Security Engineer Jobs in Scituate, RI

Full Benefits Medical Dental Vision 401K match 28 PTO Days including company holidays New Era Technology is a global technology solutions provider with 4,500+ employees and offices around the world. New Era offers Cloud, Managed, Professional, and Security services, and delivers Collaboration, Data Networking, Digital Transformation, and Physical & Life Safety solutions to more than 20,000 customers worldwide. We are looking for team members to contribute to and deliver our mission: To deliver and support technology solutions that securely connect people, places, and information. New Era Technology is a community of like-minded, like-hearted people who share the same vision and values. Work alongside the finest team of highly skilled and industry-certified professionals who are encouraged to drive change and think outside of the box. As a team member, you will receive competitive benefits, industry training, and certifications. New Era Technology empowers businesses to embrace the future workplace. As customers shift their perspectives on where and how work happens, we are there to meet them with flexible, resilient, and productive solutions. New Era Technology provides a team-oriented culture, a positive environment filled with incredible staff, and a genuine passion for providing the best service to our customers worldwide. We believe that investing in our employees is the key to professional growth, delivering exceptional experiences for our customers, and setting the standard for excellence in our field. We offer a growth-orientated, high-tech environment for employees. Along with our many benefits, you can expect a corporate culture that promotes personal and professional development. Our customer-focused teams are built on our core values: Community, Integrity, Agile, and Committed. Currently not accepting international applicants The Physical Security Systems Engineer - Hybrid is responsible for engineering, implementation, and ongoing support for some of the most critical and important customers in New England. This role requires regular collaboration with company solutions architects, field technicians, project managers, vendors, and most importantly, direct interaction with customers and other external project stakeholders. The ideal candidate will possess strong organizational and communications skills along with experience configuring and managing multiple security technologies. Solutions typically include a mix of access control, video surveillance, intrusion systems and networks. An ideal candidate will have experience with some of the systems within the New Era portfolio. The Security Engineer should have knowledge of legacy systems along with a willingness to learn new systems and become certified as appropriate. An ability to quickly learn new systems is more important than system-specific experience. Seasoned experience with Avigilon, Genetec, Exacq, Lenel/S2, Bosch Intrusion Detection, and other enterprise-grade security solutions is desirable. We are seeking an individual who is a self-starter, possesses a strong work ethic, and is committed to their own professional growth & development as well as the growth & future of New Era. As a Physical Security Systems Engineer you will: Perform integration of security systems, including video surveillance, access control; Plan and perform system and software upgrades for security applications; Security systems applications engineering and configuration; Perform provisioning, configuration, and testing of system components in the lab and on-site to validate design concepts; Perform pre-sales and post-project site surveys as needed; Stage and program security solutions prior to field installation; Review drawings (i.e. architectural, electrical, mechanical, and civil) in order to identify potential design and installation problems; Coordinate project schedule and project-related information with Project Managers; Track and maintain engineering phases of assigned projects with Project Managers; Conduct project-based end-user and system training. Provide field support of security systems including video, access control, etc.; Provide remote support of security systems including video, access control, etc.; Provide engineering escalation support for technicians; Collaborate with New Era Network Engineers to support LAN/WAN topologies; Serve as a Subject Matter Expert (SME) on security engineering needs; Analyze data collected during site surveys; Assist with generation of performance verification and field device testing plans; Assist in the development of drawing sheet requirements for a design package; Provide on-call support when required; Requirements: REQUIRED EDUCATION & EXPERIENCE: A Bachelor's degree and a minimum of three years experience, an Associate of Science degree with five years' experience, or a minimum of seven years' direct experience is required. PHYSICAL DEMANDS: Regularly spend long hours sitting and using office equipment and computers Regularly use hands and fingers to handle, control or feel objects Regularly see details of objects that are less than a few feet away Regularly speak clearly so listeners can understand Regularly understand the speech of another person Frequently work on projects that require deadlines Frequently bend to file and maintain files Lift and carry up to 25 pounds PM21 PIfd037af2c6cf-29***********0

The Senior Specialist, Workday Integrations & Security is responsible for managing and supporting the integration of Workday with various third-party systems and business applications. This role will collaborate with HR and IT stakeholders to ensure seamless and effective data exchanges between Workday and external platforms, ensuring data integrity, security, and efficiency. This position will be responsible for the configuration, maintenance, and management of Workday security roles, access controls, and security policies across the organization. The Senior Specialist, Workday Integrations & Security will ensure that all Workday system users have the appropriate access rights based on their roles and responsibilities, adhering to internal security policies and best practices. Key Responsibilities Include: Develop and manage integrations between Workday and other internal/external applications using Workday integration tools. Design, configure, test, and implement integrations for HR, payroll, finance, and other business systems. Ensure integrations meet business requirements, and best practices for security, data quality, and performance. Provide ongoing support for integrations, monitor data feeds, and resolve any issues or failures in integration processes. Troubleshoot integration issues by analyzing logs, reviewing system configurations, and diagnosing data discrepancies. Participate in Workday-related projects, including upgrades, new releases, and system implementations. Maintain accurate data mapping, documentation, and audit trails for all integrations. Configure and maintain security roles and permissions in Workday based on job functions and business requirements. Manage security groups, user-based access, and security policies in Workday. Ensure appropriate security roles and permissions are assigned to users to meet organizational needs while minimizing security risks. Regularly audit security roles, user access, and data security to ensure compliance with corporate policies and standards. Troubleshoot and resolve issues related to user permissions, data security, and system access. Support implementation of additional Workday SKUs. Manage day-to-day relationship with AMS providers including submission of tickets and prioritization of work. Work with internal and external auditors to support Workday SOX audits or other compliance reviews. Participate in the testing of Workday enhancements, updates, and new features by developing detailed test plans, test cases, and test scripts. Minimum Qualifications: Bachelor's degree in computer science, technology, operations, or related disciplines. 3-5 years' experience with Workday integration tools, security configurations and role-based access control. Proven experience with Workday Studio, EIB, Workday Web Services (WWS), and other integration tools. Proven experience in configuring Workday security roles, security groups, and permissions. Familiarity with auditing processes and reporting for access control Strong troubleshooting and problem-solving abilities. Excellent verbal and written communication skills Ability to manage multiple tasks and work effectively under pressure. Strong attention to detail and data accuracy. Reliable, consistent, and proactive High level of professionalism and discretion in handling sensitive data. Preferred Qualifications: Familiarity with REST and SOAP APIs, XML, XSLT, and JSON. Knowledge of security compliance standards, such as SOX, GDPR, and other data privacy regulations. Workday Security Certification preferred. Experience with Workday modules such as HCM, Payroll, Recruiting, or Finance is a plus. Experience with Workday benefits and benefit vendors/integrations preferred.

Basic Qualifications Requires a Bachelor's degree in Systems Engineering, or a related Science, Engineering or Mathematics field. Also requires 5+ years of job-related experience, or a Master's degree plus 3 years of job-related experience. Agile experience preferred. CLEARANCE REQUIREMENTS: Department of Defense Secret security clearance is required at time of hire. Applicants selected will be subject to a U.S. Government security investigation and must meet eligibility requirements for access to classified information. Due to the nature of work performed within our facilities, U.S. citizenship is required. Responsibilities for this Position We are seeking a Systems Security Engineer who has experience in the design and development of NSA-certified Cybersecurity devices. Key Responsibilities: Design and develop specifications for mission-critical NSA-certified Cybersecurity devices Collaborate with software and validation engineering teams to deliver high-speed data solutions Develop real-time multi-threaded Embedded System architecture using Model-based Systems Engineering (MBSE) tools and techniques Analyze and maintain system security requirements throughout product development lifecycle Conduct trade studies, perform functional analysis, and design system security. Preferred Skills and Experiences: NSA approved Cryptography/Encryption Security requirements analysis Real-Time multi-threaded Embedded System architecture and development Model-based Systems Engineering (MBSE) CISSP certification or similar INCOSE ASEP, CSEP, or ESEP certification We value candidates who possess: Drive to expand knowledge and experience in designing complex systems Ability to define project scope, schedule, and expected results Initiative to complete assignments and ability to engage in technical direction and leadership Our Commitment to You: An exciting career path with opportunities for continuous learning and development Research-oriented work with award-winning teams Competitive benefits package #CJ3 Salary Note This estimate represents the typical salary range for this position based on experience and other factors (geographic location, etc.). Actual pay may vary. This job posting will remain open until the position is filled. Combined Salary Range USD $133,499.00 - USD $140,000.00 /Yr. Company Overview General Dynamics Mission Systems (GDMS) engineers a diverse portfolio of high technology solutions, products and services that enable customers to successfully execute missions across all domains of operation. With a global team of 12,000+ top professionals, we partner with the best in industry to expand the bounds of innovation in the defense and scientific arenas. Given the nature of our work and who we are, we value trust, honesty, alignment and transparency. We offer highly competitive benefits and pride ourselves in being a great place to work with a shared sense of purpose. You will also enjoy a flexible work environment where contributions are recognized and rewarded. If who we are and what we do resonates with you, we invite you to join our high-performance team! Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

