Security engineer jobs in Tracy, CA

We are seeking an experienced Product Security Architect to join our Security Center of Excellence team and lead security initiatives across our cloud-based SaaS product portfolio. This role requires a unique blend of deep technical expertise, architectural vision, and collaborative leadership to ensure our products are built with security at their core. The ideal candidate will work at the intersection of security, development, and product design to create robust, secure solutions that protect our customers and their data. Key Responsibilities Security Architecture & Design Design and implement comprehensive security architectures for cloud-based SaaS products, ensuring security is embedded throughout the product lifecycle Conduct thorough threat modeling exercises for new and existing product features, identifying potential vulnerabilities and attack vectors Define security requirements, patterns, and best practices for product development teams Review and approve architectural designs from a security perspective, providing actionable guidance and recommendations Product Security Assessment Perform in-depth security assessments of products at the code, configuration, and architectural levels Identify security vulnerabilities, weaknesses, and gaps in existing and proposed product implementations Conduct code reviews with a focus on security, analyzing Java, Python, and React codebases for security flaws Evaluate third-party integrations, APIs, and dependencies for security risks Collaboration & Enablement Partner closely with development teams to integrate security controls and best practices into the software development lifecycle Work with QE teams to develop security test strategies, including penetration testing, vulnerability scanning, and security automation Provide security guidance and mentorship to engineering teams, fostering a security-first culture Translate complex security concepts into clear, actionable recommendations for technical and non-technicaål stakeholders Cloud & Infrastructure Security Design and implement security controls for cloud infrastructure and services (AWS, Azure, GCP) Architect and implement IAM strategies including role-based access control (RBAC), attribute-based access control (ABAC), least privilege principles, and identity federation Design secure network architectures including VPCs, security groups, network ACLs, microsegmentation, and zero-trust network access Establish cloud configuration security standards and guardrails to prevent misconfigurations and ensure secure-by-default deployments Ensure proper implementation of cloud security best practices including data encryption (at rest and in transit), secrets management, and compliance Monitor and respond to emerging cloud security threats and vulnerabilities Security Standards & Compliance Establish and maintain security standards, policies, and procedures aligned with industry frameworks Support compliance efforts including SOC 2, ISO 27001, GDPR, and other relevant standards Stay current with evolving security threats, vulnerabilities, and industry best practices Required Qualifications Experience 8+ years of experience in information security, with at least 5 years specifically in product security architecture Proven track record as a Product Security Architect in a SaaS or cloud-based company Extensive experience with threat modeling methodologies (STRIDE, PASTA, or similar) Hands-on experience identifying and remediating security vulnerabilities in production environments Strong background working collaboratively with development and QE teams in agile environments Technical Expertise Deep understanding of secure coding practices and common vulnerability patterns (OWASP Top 10, CWE/SANS Top 25) Proficiency in code-level security analysis across multiple languages, particularly Java, Python, and React/JavaScript Strong knowledge of cloud security architectures and services (AWS, Azure, or GCP) Expert-level knowledge of IAM principles and implementation including multi-factor authentication, single sign-on, privileged access management, service accounts, and identity lifecycle management Deep understanding of network security including firewalls, IDS/IPS, VPN, TLS/SSL, DDoS protection, API gateways, and secure network segmentation Extensive experience with cloud configuration security including infrastructure-as-code security, cloud security posture management, configuration drift detection, and automated compliance checking Experience with authentication and authorization frameworks (OAuth 2.0, OpenID Connect, SAML, JWT, RBAC, ABAC) Understanding of containerization and orchestration security (Docker, Kubernetes) Knowledge of API security, microservices architecture, and distributed systems security Familiarity with DevSecOps practices and security automation tools (SAST, DAST, SCA) Certifications CISSP (Certified Information Systems Security Professional) required Additional relevant certifications valued: Cloud security: CCSP, AWS Certified Security Specialty, Azure Security Engineer, Google Cloud Professional Security Engineer Security architecture: CSSLP, SABSA Penetration testing: CEH, OSCP, GPEN Network security: CCNP Security, GIAC certifications Preferred Qualifications Experience with Infrastructure as Code (Terraform, CloudFormation) and security policy as code Knowledge of zero-trust architecture principles and implementation Experience with security incident response and vulnerability management programs Background in software development or engineering Experience with regulatory compliance frameworks and security audits Published security research, conference presentations, or contributions to open-source security projects Master's degree in Computer Science, Cybersecurity, or