architecting, maintaining, and optimizing the network infrastructure in a high-impact, senior-level position. Key Responsibilities: Network Infrastructure & Security Management Design, configure, and maintain Cisco routing and Meraki switching environments. Deploy and manage Fortinet and Palo Alto firewalls, including advanced security policies and SSL inspection. Implement IPS/IDS solutions for proactive threat monitoring. Zero Trust & Micro-Segmentation Architect and deploy Zero Trust Network Access (ZTNA 2.0) frameworks. Implement network micro-segmentation to minimize lateral threats and enforce granular access controls. Cloud Networking (Azure) Manage hybrid network architectures, ensuring secure and efficient connectivity between on-prem and Azure cloud. Configure Azure networking components like VNets, VPN Gateways, ExpressRoute, and NSGs. Network Automation & Scripting Develop Python scripts for automating network tasks and improving operational efficiency. Automate network configurations, monitoring, and incident response workflows. DMZ, NAT & IP Scheme Management Design and support DMZ architecture and NAT configurations. Manage IP schemes, including subnetting and IP planning for scalable network design. Documentation & Monitoring Create and maintain network flow diagrams and network SOPs (Standard Operating Procedures). Utilize tools like SolarWinds for performance monitoring and proactive troubleshooting. Cross-Functional Collaboration Work closely with security, IT, and cloud teams to implement integrated and secure network solutions. Communicate technical concepts clearly to non-technical stakeholders. Must-Have Skills & Qualifications: Certifications: CCIE (Required) or Palo Alto PCNSE (if CCIE is unavailable) 10+ years of hands-on experience in: Cisco routing/switching, Meraki wireless Palo Alto and Fortinet firewalls IPS/IDS, SSL traffic inspection, and advanced firewall policies IPsec tunneling, VPN, NAT, and DMZ configurations Azure cloud and hybrid network solutions Python scripting for automation Network micro-segmentation and Zero Trust (ZTNA 2.0) Strong knowledge of TCP/IP, BGP, OSPF, VLANs Proven experience with IP addressing/subnetting and IP allocation planning Excellent communication and collaboration skills Preferred Qualifications: Experience with SASE, Prisma Access, or Zscaler Hands-on experience with SD-WAN technologies Familiarity with Microsoft Intune and M365 Experience with high availability network design and disaster recovery planning Proficiency in network monitoring tools such as SolarWinds

Role Description: Infogain has an exciting opportunity to join our network infrastructure teams as an Optical Network Deployment Engineer working on Backbone Network capacity deployment. This role will be focused on network deployment (IP, optical), and network operations (decommissioning, retrofitting, capacity upgrades, migrations, etc.) We are looking for individuals with experience in routing/switching, deployment, optical, and leadership experience. This is a fast-paced environment, and we are looking for someone who is organized, can multi-task and enjoys working in a team environment. Responsibilities:  Configuration, build, roll-out and testing of new DWDM line systems deployments, calibration, verification, BERT, etc.  Deployment and commissioning of Optical devices such as Ciena and Infinera in new PoPs and Datacenter builds.  Develop & update documentation, work cross functionally to develop and enhance network design & production workflows.  Analyze data to diagnose and identify root causes to network and tooling issues.  Analyze and improve eƯiciency, scalability, and stability of various system resources. Qualifications/Skills:  Ciena 6500 knowledge and experience is required  Ciena and/or Infinera certifications or equivalent experience is highly desirable.  Expert working knowledge on DWDM components such as ROADM, Mux/Demux, Amplifiers, Transponders. Channel creation, optimization.  Experience in Chassis installation, line cards installs PCR’s and structure fiber installation  Experience in device installation and testing, software/firmware upgrade, re-bootstrapping and decommission.  Experience in network optimization (re-stripes, migrations, upgrades, swaps, capacity upgrades). Creating Bill of Materials and JSN’s, (Job Start Notification) for deployments and upgrades.  Excellent experience in maintaining documentation and teamwork.  Excellent troubleshooting and communication skills.  CCNA/JNCIA or equivalent knowledge. Strong knowledge of TCP/IP  Strong understanding and preferably hands own experience in commonly used routing protocols (OSPF, BGP, MPLS)  Multivendor testing and support experience.  Demonstrated ability to analyze complex situations and utilize troubleshooting skills, systems and tools, and creative problem-solving abilities under pressure.  Solid understanding and configuration experience of Channel builds and cross-connect builds.  Good knowledge on DWDM testing methods and tools.  Solid understanding of fiber-optic technology including cable types, connector types, optic types, patch panels, and optical transport technologies.  Strong attention to detail with excellent time management and organization skills. About the Company: We combine people, platforms, and software Infogain is a human-centered digital platform and software engineering company based out of Silicon Valley. We engineer business outcomes for Fortune 500 companies and digital natives in the technology, healthcare, insurance, travel, and retail industries using technologies such as cloud, microservices, automation, IoT, and artificial intelligence. We accelerate experience-led transformation in the delivery of digital platforms. Infogain is also a Microsoft (NASDAQ: MSFT) Gold Partner and Azure Expert Managed Services Provider (MSP). Infogain, an Apax Partners portfolio company, has oƯices in California, Washington, Texas, the UK, the UAE, and Singapore, with delivery centers in Seattle, Houston, Austin, Kraków, New Delhi, Mumbai, Pune, and Bengaluru.