Role and Responsibilities Cybersecurity analyst position will support digital forensics, threat hunting, threat intelligence gathering, data analysis, producing reports, implementing, and monitoring security measures for the protection of computer systems, networks, and information within the organization. Key Responsibilities: Conducts comprehensive analysis to identify and categorize threats, encompassing phishing attacks, user events, data compliance issues, and malware attacks. Conducts regular audits of user accounts and access to ensure the IAM technology and configured controls directly support CJIS, PII policies and other regulatory requirements. Management of cloud application security including Office 365, G-Suite, and Azure. Maintains and monitors the EDR and SIEM environment in addition to other technologies. Prepares documentation on the organizations overall state of security, offering insights and recommendations for remediation. Monitors and identifies patching requirements for network hardware. Foster effective communication channels with team members, sharing critical information and insights. Promotes best practice security strategies to mitigate threats. Demonstrates proficient project management, organizational, and communication skills, both written and verbal. Requirements Skills Set: Skill Required / Desired Experience Hands-on experience with forensic security tools to support detection, response, mitigation, and/or reporting of cyber threats. 5 Years Experience in Threat Analysis, showcasing a deep understanding of threat landscapes and attack vectors. 2 Years Bachelor's degree in information technology, cybersecurity or related technical discipline, or the equivalent combination of education, professional training, or work experience. - Previous exposure to Managed Service Provider (MSP), Managed Security Service Provider (MSSP), or Managed Detection and Response (MDR) environments is highly desirable. Preferred - Exhibit the ability to discern patterns, anomalies, and issues across diverse threat vectors. Preferred - Experience with various industry best practices and standards regarding cyber security. Preferred - Experience with log aggregation technologies. Preferred -

Site Name: Cambridge Binney Street, Cambridge 300 Technology Square, Cambridge Park Drive This role is a Hybrid model with 3-4 days on-site per week expected between the Binney Street and Cambridge Park Drive GSK Sites. Global Supply Chain (GSC) Research and Development (R&D) Engineering Services provides Operations and Facilities Management and Capital Projects delivery for Technical R&D sites within GSC's Engineering and EHS organization. This role will provide ongoing engineering support to R&D Engineering Services Operations, responsible for Facilities Services and Capital Projects program management. This will include the development and improvement of processes that support the operational delivery model and interfaces with other GSK functions, service partners and other 3rd party providers. The purpose of this role is to hold the status of OT Cyber Security Champion, providing technical expertise to support a diversity of facilities equipment, automation and control systems across the New England cluster (4 R&D sites - 3 sites in Cambridge, MA and 1 site in Branford, CT). The role will work closely with the site operations team, automation team, capital projects and service partner organizations and it is expected to provide hands-on engineering support wherever is required. The role will manage consistent execution and compliance within Automation and OT engineering programs across the sites through provision of engineering and project management skills. You will work to ensure they are aligned to the local needs and priorities of the business, and to ensure that cost, quality and compliance metrics are achieved by key contract partners. The position will be responsible for regional compliance to external licensing and statutory requirements for engineering services provided by R&D Engineering Services. This role will provide YOU the opportunity to lead key activities to progress YOUR career, these responsibilities include some of the following: * Support and optimize the application of cybersecurity controls within the OT environment, to include (but are not limited to) user access management, system hardening/patching, anti-virus scanning and system configuration management * Technical Authority - To act as the OT Network (OTN) Technical authority on related matters where required for the cluster. Provide maintenance and lifecycle support for site automation/digital applications; with a focus on systems administration, virtualization, cross-platform integrations, and digital compliance. Help deliver projects to transition and upgrade current OTN infrastructure to meet GSK IT and cyber security standards. * Projects - Responsible for ensuring that all projects and engineering changes at the cluster comply with the GSK OT Security standards, guidance, processes and procedures. * OT Security Risk Management - Owning and managing site OT Security risks including reducing and maintaining risks at an acceptable level. This involves working closely with the OT Security Manager to prioritize mitigation actions in alignment with the region's strategy and available budget. * Technical support - Role is part of the site Operations team and is expected to provide hands-on support to the Operations team - Troubleshoot and diagnose problems within the OT network infrastructure, including virtualization hosts, server/system hardware, network switches, PLC/DCS controllers, and network devices. Role is also responsible for providing technical leadership during solution design, development, testing and implementation. * Technical author/approver of local processes & procedures and ensure compliance with applicable GSK policies and procedures. * To act as an advocate for OT Cybersecurity, enabling operations/projects to maximize the exploitation of technology while the OT Security is maintained. This involves working closely with the site Automation Manager to bring continuous improvements. Also support delivery of cyber security training to the site. Why you? Basic Qualifications: We are looking for professionals with these required skills to achieve our goals: * Bachelor's degree in computer science, engineering, or science related field * 3 plus years' experience supporting Automation/ICS/OT systems and infrastructure. * Experience with Automation/ICS/OT systems (BMS, PLC, SCADA, HMI, Field Instrumentation, etc.) * Specialist training in OT Cyber Security (SANS ICS410/ICS515 and/or ISA/IEC 62443 or equivalent) and/or experience in Cyber Security risk reduction for IT/OT infrastructure. * Experience with IT/OT networks principles and experience with networking concepts and hardware/technologies (TCP/IP, routers, switches, network-connected devices, etc.) * Experience managing contractor/consulting staff. Preferred Qualifications: If you have the following characteristics, it would be a plus: * Experience working within Automation or Operations at life science (pharmaceutical) Manufacturing and/or R&D sites in a regulated industry (exposed to GxP & EHS requirements). * Strong Knowledge of IT/OT infrastructure and proven experience in delivering capital projects to achieve Cyber Security risk reduction. * Experience with enterprise firewalls & networking, (Microsoft HyperV Server, Palo Alto & Cisco preferred) * Experience with industrial networks (e.g. Profibus, Fieldbus, Ethernet, Modbus, Bacnet and Serial comms 485, RS232 etc.) * Experience in systems/account administration, network design, and server troubleshooting is strongly preferred. * Leadership skills to enhance the cybersecurity mindset of the workforce on site and be the main advocate of the OT Security standards. Please visit GSK US Benefits Summary to learn more about the comprehensive benefits program GSK offers US employees. Why GSK? Uniting science, technology and talent to get ahead of disease together. GSK is a global biopharma company with a special purpose - to unite science, technology and talent to get ahead of disease together - so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns - as an organisation where people can thrive. We prevent and treat disease with vaccines, specialty and general medicines. We focus on the science of the immune system and the use of new platform and data technologies, investing in four core therapeutic areas (infectious diseases, HIV, respiratory/ immunology and oncology). Our success absolutely depends on our people. While getting ahead of disease together is about our ambition for patients and shareholders, it's also about making GSK a place where people can thrive. We want GSK to be a place where people feel inspired, encouraged and challenged to be the best they can be. A place where they can be themselves - feeling welcome, valued, and included. Where they can keep growing and look after their wellbeing. So, if you share our ambition, join us at this exciting moment in our journey to get Ahead Together. If you require an accommodation or other assistance to apply for a job at GSK, please contact the GSK Service Centre at ************** (US Toll Free) or *************** (outside US). GSK is an Equal Opportunity Employer and, in the US, we adhere to Affirmative Action principles. This ensures that all qualified applicants will receive equal consideration for employment without regard to race, color, national origin, religion, sex, pregnancy, marital status, sexual orientation, gender identity/expression, age, disability, genetic information, military service, covered/protected veteran status or any other federal, state or local protected class. Important notice to Employment businesses/ Agencies GSK does not accept referrals from employment businesses and/or employment agencies in respect of the vacancies posted on this site. All employment businesses/agencies are required to contact GSK's commercial and general procurement/human resources department to obtain prior written authorization before referring any candidates to GSK. The obtaining of prior written authorization is a condition precedent to any agreement (verbal or written) between the employment business/ agency and GSK. In the absence of such written authorization being obtained any actions undertaken by the employment business/agency shall be deemed to have been performed without the consent or contractual agreement of GSK. GSK shall therefore not be liable for any fees arising from such actions or any fees arising from any referrals by employment businesses/agencies in respect of the vacancies posted on this site. Please note that if you are a US Licensed Healthcare Professional or Healthcare Professional as defined by the laws of the state issuing your license, GSK may be required to capture and report expenses GSK incurs, on your behalf, in the event you are afforded an interview for employment. This capture of applicable transfers of value is necessary to ensure GSK's compliance to all federal and state US Transparency requirements. For more information, please visit the Centers for Medicare and Medicaid Services (CMS) website at *********************************

More than 1,000 organizations worldwide-from 25 Fortune 100 companies to small enterprises-use Bit9 + Carbon Black to increase security, reduce operational costs and improve compliance. Leading managed security service providers (MSSP) and incident response (IR) companies have made Bit9 + Carbon Black a core component of their advanced threat prevention, threat detection and incident response services. With Bit9 + Carbon Black, you can arm your endpoints against advanced threats. Job Description We are looking for a Cloud Security Engineer who can provide hands-on technical engineering and ownership of the growing cloud security program, across multiple providers. You will work closely with our Product Management group as well our Cloud Operations team to help build secure and robust systems responsible for serving all of Bit9 + Carbon Black customers. Role Description: The Cloud Security Engineer provides cyber security expertise in the analysis, assessment, development, and evaluation of security solutions and architectures to secure applications, operating systems, databases, and networks. Additionally, the Cloud Security Engineer assists in the development of cyber security requirements, conducts security risk assessments, evaluates security services and technologies, and reviews and documents information security policies and procedures as well as provides monitoring and oversight for alerts in this environment. Key Responsibilities: Serves as the subject matter expert (SME) on Cloud Security for Bit9 + Carbon Black Develops standards, policies and procedures as well as best practices documentation. Participate in efforts that tailor the company's security policies and standards for use in cloud environments Translate security and technical requirements into business requirements, and communicate security risks to different audiences ranging from business leaders to engineers. Propose and/or design technical solutions, which include creating prototypes and proofs of concept while maintaining a security mindset Lead and influence multi-disciplinary teams in implementing and operating Cyber Security controls. Work closely with application developers and database administrators to deliver creative solutions to complex technology challenges and business requirements. Provides Info security architecture & systems engineering consulting to other IT and business teams. Automate security controls, data and processes to provide better metrics and operational support Utilize cloud-based APIs when appropriate to write network/system level tools for securing cloud environments Stay current on emerging security threats, vulnerabilities and controls. Identify and Implement new security technologies and best practices into Bit9's Cloud offerings Evaluates new technologies against established requirements and validate the security of the technology. Create technical and managerial level reports and risk assessments for Cloud based applications and infrastructure Identify processes/procedures for how to handle a cloud security event, including forensic isolation and mitigation with Digital Forensics and Incident Response (DFIR/IR) teams Supports the monitoring and maintaining network security suite of tools. Identify new security threats by conducting continual monitoring, penetration testing, vulnerability assessments and log analysis Qualifications Bachelor's degree in related business or technical areas, or an equivalency of education and work experience. Minimum of 5-7 years of IT Security and/or security engineering experience 5-7 years related experience in Computer Security, with proven focus on Cloud Security. Clear passion for cloud Security and Cloud technologies. Must have experience with virtualization (cloud or non-cloud) Expert knowledge of Cloud infrastructure, security architectures, and standards Deep technical knowledge of Amazon Web Services, and FedRAMP Able to demonstrate clear understanding of current threats to Cloud infrastructure and/or IT infrastructures at technical and managerial levels Able to automate/script daily tasks through Python, Bash or equivalent Experience with web-based applications or web-services Proficient in Linux system design, automation and operations Experience in designing and implementing standards, specifications and procedures. Demonstrated ability to take initiative and accountability for achieving results. Strong interpersonal, oral, and written communication skills Knowledge of network and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols) Skilled in discussing complex security issues in understandable business terms. Very detailed knowledge of system security vulnerabilities and remediation techniques Security certification desired (e.g., CISSP, GIAC, CEH, etc) Experience using Microsoft Visio Additional Information About us: Cyber attacks are now the new normal. Advanced hackers, nation states, organized crime groups and nefarious actors are doing anything and everything they can to get their hands on valuable information that isn't theirs. With more than enough attack vectors out there, we at Bit9 + Carbon Black are looking for more creative and committed security professionals to protect today's top organizations. Bit9 + Carbon Black is an equal opportunity employer.

HPR is the leading provider of high-performance and ultra-low latency electronic trading and capital markets infrastructure solutions offered as a managed service. Our cutting-edge technology is used by tier-1 financial institutions to monitor and execute trades rapidly and efficiently. As we continue to innovate and grow, we are seeking a skilled and proactive Linux Security Engineer II to join our IT team. This role combines expertise in managing Linux-based systems with a strong focus on cybersecurity, network security, and endpoint management. The ideal candidate will play a critical role in maintaining a secure and efficient IT infrastructure while contributing to system optimization and automation efforts. As a Linux Security Engineer II you will: Manage, configure, and optimize Linux servers. Implement security best practices, including system hardening, access control, and encryption to safeguard IT infrastructure. Automate routine tasks and system deployments using scripting (Bash, Python) and configuration management tools like Ansible. Monitor, analyze, and manage security logs using SIEM tools to detect and respond to potential threats. Conduct vulnerability assessments, perform patch management, and mitigate risks across systems and networks. Maintain detailed and up-to-date documentation for system configurations, network diagrams, security policies, and procedures. REQUIRED SKILLS MS/BS in Computer Science, Electrical Engineering, Computer Engineering, or related 3+ years of relevant work experience with Linux operating systems (Ubuntu, CentOS, RedHat). Hands-on experience with SIEM tools. Experience in managing firewalls and ensuring network security. Familiarity with endpoint management solutions and tools. Proficiency in scripting and automation (Bash, Python, Ansible). Strong understanding of virtualization technologies (VMware, KVM) and storage. Knowledge of compliance and security standards (CIS benchmarks, ISO 27001). Familiarity with cloud technologies (Azure, AWS). Ability and willingness to continuously learn new technologies and stay up-to-date with the latest industry trends and advancements. Comfortable being onsite in Needham, MA 5 days a week Please note: HPR currently does not provide employment sponsorship

Implement and administer information security controls, associated processes to protect the confidentiality, integrity, and availability of Company assets. Analyze system event data, troubleshoot issues, and provide management reports. Participate in evaluating new technologies and applications, assessing vulnerabilities and risks, detecting and responding to incidents, and recommending appropriate safeguards. Assist in the evaluation, selection, implementation, and administration of security software across platforms. Assist in promoting security awareness and compliance throughout the corporation. Knowledge, Skills and Abilities Education: Bachelor's Degree or professional level of knowledge in a specialized field, or equivalent, related experience. Experience: 0 - 2 years - or Associates Degree equivalent plus 2 - 4 years. We will consider candidate with no work experience. Knowledge: General knowledge of industry practices, standards, and concepts within field of work. Applies them to perform work requiring analytical business skills. Experience running a Security Operations Center including: Cyber Threat Intelligence, Cyber Threat Hunting, Incident Response, and modern Security Information and Event Management tools such as Splunk or Sentinel Decision Making: Makes decisions related to a wide variety of situations within management limits. Interprets guidelines and procedures, applying judgment and discretion. Decisions influence portions of a project, client relationships and/or expenditures. Supervision Received: Works independently under general supervision. Work is reviewed for overall adequacy in performing tasks. Leadership: Works as an individual contributor. Learns the job. Problem Solving /Operations/Direct Work Involvement: Develops solutions to a variety of problems, typically of moderate scope and complexity. Refers to and interprets policies and practices for guidance. Client Contacts: Contacts other departments and or external organizations or parties frequently. Contacts are primarily at or below upper management levels. Represents organization on specific projects. Communication may involve persuasion, and negotiation. If you require an accommodation for a disability so that you may participate in the selection process, you are encouraged to contact the MAPFRE Insurance Talent Acquisition team at *******************************. We are proud to be an equal opportunity employer.

**Title:** Infrastructure Security Engineer (US citizen) **Salary:** $120K/annually **About PSI** We are PSI Services. We power world leading tests. Delivered with trusted science and the very best test taker experience. PSI supports test-takers on their journey to pursuing dreams and gaining certifications that are important to them. They believe that their dreams are worth working for; that their dreams are worth the effort. And we believe that too. This is our core purpose, to empower people to achieve their dreams. We do this by being the best provider of workforce solutions, which foster both technology and science to deliver the best solutions for our test takers. We are searching for top talent to join our PSI team and help grow our products and services. We have a creative, supportive and inclusive culture where we empower people in their careers to be their authentic self and make the most of their great talent. At PSI, we are committed to helping people meet their potential and we believe that promoting diversity, equity and inclusion is critical to our success. That's why you'll find these ideals are intrinsic to our company culture and applied throughout the employee lifecycle. Learn more about what we do at: ************************* **About the Role** The Infrastructure Security Engineer (ISE) is responsible for ensuring that PSI systems are secure, well maintained, and appropriately monitored. They work with senior management across all business units to design security solutions and ensure that PSI environments are designed and maintained in accordance with industry standards. Infrastructure Security Engineers ensure adherence to ISO27001, SOC2, CIS, NIST and other standards. They possess a broad understanding of log aggregation solutions, server hardware, Linux and Windows operating systems, storage, networking, and load balancing. The Infrastructure Security Engineer leads projects and organizes teams to achieve technical and security objectives. Infrastructure Security Engineers work as part of a global team to design, implement, and monitor security across the organization. They engage with vendors, business and technology partners to lead projects and constantly improve security posture. **Role Responsibilities** + Lead projects to evaluate, select, and implement security technologies + Design, configure, implement, and maintain all security platforms and their associated software: firewalls, intrusion detection/intrusion prevention, antivirus/EDR, URL Filtering, email security gateway, SIEM, vulnerability assessment solutions, DLP + Respond to security events and incidents performing containment, root cause analysis, and remediation. + Maintain enterprise vulnerability scanning infrastructure, ensuring daily operation of scans and reporting are occurring as required + Coordinate and sequence external scans and penetration testing + Monitor application and system activity logs for potential threats + Keep up to date with evolving trends and changes in security models and methodologies + Threat model common attacker methods to develop appropriate mitigation techniques + Define and develop technical security standards and guidelines with business stakeholders + Participate in product security architecture planning for both on-premises and cloud-based solutions + Ensure server infrastructure is secure, patched and updated + Take proactive steps to resolve issues before they impact the business + Maintain accurate and up to date security documentation + Serve as team lead and subject matter expert for security **Knowledge, Skills and Experience Requirements** + Bachelor's degree in computer science or equivalent training/certification. + 10+ years of working experience as a Security Engineer or Systems Engineer + 5+ years of working experience with email security tools such as Proofpoint + 5+ years of working experience with CrowdStrike EDR and SIEM solutions + Ability to achieve federal security clearance, must be a US Citizen + Experience with FedRamp security controls, + In-depth knowledge and understanding of the integration of AWS with fundamental Information Security methodologies for both architectural review and implementation + Strong knowledge of Windows and Linux environments + Experience drafting and promoting security policy with all levels of business stakeholders + Experience and detailed technical knowledge of security engineering, system and network security, authentication and security protocols, cryptography, and application security + Detailed knowledge of core server technologies and domain configuration and management, including DNS, DHCP, AD and group policy + Experience in Domain Trusts, Active Directory Federation, and Entra ID + Experience managing remote infrastructure across multiple time zones + Detailed understanding of Azure, AWS, Hyper-V, VMWare and SAN technologies + Understanding of network topologies such as VLANs, IPs, subnets, and routing + Understanding of PowerShell / VB Scripting + Good written and verbal communication skills with the ability to follow a project from beginning to end while providing updates along the way, while prioritizing time and dealing with multiple projects + Experience with CIS Hardening Standards and/or DISA STIGs + Experience with load balancers (F5, Barracuda, Azure) **Benefits & Culture** At PSI, our culture is to be transparent and fair. That's why all of our roles have been benchmarked at a competitive rate against the local market they are based in. To be transparent all of our adverts now include the salary so you can see if we align with your expectations when looking for your next role. In addition to a competitive salary, we offer a comprehensive benefits package and supportive culture when you join us. This includes: + 401k/Pension/Retirement Plan - with country specific employer % + Enhanced PTO/Annual Leave + Medical insurance - country specific + Dental, Vision, Life and Short-Term Disability for US + Flexible Spending Accounts - for the US + Medical Cashback plan covering vision, dental and income protection for UK + Employee Assistance Programme + Commitment and understanding of work/life balance + Dedicated DE&I group that drive core people initiatives + A culture of embracing wellness, including regular global initiatives + Access to supportive and professional mechanisms to help you plan for your future + Volunteer Day and a culture of giving back to our community and industry through volunteering opportunities Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)

Description & Requirements We are seeking a Lead Systems Security Analyst to join our team supporting our Internal Revenue Service (IRS) client. Essential Duties and Responsibilities: - Lead the design, development, engineering, and implementation of application solutions that meet security requirements. - Lead the collaboration with cybersecurity contacts and/or clients to triage, document, and address application security vulnerabilities. - Design and implement role-based access control architecture and Segregation of Duties (SOD) protocol. - Communicate solutions and updates to senior leadership, which may include clients. - May support Authority-to-Operate (ATO) process. Job-Specific Essential Duties and Responsibilities: - Develop specifications for extremely complex computer network security/protection technologies for IRS information and network systems/applications. - Develop security solutions for the IRS's networks and virtual private networks, application systems, key public infrastructures, authentication and directory services to ensure the security of network and taxpayer information. - Perform patch/release management and ensure all packages are deployed efficiently and as transparently as possible. Interface with the program team to ensure appropriate resolution of issues. - Identify emergent vulnerabilities, evaluate associated risks and threats, and design network vulnerability scans to identify security vulnerabilities and provide remediation alternatives to the customer. - Provide system support on security tools and surrounding interconnectivity with external and internal system segments. - Provide technical expertise on the integration of IT systems. - Develop system requirements, specification preparation, test plans, deployment and upgrade plans. - Conduct Operations and Maintenance support to identify severity of problems, determines corrective action, resolves technical problems, and performs fault isolation and implements solutions. - Carry out procedures to address Information Assurance (IA) and security requirements based upon the analysis of user, policy, regulatory, and resource demands. - Advise information system owners on client/project security policies and requirements for systems. - Provide support for design, architecture, development, unit test, deployment, installation, configuration, integration, operation, and maintenance. - Develop cyber security documentation and artifacts to support system authorization, including System Security Plan, Security Control Assessment, Authorization to Operate (ATO). - Support readiness activities, including development of training materials and schedules for end-user training on deployed systems, and coordination of stakeholder working sessions to identify and track gap closure. - Support the implementation and configuration of systems and security products. - Support data quality analysis and reporting. - Ensure all tasks are completed in compliance with all IRS security requirements. - Provide status reports, attend and facilitate meetings and take/distribute minutes. - Perform complex risk analyses and risk assessment. Plan and execute risk management activities. Minimum Requirements - Typically has a University Degree (BA/BS) or equivalent experience and minimum 7 years of related work experience. Job-Specific Minimum Requirements: - Minimum three (3) years of working experience with Splunk and technical add-ons in the integration, testing, and implementation of large-scale analytical data sets in Splunk. - Minimum five (5) years of experience with implementing, configuring and managing IRS systems, platforms and tools (e.g., Splunk, Qmulos, Archer, Cloud, ESAT, CDM) - Knowledge of federal information security policies, standards, procedures, directives, and risk management processes. - Minimum two (2) years of experience working in an Agile Team - Proven ability to work on and with many development teams that are dispersed across geographical sites. Experience using online communication tools (e.g., Microsoft Teams, Zoom). - Excellent verbal and written communication skills. - Ability to work in a fast-paced, dynamic environment. - Ability to work well independently or in a team setting. Additional Requirements, as per Contract/Client: - Candidates must have held an active IRS MBI clearance within the last 2 years to qualify - Candidates must be a US Citizen or a Legal Permanent Resident (Green Card status) for 3 years, and be Federal Tax compliant. EEO Statement Active military service members, their spouses, and veteran candidates often embody the core competencies Maximus deems essential, and bring a resiliency and dependability that greatly enhances our workforce. We recognize your unique skills and experiences, and want to provide you with a career path that allows you to continue making a difference for our country. We're proud of our connections to organizations dedicated to serving veterans and their families. If you are transitioning from military to civilian life, have prior service, are a retired veteran or a member of the National Guard or Reserves, or a spouse of an active military service member, we have challenging and rewarding career opportunities available for you. A committed and diverse workforce is our most important resource. Maximus is an Affirmative Action/Equal Opportunity Employer. Maximus provides equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status or disabled status. Pay Transparency Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances. Minimum Salary $ 145,000.00 Maximum Salary $ 165,000.00

Headquartered in Dublin, Ohio, Cardinal Health, Inc. (NYSE: CAH) is a global, integrated healthcare services and products company, providing customized solutions for hospitals, health systems, pharmacies, ambulatory surgery centers, clinical laboratories and physician offices worldwide. The company provides clinically-proven medical products and pharmaceuticals and cost-effective solutions that enhance supply chain efficiency from hospital to home. Cardinal Health connects patients, providers, payers, pharmacists and manufacturers for integrated care coordination and better patient management. Backed by nearly 100 years of experience, with approximately 50,000 employees in 46 countries, Cardinal Health ranks among the top 20 on the Fortune 500. We currently have a full-time career opening within Information Security to support the growth of our Navista Application Suite and the Integrated Oncology Network (IoN). **Department overview** The Information Security department at Cardinal Health enables Cardinal Health to securely deliver healthcare products and solutions that improve the lives of people every day by ensuring security practices and controls are embedded into Cardinal Health's people, process and technology. We are a remote-first team and are excited to offer full-time remote opportunities. **Functional Overview** The Senior Information Security & Risk Engineer is a new capability for Cardinal Health and will be executed by the Product Security team. The primary goal of this position is to ensure delivery of best-in-class cybersecurity, risk management, and compliance for Navista, an oncology Managed Service Offering hosted by Cardinal Health. **Job Overview** The Information Security & Risk Engineer will be responsible for day-to-day activities in implementing the corporate information security and compliance program. The individual will be a front-line partner to technical teams and work across the organization to deliver security and compliance initiatives aligning to corporate policies, standards, procedures and audit activities. Success in the role will be measured by the effectiveness of the implementation of information security, risk management and compliance directives. This role will work with various IT and business teams to drive both information security and compliance initiatives. The individual will assist with internal and external security compliance monitoring activities, review client audits, IT control audits, architecture reviews, threat modeling and security risk assessments. Good interpersonal and relationship building skills are essential for success. **Job Responsibilities Include:** + Maintain governance program that ensures that the security policies, standards and process are in place + Serve as liaison to other Cardinal Health teams to ensure knowledge share and best practices + Partner with the engineering, architecture and operations teams to ensure delivery of infrastructure design and threat models which prove security requirements + Monitor security trends and drive security best practices throughout the organization via threat models and risk analysis + Evaluate, design, test, and recommend new or improved controls + Work with third party firms and consultants to conduct independent security audits, vulnerability scans, and penetration tests + Partner with developers to mentor and advise on secure coding and SDLC practices, define test cases and ensure appropriate testing, remediations, and mitigations + Investigate, drive resolution and document security incidents + Travel to various Integrated Oncology Network (IoN) sites may be required **Qualifications** + Bachelors Degree in related field, or equivalent work experience leading cybersecurity or information security initiatives + Have 5+ years information security related work experience, preferably within the healthcare industry + Extensive experience with network and infrastructure design and security, ideally within the Azure cloud + Experience in vulnerability management programs, vulnerability assessments and advanced understanding of risk management + Familiarity with at least one common programming language, software development pipelines, and system lifecycles + Familiarity with standards such as HIPAA/HITECH, ISO, ITIL, NIST, PCI DSS, & SOX, CCPA, OWASP + Professional security certification (CISSP or CISM preferred) + Experience advising and mentoring diverse teams where you do not have direct authority + Strong written and verbal communication skills **Anticipated salary range:** $121,600 - $182,385 **Bonus eligible:** Yes **Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being. + Medical, dental and vision coverage + Paid time off plan + Health savings account (HSA) + 401k savings plan + Access to wages before pay day with my FlexPay + Flexible spending accounts (FSAs) + Short- and long-term disability coverage + Work-Life resources + Paid parental leave + Healthy lifestyle programs **Application window anticipated to close:** 4/7/2025 *if interested in opportunity, please submit application as soon as possible. The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity. _Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._ _Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._ _To read and review this privacy notice click_ here (***************************************************************************************************************************

The Company Lila Sciences is a privately held, early-stage technology company pioneering the application of artificial intelligence to transform every aspect of the scientific method. Lila Sciences is backed by Flagship Pioneering, which brings the courage, long-term vision, and resources needed to realize unreasonable results. Join our mission-driven team and contribute to the future of science. Our platform is integrating AI and automation into discovery and development efforts across materials and life sciences to accelerate solutions for sustainability and therapeutics challenges. At Lila Sciences, we are uniquely cross-functional and collaborative. We are actively reimagining the way teams work together and communicate. Therefore, we seek individuals with an inclusive mindset and a diversity of thought. Our teams thrive in unstructured and creative environments. All voices are heard because we know that experience comes in many forms, skills are transferable, and passion goes a long way. If this sounds like an environment you'd love to work in, even if you only have some of the experience listed below, please apply. The Role Lila Sciences is seeking a passionate and skilled Senior Security Operations Analyst to join our team. This role is critical in maintaining and enhancing our security posture by actively monitoring security systems, analyzing threats, and coordinating incident response efforts. You will use advanced security tools and techniques to effectively detect, manage, and respond to potential threats and incidents. Responsibilities Include: Threat Detection & Analysis: Continuously monitor security alerts from various sources to identify potential threats on the company network. Analyze security incidents and use threat intelligence to stay informed about emerging threats and vulnerabilities. Incident Response: Lead and coordinate the response to security incidents, including analysis, containment, eradication, and recovery. Conduct root cause analysis and provide recommendations for strengthening security measures. Security Monitoring & Tools: Utilize and optimize security tools such as SIEMs, intrusion detection/prevention systems, and endpoint protection solutions for effective threat monitoring and detection. Recommend enhancements to security tools and configurations to improve detection capabilities. Security Operations & Processes: Develop and maintain security monitoring processes and procedures to ensure timely detection and response to threats. Collaborate with IT and application teams to integrate security practices into their operations. Reporting & Documentation: Maintain detailed incident logs, reports, and other relevant documentation for accountability and improvement. Provide regular reports to management on security posture, incidents, and threat landscape. Training & Development: Mentor and provide guidance to other IT staff on security monitoring and response best practices. Participate in security awareness programs for the company. Continuous Improvement: Evaluate and recommend improvements to Security operations processes and technologies to enhance threat detection and response. Stay current with industry trends, best practices, and emerging threats. Qualifications: Bachelor's/master's degree in computer science, Information Technology, or a related field. 10+ years of experience in a relevant security operations role, with a focus on security monitoring and incident response. Strong analytical and problem-solving skills with a keen ability to assess and manage security risks. Proficiency with security tools such as SIEMs, IDS/IPS, and endpoint protection solutions. Relevant certifications such as CISSP, GCIH, GCIA, or equivalent is advantageous. Excellent communication skills, with the ability to explain complex technical issues to non-technical audiences. Ability to work independently as well as collaboratively in a team environment. Working at Lila Sciences, you would have access to advanced technology in the areas of: AI experimental design and simulation Automated custom instrumentation Generative molecular and material design More about Flagship Pioneering Flagship Pioneering is a platform innovation company that invents and builds platform companies, each with the potential for multiple products that transform human health or sustainability. Since its launch in 2000, Flagship has originated and fostered more than 100 scientific ventures, resulting in more than $90 billion in aggregate value. Many of the companies Flagship has founded have addressed humanity's most urgent challenges: vaccinating billions of people against COVID-19, curing intractable diseases, improving human health, preempting illness, and feeding the world by improving the resiliency and sustainability of agriculture. Flagship has been recognized twice on FORTUNE's “Change the World” list, an annual ranking of companies that have made a positive social and environmental impact through activities that are part of their core business strategies, and has been twice named to Fast Company's annual list of the World's Most Innovative Companies. Learn more about Flagship at *************************** Flagship Pioneering and our ecosystem companies are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. Recruitment & Staffing Agencies : Flagship Pioneering and its affiliated Flagship Lab companies (collectively, “FSP”) do not accept unsolicited resumes from any source other than candidates. The submission of unsolicited resumes by recruitment or staffing agencies to FSP or its employees is strictly prohibited unless contacted directly by Flagship Pioneering's internal Talent Acquisition team. Any resume submitted by an agency in the absence of a signed agreement will automatically become the property of FSP, and FSP will not owe any referral or other fees with respect thereto.

Draper is an independent, nonprofit research and development company headquartered in Cambridge, MA. The 2,000+ employees of Draper tackle important national challenges with a promise of delivering successful and usable solutions. From military defense and space exploration to biomedical engineering, lives often depend on the solutions we provide. Our multidisciplinary teams of engineers and scientists work in a collaborative environment that inspires the cross-fertilization of ideas necessary for true innovation. For more information about Draper, visit *************** Summary: The High Availability Architecture Group within the Systems Engineering directorate is seeking a Distinguished System Security Engineer to guide and facilitate concept development, mission-system analysis, and requirement definition & compliance for critical, yet novel & disruptive cyber resilient technologies. This handpicked candidate must possess a unified System Security, Cybersecurity, and Cryptography expertise that can expand Draper's insight to address national security threats which remain prevalent throughout critical enterprises, infrastructure, systems, and operations. A successful candidate will be equipped to propose modern solutions embedded with security awareness, that adhere to NIST, NSA, and DoD standards, to proactively mitigate unacceptable loss and unrecoverable downtime throughout their lifecycle. The multidisciplinary proficiencies supporting this initiative are System Security Concepts & Design Principles, Resilient Architecture, Anomaly & Contingency Management, and Cryptography & Key Management. : Duties/Responsibilities • Manage and control priorities, scope, schedule, and cost to baselines by proactively monitoring program/task performance across major programs. Demonstrated leadership of complex tasks (multi-disciplinary, high risk, changing requirements, high visibility). develops and executes mitigation strategies for them. • Independently derive system-level requirements based on mission requirements and customer priorities. • Capable of helping customers shape their needs and develop requirements for programs that solve their most challenging technical problems. • Subject Matter Expert (SME) able to develop and implement novel security approaches through a program lifecycle. • Advance State of the Art solutions and techniques in their field. • Able to analyze Draper strategy and work with management to build capability in key areas to help sustain business growth Skills/Abilities • Curiosity-driven approach to solving complex, industry and customer-driven problems as part of a multi-disciplinary team. • Collaborate and communicate effectively and openly with multi-disciplinary program team members. program leadership, and non-technical personnel • Team player able to work in a fast-paced environment. • Ability to balance multiple competing tasks and demands. Education Requires a bachelor's degree in Electrical Engineering, Computer Engineering, Mechanical Engineering, Systems Engineering, Applied Physics, or related field. Master's degree preferred. Experience Requires 10-15 years' of experience working on System Security Engineer or other relevant position. Additional Job Description: Proficiency applying System Theoretic Process Analysis for Security (STPA-Sec) to industry challenge problems Proficiency with Model-based System Engineering toolkits, such as Cameo/MagicDraw, DOORs/DoorsNG, Jama Connect for the purposes of attack surface modeling and rapid impact & gap analysis for validation An astute understanding of the applications of cryptography for complex weapon and space systems, cryptographic key management, Public Key Infrastructure (PKI) and the NSA's Key Management Infrastructure Experience documenting compliance towards parent specifications and standards (i.e.: NIST SP 800.160, NIST Cybersecurity Framework (CSF) 2.0, DoD Cyber Tabletop Guide, NIST SP 800-57, NIST 800.53 & Risk Management Framework (RMF), MITRE Attack Framework, and DoD Instruction 3150.02) Proficiency in requirement derivation, definition, and analysis for System Security, Network Security, and Data Security needs Experience integrating vulnerability remediation, risk mitigation, and incident response within the Systems Engineering process. Experience drafting innovative R&D proposals to commercial government sponsors Applicants selected for this position will be required to obtain and maintain a government security Government security clearance. Connect With Draper for Future Opportunities! If you don't find the right posting in our Career Opportunities, you may submit your resume for future consideration. Job Location - City: Cambridge Job Location - State: Massachusetts Job Location - Postal Code: 02139-3563 Our work is very important to us, but so is our life outside of work. Draper supports many programs to improve work-life balance including workplace flexibility, employee clubs ranging from photography to yoga, health and finance workshops, off site social events and discounts to local museums and cultural activities. If this specific job opportunity and the chance to work at a nationally renowned R&D innovation company appeals to you, apply now *********************** Draper is committed to creating an inclusive environment. We understand the value of inclusivity and its impact on a high-performance culture. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, national origin, veteran status, or genetic information. Draper is committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation, please contact *************.

The Company Lila Sciences is a privately held, early-stage technology company pioneering the application of artificial intelligence to transform every aspect of the scientific method. Lila Sciences is backed by Flagship Pioneering, which brings the courage, long-term vision, and resources needed to realize unreasonable results. Join our mission-driven team and contribute to the future of science. Our platform is integrating AI and automation into discovery and development efforts across materials and life sciences to accelerate solutions for sustainability and therapeutics challenges. At Lila Sciences, we are uniquely cross-functional and collaborative. We are actively reimagining the way teams work together and communicate. Therefore, we seek individuals with an inclusive mindset and a diversity of thought. Our teams thrive in unstructured and creative environments. All voices are heard because we know that experience comes in many forms, skills are transferable, and passion goes a long way. If this sounds like an environment you'd love to work in, even if you only have some of the experience listed below, please apply. The Role Lila Sciences is seeking a passionate and skilled Senior Security Operations Analyst to join our team. This role is critical in maintaining and enhancing our security posture by actively monitoring security systems, analyzing threats, and coordinating incident response efforts. You will use advanced security tools and techniques to effectively detect, manage, and respond to potential threats and incidents. Responsibilities Include: Threat Detection & Analysis: Continuously monitor security alerts from various sources to identify potential threats on the company network. Analyze security incidents and use threat intelligence to stay informed about emerging threats and vulnerabilities. Incident Response: Lead and coordinate the response to security incidents, including analysis, containment, eradication, and recovery. Conduct root cause analysis and provide recommendations for strengthening security measures. Security Monitoring & Tools: Utilize and optimize security tools such as SIEMs, intrusion detection/prevention systems, and endpoint protection solutions for effective threat monitoring and detection. Recommend enhancements to security tools and configurations to improve detection capabilities. Security Operations & Processes: Develop and maintain security monitoring processes and procedures to ensure timely detection and response to threats. Collaborate with IT and application teams to integrate security practices into their operations. Reporting & Documentation: Maintain detailed incident logs, reports, and other relevant documentation for accountability and improvement. Provide regular reports to management on security posture, incidents, and threat landscape. Training & Development: Mentor and provide guidance to other IT staff on security monitoring and response best practices. Participate in security awareness programs for the company. Continuous Improvement: Evaluate and recommend improvements to Security operations processes and technologies to enhance threat detection and response. Stay current with industry trends, best practices, and emerging threats. Qualifications: Bachelor's/master's degree in computer science, Information Technology, or a related field. 10+ years of experience in a relevant security operations role, with a focus on security monitoring and incident response. Strong analytical and problem-solving skills with a keen ability to assess and manage security risks. Proficiency with security tools such as SIEMs, IDS/IPS, and endpoint protection solutions. Relevant certifications such as CISSP, GCIH, GCIA, or equivalent is advantageous. Excellent communication skills, with the ability to explain complex technical issues to non-technical audiences. Ability to work independently as well as collaboratively in a team environment. Working at Lila Sciences, you would have access to advanced technology in the areas of: AI experimental design and simulation Automated custom instrumentation Generative molecular and material design More about Flagship Pioneering Flagship Pioneering is a platform innovation company that invents and builds platform companies, each with the potential for multiple products that transform human health or sustainability. Since its launch in 2000, Flagship has originated and fostered more than 100 scientific ventures, resulting in more than $90 billion in aggregate value. Many of the companies Flagship has founded have addressed humanity's most urgent challenges: vaccinating billions of people against COVID-19, curing intractable diseases, improving human health, preempting illness, and feeding the world by improving the resiliency and sustainability of agriculture. Flagship has been recognized twice on FORTUNE's “Change the World” list, an annual ranking of companies that have made a positive social and environmental impact through activities that are part of their core business strategies, and has been twice named to Fast Company's annual list of the World's Most Innovative Companies. Learn more about Flagship at *************************** Flagship Pioneering and our ecosystem companies are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. Recruitment & Staffing Agencies : Flagship Pioneering and its affiliated Flagship Lab companies (collectively, “FSP”) do not accept unsolicited resumes from any source other than candidates. The submission of unsolicited resumes by recruitment or staffing agencies to FSP or its employees is strictly prohibited unless contacted directly by Flagship Pioneering's internal Talent Acquisition team. Any resume submitted by an agency in the absence of a signed agreement will automatically become the property of FSP, and FSP will not owe any referral or other fees with respect thereto.

PagerDuty, Inc. (NYSE:PD) is a global leader in digital operations management. Half of the Fortune 500 and nearly 70% of the Fortune 100 trust PagerDuty as essential infrastructure. Join us. (******************************* At PagerDuty, you'll tackle complex problems, collaborate with kind and ambitious people, and help build a more equitable world-all in a flexible, award-winning workplace. PagerDuty is seeking a **Security Engineer 4 - FedRAMP Compliance Architect** to join our diverse, customer-focused team! This **Security Engineer 4 - FedRAMP Compliance Architect** will design, implement, and maintain secure architectures that meet FedRAMP requirements in a multi-tenant cloud environment. This role combines deep technical expertise with FedRAMP compliance knowledge to create scalable, secure solutions. You'll be the glue between security compliance requirements and technical implementation, ensuring our cloud infrastructure meets federal security standards while enabling business objectives. **Key Responsibilities:** + Design, implement, and maintain system architectures to align with FedRAMP requirements. + Serve as the subject matter expert (SME) on FedRAMP, advising internal teams on security best practices, control implementations, and risk mitigation strategies. + Collaborate with engineering, operations, product, and corporate IT teams to develop secure cloud-based architectures that meet federal compliance mandates. + Implement governance strategy on technical security controls, including access management, configuration, encryption, logging, monitoring, and vulnerability management. + Support annual assessments, security control reviews, and audits, coordinating with third-party assessors (3PAO) and government sponsors. + Technical support for external stakeholders on customer responsibilities. + Key contributor to the development and maintenance of the System Security Plan (SSP), Policies and Procedures, Configuration Management Plan, Secure System Development Life Cycle, and other FedRAMP documentation + Partner with the GRC (Governance, Risk, and Compliance) team to efficiently track and resolve security findings. **Basic Qualifications:** + 5+ years of experience in cloud security architecture, compliance, or cybersecurity engineering, with at least 3 years of experience supporting FedRAMP Moderate or High authorization. + Deep expertise in FedRAMP, NIST 800-53, FISMA, and cloud security best practices. + Strong ability to assess security risks and recommend technical and procedural mitigations. + Experience working with AWS GovCloud, Azure Government, or other federal cloud environments. + Experience with audit preparation, risk assessments, and working with third-party assessors (3PAOs). + Exceptional written and verbal communication skills for creating and managing FedRAMP documentation. **Preferred Qualifications:** + Experience supporting DoD IL 4 or 5 environments. + Experience with data governance frameworks, secure data storage, and data lifecycle management in multi-tenant cloud environments. + Understanding of NIST AI Risk Management Framework (AI RMF) and its implications for secure AI adoption in government environments. + Familiar with SaaS security tools (such as Sumo Logic, Datadog, Crowdstrike, Wiz, Lucidchart, Snyk, and Qualys). + Familiarity with Cloud Native and SaaS constructs, including architectures, DevOps, CI/CD, and SecOps disciplines. + Relevant certifications, such as: + Certified Information Systems Security Professional (CISSP) + AWS Security Specialty, or equivalent + CompTIA Advanced Security Practitioner (CASP+) + Certificate of Cloud Security Knowledge (CCSK) The base salary range for this position is 176,000 - 281,000 USD. This role may also be eligible for bonus, commission, equity, and/or benefits. Our base salary ranges are determined by role, level, and location. The range, which is subject to change based on primary work location, reflects the minimum and maximum base salary we expect to pay newly hired employees for the position. Within the range, we determine pay for an individual based on a number of factors including market location, job-related knowledge, skills/competencies and experience. Your recruiter can share more about the specific offerings for this role, as well as the salary range for your primary work location during the hiring process. **Hesitant to apply?** We encourage you to submit your resume even if you don't meet every requirement. We value potential and consider each candidate's full professional story. Whether you're exploring a career change or taking your next step, we look forward to reviewing your application. If this just isn't the right role or time - sign up for job alerts (**************************************** ! **Where we work** PagerDuty currently has offices (**************************************** in Atlanta, Lisbon, London, San Francisco, Santiago, Sydney, Tokyo, and Toronto. We offer a hybrid, flexible environment. We also provide ample opportunities for connection, like team offsites and volunteering events. **How we work** Our values (************************************** guide how we support customers, collaborate with colleagues, develop products, and foster a culture of belonging. They define not just our actions, but what it means to be Dutonian. **What we offer** As a global organization, our total rewards approach is competitive with industry standards and aligned with local laws and regulations. Learn more, including country-specific offerings, on our benefits site (********************************************** . **Your package may include:** - Competitive salary - Comprehensive benefits package from day one - Flexible work arrangements - Company equity* - ESPP (Employee Stock Purchase Program)* - Retirement or pension plan* - Generous paid vacation time - Paid holidays and sick leave - Dutonian Wellness Days & HibernationDuty - companywide paid days off in addition to PTO - Paid parental leave: 22 weeks for pregnant parent, 12 weeks for non-pregnant parent (some countries have longer leave standards and we comply with local laws)* - Paid volunteer time off: 20 hours per year - Company-wide hack weeks - Mental wellness programs *Eligibility may vary by role, region, and tenure **About PagerDuty** PagerDuty, Inc. (NYSE:PD) is a global leader in digital operations management, enabling customers to achieve operational efficiency at scale with the PagerDuty Operations Cloud. The PagerDuty Operations Cloud combines AIOps, Automation, Customer Service Operations and Incident Management with a powerful generative AI assistant to create a flexible, resilient and scalable platform to increase innovation velocity, grow revenue, reduce cost, and mitigate the risk of operational failure. Half of the Fortune 500 and nearly 70% of the Fortune 100 rely on PagerDuty as essential infrastructure for the modern enterprise. PagerDuty is Great Place to Work-certified, a Fortune Best Workplace for Millennials, a Fortune Best Medium Workplace, a Fortune Best Workplace in Technology, and a top rated product on TrustRadius and G2. Go behind-the-scenes on our careers site (*********************************** and @pagerduty on Instagram. **Additional Information** PagerDuty is committed to creating a diverse environment and is an equal opportunity employer. PagerDuty does not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, parental status, veteran status, or disability status. PagerDuty is committed to providing reasonable accommodations for qualified individuals with disabilities in our job application process. Should you require accommodation, please email accommodation@pagerduty.com and we will work with you to meet your accessibility needs. PagerDuty uses the E-Verify employment verification program.

Information Posting Number SF01972 Job Title Cyber Security Engineer Position Number 108418 FTE 1.00 FLSA Exempt Position Type Professional Staff Union PTAA - Professional/Tech/Admin Assoc Pay Grade Level Grade Level: 14 Pay Grade Range Salary Hiring Range: $76,159 - $87,124 Status Calendar Year, Full-time, Permanent Department Information Department Technology Contact(s) Please note: Job applications must be submitted directly online only at: (********************* Contact Phone/Extension Contact Email Physical Demands Campus Location Kingston Grant Funded No Extension Contingency Notes Job Description Summary The search will remain open until the position has been filled. ______________________________________________________________________________________________________ About URI: The University of Rhode Island enrolls approximately 17,000 students across its graduate and undergraduate programs and is the State's flagship public research university, as well as the land grant and sea grant university, for the state of Rhode Island. The main campus is located in the historic village of Kingston, and the Bay Campus is located in Narragansett. Both campuses are near major beaches in a beautiful coastal community. URI is just 30 minutes from Providence, RI and within easy reach of Newport, Boston, and New York City. ________________________________________________________________________________________ BASIC FUNCTION: The Cyber Security Engineer plays a pivotal role in advancing the university's cybersecurity initiatives. This position requires expertise in endpoint security, data loss prevention, compliance standards like CMMC, and hands-on experience with Microsoft Azure security and DUO multi-factor authentication. The ideal candidate will proactively assess vulnerabilities, design secure configurations, and implement cutting-edge security solutions to safeguard the university's infrastructure. In addition, they work with URI constituents on providing support and managing relations. Create clear and concise documentation to formalize new processes. Process requests to resolve security issues with endpoint support and end users, including exception/exclusion handling. Administrate and implement policies/rules on endpoint devices and refine security standards. Implement and maintain cyber security management tools. Interact closely with product vendors, service providers, and personnel from various IT departments (including application development, cloud infrastructure, networking, and business units and colleges). Duties and Responsibilities ESSENTIAL DUTIES AND RESPONSIBILITIES: As the Cyber Security Engineer, you will lead the implementation and continuous improvement of CMMC compliance frameworks for research and institutional projects, providing you with a unique opportunity for growth and learning. Provide technical support, including monitoring, reporting, and tool administration. Design and integrate endpoint protection solutions into the university's infrastructure based on the ongoing business requirements and URI's security policy. As the Cyber Security Engineer, you will play a crucial role in keeping our security systems documentation up to date, ensuring the safety and integrity of our university's operations. Maintain awareness of the latest security risks, exploits, and vulnerabilities and apply them to the URI environment as required. Conduct regular security assessments to identify vulnerabilities, recommend mitigations, and ensure compliance with university policies and regulatory requirements. Build effective relationships with key stakeholders who own and support IT infrastructure, applications, processes, and operations. Examine systems and applications to assess the current security posture. Raise concerns to management regarding endpoint security deficiencies or enhancements that must be addressed. Develop, maintain, and monitor endpoint security technology and best practices and provide ongoing monitoring of new technology and capabilities. Possess and maintain broad technical and business knowledge of all aspects of endpoint technologies, including mobility, client operating systems, VDI, and IoT. Possess broad expertise with client and endpoint authentication (SSO), data protection, VPN, antivirus, and anti-malware technologies and controls. Oversee the implementation, administration, and operation of multiple endpoint security technologies, including Absolute, Cylance, Patch Management, Bitlocker, and FileVault. Work with the Manager of Endpoint Support to design and implement a stable, secure, and optimized endpoint environment for university constituencies. OTHER DUTIES AND RESPONSIBILITIES: Perform other duties as assigned. LICENSES, TOOLS, AND EQUIPMENT: Desktop software and work management tools, computer workstations, Information Technology terminology and service delivery practices, project management, and general IT Service Management tools. Required Qualifications REQUIRED: 1. Bachelor's degree. 2. Minimum two years of experience in an Information Security role. 3. Minimum two years of experience working on corporate technologies (including but not limited to endpoints, servers, and network technologies). 4. Demonstrated experience in compliance, risk management, and information security in higher education or corporate settings. 5. Demonstrated experience managing compliance for research projects involving federal regulations. 6. Demonstrated experience with vulnerability management solutions (e.g., Qualys, Tenable, Rapid7, etc.) and with MDM technologies (e.g., Microsoft Intune). 7. Demonstrated experience with endpoint security solutions (e.g., Absolute, Microsoft Defender Enterprise, Cisco Umbrella, etc.), best practices and procedures. 8. Demonstrated deployment and maintenance experience with endpoint security solutions (including antivirus, anti-malware, disk encryption, EDR, DNS security, patch management). 9. Demonstrated experience securing multiple operating systems (e.g., Mac, Windows, Linux and/or other Unix-like variants). 10. Demonstrated knowledge of networking and application protocols (e.g., TCP/IP, UDP, HTTPS). 11. Demonstrated customer service skills and technical problem-solving skills. 12. Demonstrated strong interpersonal and verbal communication skills. 13. Demonstrated proficiency in written communication skills. 14. Demonstrated ability to work with diverse groups/populations. Preferred Qualifications PREFERRED: 1. Master's degree. 2. Demonstrated higher education experience in a security administrator position. 3. Demonstrated ability to automate and script tasks using preferred language. 4. Demonstrated ability to work with remote data and write scripts against common web APIs (REST, SOAP). 5. Demonstrated knowledge of cloud platforms and cloud security. 6. Demonstrated experience in regulated environments (HIPAA, PCI, GLBA, etc.) 7. Demonstrated understanding of endpoint security, operating systems, networks, and application layer technologies. 8. Demonstrated experience with data loss prevention technologies. 9. Demonstrated experience with desktop administration and troubleshooting. 10. Demonstrated experience with web application security scanners (e.g., Qualys, Tenable, Rapid7, etc.) ___________________________________________________________________________________________ ALL REQUIREMENTS ARE SUBJECT TO POSSIBLE MODIFICATION TO REASONABLY ACCOMMODATE INDIVIDUALS WITH DISABILITIES. Environmental Conditions This position is not substantially exposed to adverse environmental conditions. Posting Date 03/05/2025 Closing Date Special Instructions to Applicants Please attach the following 3 (PDF) documents to your online Employment Application: (#1) Cover letter. (#2) Resume. (#3) Other Document - References - the names and contact information of three professional references. (Note: this document is required even though references may be listed on the application). Quicklink for Posting ***********************************

Basic Qualifications Requires a Bachelor's degree in Systems Engineering, or a related Science, Engineering or Mathematics field. Also requires 2+ years of job-related experience or a Master's degree. Agile experience preferred. CLEARANCE REQUIREMENTS: Department of Defense Secret security clearance is required at time of hire. Applicants selected will be subject to a U.S. Government security investigation and must meet eligibility requirements for access to classified information. Due to the nature of work performed within our facilities, U.S. citizenship is required. Responsibilities for this Position We are seeking a Systems Security Engineer who has experience in the design and development of NSA-certified Cybersecurity devices. Key Responsibilities: Design and develop specifications for mission-critical NSA-certified Cybersecurity devices Collaborate with software and validation engineering teams to deliver high-speed data solutions Develop real-time multi-threaded Embedded System architecture using Model-based Systems Engineering (MBSE) tools and techniques Analyze and maintain system security requirements throughout product development lifecycle Conduct trade studies, perform functional analysis, and design system security. Preferred Skills and Experiences: NSA approved Cryptography/Encryption Security requirements analysis Real-Time multi-threaded Embedded System architecture and development Model-based Systems Engineering (MBSE) CISSP certification or similar INCOSE ASEP, CSEP, or ESEP certification We value candidates who possess: Drive to expand knowledge and experience in designing complex systems Ability to define project scope, schedule, and expected results Initiative to complete assignments and ability to engage in technical direction and leadership Our Commitment to You: An exciting career path with opportunities for continuous learning and development Research-oriented work with award-winning teams Competitive benefits package #CJ3 Salary Note This estimate represents the typical salary range for this position based on experience and other factors (geographic location, etc.). Actual pay may vary. This job posting will remain open until the position is filled. Combined Salary Range USD $107,529.00 - USD $114,000.00 /Yr. Company Overview General Dynamics Mission Systems (GDMS) engineers a diverse portfolio of high technology solutions, products and services that enable customers to successfully execute missions across all domains of operation. With a global team of 12,000+ top professionals, we partner with the best in industry to expand the bounds of innovation in the defense and scientific arenas. Given the nature of our work and who we are, we value trust, honesty, alignment and transparency. We offer highly competitive benefits and pride ourselves in being a great place to work with a shared sense of purpose. You will also enjoy a flexible work environment where contributions are recognized and rewarded. If who we are and what we do resonates with you, we invite you to join our high-performance team! Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

Draper is an independent, nonprofit research and development company headquartered in Cambridge, MA. The 2,000+ employees of Draper tackle important national challenges with a promise of delivering successful and usable solutions. From military defense and space exploration to biomedical engineering, lives often depend on the solutions we provide. Our multidisciplinary teams of engineers and scientists work in a collaborative environment that inspires the cross-fertilization of ideas necessary for true innovation. For more information about Draper, visit *************** Summary: The Secure Solutions Group within the System's Engineering Directorate is seeking a System Security Engineer to support engineering, integrating, and deploying trustworthy secure platforms that resist cyber, reverse engineering, and supply chain threats. The group has multidisciplinary proficiencies in secure systems architecture, hardware security and resilience, software security and resilience, system validation and accreditation, and cryptography. Specific responsibilities include the following: • Work with cross disciplinary team of system, hardware, and software engineers to support program execution. • Communicate with program members, program offices, and sponsors to present work to the technical and evaluation community. • Bring a systems engineering prospective to support development system architectures for secure solutions. • Support analysis of Draper, customer, and sponsor developed systems to evaluate effectiveness and suitability. : Duties/Responsibilities • Develop, execute and track the performance of security measures to protect information and network infrastructure and computer systems. • Design computer security strategy and engineer comprehensive cybersecurity architecture. • Identify, define and document system security requirements and recommend solutions to management. • Configure, troubleshoot and maintain security infrastructure software and hardware. • Install software that monitors systems and networks for security breaches and intrusions. • Monitor systems for irregular behavior and set up preventive measures. • Plan, develop, implement and update company's information security strategy. • Educate and train staff on information system security best practices. • Help define a security approach for a particular defined problem and independently execute plan. • Contribute high quality content for technical reports and presentations with minimal guidance. • Adapt appropriately to changes in program requirements. • Proactively identify needs and concerns associated with plan execution and communicate them to project leadership. Skills/Abilities • Curiosity-driven approach to solving complex, industry and customer-driven problems as part of a multi-disciplinary team. • Collaborate and communicate effectively and openly with multi-disciplinary program team members. program leadership, and non-technical personnel • Team player able to work in a fast-paced environment. • Ability to balance multiple competing tasks and demands. Education Requires a bachelor's degree in Electrical Engineering, Computer Engineering, Mechanical Engineering, Systems Engineering, Applied Physics, or related field. Master's degree preferred. Experience • Bachelor's degree requires 3-5 years' experience of working on System Security Engineer or other relevant position. • Master's degree requires 0-2 years' experience of working on System Security Engineer or other relevant position. Additional Job Description: Additional Qualifications: Proficiency in full life-cycle systems engineering (architecture, design, development, integration, approval, and deployment) of security technologies and components within cyber-physical systems and systems-of-systems Experience in the design and implementation of secured systems based on system requirements, design analysis, and consideration of external vectors Familiarity with processes and technologies for identification of critical program information and development of the associated program protection plans Experience in the development of System Security documentation per Government requirements Familiarity with developing and implementing Security Technical Implementation Guides (STIGs) Understanding of supply chain operations, risk management framework, information assurance, technology protection Familiarity with the processes and technologies for cross-domain products, including secured firmware solutions and microelectronics An understanding of the fundamentals of cryptographic key management, public key infrastructure, and NSA's Key Management Infrastructure, and the applications of cryptology Experience in writing innovative R&D proposals to commercial and government sponsors Familiarity with DOORS, MATLAB, and/or Python Flexibility to multi-task and adapt to changing priorities, technologies, and program needs Security Requirements: Applicants selected for this position will be required to obtain and maintain a government security clearance. Current in-scope Secret security clearance required, Top Secret preferred. Connect With Draper for Future Opportunities! If you don't find the right posting in our Career Opportunities, you may submit your resume for future consideration. Job Location - City: Cambridge Job Location - State: Massachusetts Job Location - Postal Code: 02139-3563 Our work is very important to us, but so is our life outside of work. Draper supports many programs to improve work-life balance including workplace flexibility, employee clubs ranging from photography to yoga, health and finance workshops, off site social events and discounts to local museums and cultural activities. If this specific job opportunity and the chance to work at a nationally renowned R&D innovation company appeals to you, apply now *********************** Draper is committed to creating an inclusive environment. We understand the value of inclusivity and its impact on a high-performance culture. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, national origin, veteran status, or genetic information. Draper is committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation, please contact *************.

PagerDuty, Inc. (NYSE:PD) is a global leader in digital operations management. Half of the Fortune 500 and nearly 70% of the Fortune 100 trust PagerDuty as essential infrastructure. Join us. (******************************* At PagerDuty, you'll tackle complex problems, collaborate with kind and ambitious people, and help build a more equitable world-all in a flexible, award-winning workplace. PagerDuty is seeking a **Senior Security Engineer** to join our diverse, customer-focused team! As a **Senior Security Engineer** , you will be a key contributor in leading, driving and delivering security initiatives for PagerDuty's SaaS offerings, focusing on application & product security through architecture reviews, threat modeling sessions, and defining secure-by-design product standards and protections that support PagerDuty's security mission. Since we own and operate what we build, you'll collaborate closely with engineers across many product development teams. You will work closely with our internal development teams to ensure we deliver secure, highly reliable, and scalable solutions to our customers. This is an exciting opportunity to build security solutions that make developers and customers happy. The ideal candidate will have a blend of experiences across large enterprise environments and small or mid-size environments and will have focused on establishing security standards, coordinating with product development teams, developing strategies for secure-by-default architectures, and corresponding process and tooling selection and implementation. Things that make you smile: secure product architectures, providing an engaging Developer Experience for security adoption, and cute animal memes. **KEY RESPONSIBILITIES** + Embrace the role of hands-on technical lead in defining product security standards and guiding platform protections. + Establish criteria and conduct comprehensive security reviews throughout all stages of product development to identify and address security risks. + Perform regular threat assessments, coordinate with third-party testers for penetration testing, and conduct internal penetration testing to identify and mitigate security risks. + Mentor and guide team members to ensure product and business objectives are prioritized in project implementations, fostering a strong documentation culture with project charters and design documents. + Work with loosely defined requirements where you exercise your analytical skills to clarify questions, share your approach, and collaborate with the team to design and implement effective security frameworks. Maintain a strong appetite for challenging problems with a high degree of ownership. + Participate in the team's On-Call rotation, triaging and addressing security issues as they arise, and implement measures to prevent future occurrences. + Enable service team security implementations by developing security-as-code constructs, including infrastructure-as-code (IaC) modules, libraries and frontend components, while creating and maintaining developer-focused documentation to promote easy adoption. + Establish and uphold baseline standards and hardened configurations for platform components. + Continuously enhance security frameworks by focusing on product security standards and software supply chain protections, tailored for application security in cloud-native, microservices environments. **BASIC QUALIFICATIONS** + 5+ years of experience as a Security Engineer focused on product and application security in a cloud-native, microservices environment, preferably within AWS. + Demonstrated experience with security standards and patterns for APIs, microservices, and serverless architectures, including best practices for secure SDLC integration and development. + Familiarity with cloud-native product technologies including: + Vulnerability detection via multiple approaches including SAST, DAST, SCA, and runtime (e.g., Qualys/Nessus, Wiz, Snyk, etc.) + Security event collection and analysis (e.g., SIEM such as: SumoLogic, LogRythm, or Splunk, etc.) + Container Security (e.g., Kubernetes, EKS) + CI/CD technologies and integrations (e.g., CircleCI, Buildkite, Helm, Terraform, Chef) + Security Incident Response & Risk Management processes and tools + 4 years of experience and proficiency in at least one programming language and framework (e.g., Python, Bash, Phoenix/Elixir, Java, Ruby on Rails). + Exceptional written, oral communication, and interpersonal skills. + Strong organizational skills with the ability to successfully manage multiple priorities and deadlines. **PREFERRED QUALIFICATIONS** + Strong hands-on experience in deploying secure coding practices, automation, threat modeling and application security solutions. + Strong understanding of modern application architectures, including microservices, containerization, and cloud-native applications. + Experience with obtaining and maintaining FedRAMP authorization. + Experience working at a SaaS company larger than 1,000 employees and $100M in revenue. + Ability to analyze complex problems, and implement these solutions with a growing proficiency in change management. + Demonstrates a strong sense of ownership and a commitment to excellence in securing systems within a SaaS environment, with the ability to identify and implement resilient, effective product security measures. + Proven history of mentoring and coaching. The base salary range for this position is 176,000 - 281,000 USD. This role may also be eligible for bonus, commission, equity, and/or benefits. Our base salary ranges are determined by role, level, and location. The range, which is subject to change based on primary work location, reflects the minimum and maximum base salary we expect to pay newly hired employees for the position. Within the range, we determine pay for an individual based on a number of factors including market location, job-related knowledge, skills/competencies and experience. Your recruiter can share more about the specific offerings for this role, as well as the salary range for your primary work location during the hiring process. **Hesitant to apply?** We encourage you to submit your resume even if you don't meet every requirement. We value potential and consider each candidate's full professional story. Whether you're exploring a career change or taking your next step, we look forward to reviewing your application. If this just isn't the right role or time - sign up for job alerts (**************************************** ! **Where we work** PagerDuty currently has offices (**************************************** in Atlanta, Lisbon, London, San Francisco, Santiago, Sydney, Tokyo, and Toronto. We offer a hybrid, flexible environment. We also provide ample opportunities for connection, like team offsites and volunteering events. **How we work** Our values (************************************** guide how we support customers, collaborate with colleagues, develop products, and foster a culture of belonging. They define not just our actions, but what it means to be Dutonian. **What we offer** As a global organization, our total rewards approach is competitive with industry standards and aligned with local laws and regulations. Learn more, including country-specific offerings, on our benefits site (********************************************** . **Your package may include:** - Competitive salary - Comprehensive benefits package from day one - Flexible work arrangements - Company equity* - ESPP (Employee Stock Purchase Program)* - Retirement or pension plan* - Generous paid vacation time - Paid holidays and sick leave - Dutonian Wellness Days & HibernationDuty - companywide paid days off in addition to PTO - Paid parental leave: 22 weeks for pregnant parent, 12 weeks for non-pregnant parent (some countries have longer leave standards and we comply with local laws)* - Paid volunteer time off: 20 hours per year - Company-wide hack weeks - Mental wellness programs *Eligibility may vary by role, region, and tenure **About PagerDuty** PagerDuty, Inc. (NYSE:PD) is a global leader in digital operations management, enabling customers to achieve operational efficiency at scale with the PagerDuty Operations Cloud. The PagerDuty Operations Cloud combines AIOps, Automation, Customer Service Operations and Incident Management with a powerful generative AI assistant to create a flexible, resilient and scalable platform to increase innovation velocity, grow revenue, reduce cost, and mitigate the risk of operational failure. Half of the Fortune 500 and nearly 70% of the Fortune 100 rely on PagerDuty as essential infrastructure for the modern enterprise. PagerDuty is Great Place to Work-certified, a Fortune Best Workplace for Millennials, a Fortune Best Medium Workplace, a Fortune Best Workplace in Technology, and a top rated product on TrustRadius and G2. Go behind-the-scenes on our careers site (*********************************** and @pagerduty on Instagram. **Additional Information** PagerDuty is committed to creating a diverse environment and is an equal opportunity employer. PagerDuty does not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, parental status, veteran status, or disability status. PagerDuty is committed to providing reasonable accommodations for qualified individuals with disabilities in our job application process. Should you require accommodation, please email accommodation@pagerduty.com and we will work with you to meet your accessibility needs. PagerDuty uses the E-Verify employment verification program.