related field Technical Skills Programming & Scripting: Java (enterprise application security) Python (security automation, scripting) JavaScript/React (frontend security) Additional languages a plus (Go, Rust, C/C++) Security Tools & Platforms: SAST/DAST tools (Checkmarx, Fortify, Veracode, etc.) Vulnerability scanners and penetration testing tools Security information and event management (SIEM) platforms Cloud security posture management (CSPM) tools Cloud Platforms & Configuration: AWS, Azure, or Google Cloud Platform IAM services (AWS IAM, Azure AD, GCP IAM, identity federation) Network security services (VPC, Security Groups, Network ACLs, WAF, Cloud Firewall) Cloud configuration management and security scanning tools Cloud-native security services and controls (GuardDuty, Security Hub, Azure Defender, Security Command Center) Secrets management (AWS Secrets Manager, Azure Key Vault, HashiCorp Vault) Serverless architecture security Development & DevOps: CI/CD pipelines and security integration Version control systems (Git) Containerization and orchestration Agile/Scrum methodologies Personal Attributes Strong analytical and problem-solving skills with attention to detail Excellent communication skills with the ability to influence and educate diverse audiences Self-motivated with the ability to work independently and as part of a team Passionate about security and staying ahead of emerging threats Pragmatic approach to balancing security with business needs and user experience What We Offer Opportunity to shape security architecture for cutting-edge Cybersecurity SaaS products Collaborative environment with highly talented engineering teams Professional development and growth opportunities Competitive compensation and benefits package We are an equal opportunity employer and value diversity in our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

Ready to play a key role in building the future of living? Join Samara in tackling California's housing shortage and enabling people to attain sustainable housing without compromising design or quality. Our flagship product, Backyard, is a fully turnkey, premium accessory dwelling unit (ADU) designed for homeowners and real estate developers. As we expand our offerings and scale our in-house development initiatives, we're at a pivotal moment, redefining homeownership through high-quality, attainable infill housing. Backed by top-tier investors, including Airbnb, Thrive Capital, and 8VC, Samara is positioned for significant growth and market impact. To support our next phase of growth, we're hiring product-focused engineers to advance and scale the technical foundation of our modular system. These roles go beyond traditional design work-they refine system standards, improve factory repeatability, and ensure our units are code-compliant, manufacturable, and built to the highest standards of quality and performance. The MEP Systems Engineer will be responsible for the detailed design and implementation of mechanical, electrical, plumbing, and PV systems tailored for modular construction building systems. This role requires a deep understanding of MEP systems combined with practical experience in modular construction. You will collaborate closely with leadership, crossfunctional design and engineering teams to integrate all technical and user experience requirements into our designs to ensure optimal functionality, sustainability, and compliance with all regulations. What You'll Do Design and develop integrated MEP systems for our new and existing designs including solar energy systems, including PV and ESS, optimized for prefabricated modular construction Ensure that solar and energy storage designs align with overall MEP system functionality and building energy requirements Lead the creation of comprehensive design documents, schematics, component material selections and system layouts, preferably using CAD and BIM software Provide technical leadership during the installation and commissioning phases to ensure systems meet design specifications and performance standards Conduct system testing and validation to ensure functionality, efficiency, and safety of both MEP and PV installations Collaborate closely with installation teams to facilitate seamless and efficient factory and onsite implementation of design Engage in research and application of the latest technologies and practices in renewable energy and modular construction Work with program managers and other engineering disciplines to ensure holistic integration of all systems within Samara modular units What We're Looking For Modular construction experience in factory builds, multi-mod, stackable and/or other hands on related experience. Licensed Electrician or Mechanical Contractor -and/or- Bachelor's degree in Mechanical, Electrical, or Energy Systems Engineering, or a related field Professional Engineering (PE) license preferred Minimum of 7 years of experience in one of the following: Mechanical, Electrical, Solar and/or Plumbing System design Comprehensive knowledge of building codes, safety regulations, and sustainability practices relevant to MEP and renewable energy systems Proficiency in design software such as Onshape, Revit, and/or other BIM methodologies preferred Excellent problem-solving skills and the ability to adapt designs to changing technological and regulatory landscapes Strong communication and leadership skills, capable of driving project decisions and managing complex stakeholder relationships Ability to travel to our factory in Mexico up to 25-40%. What We Offer Salary range of $120-160K and performance-based bonuses. Hybrid work schedule with 3 days each week in our Redwood City office. Snacks and Lunch on in-office days Early stage employee equity. Exceptional health, dental, and vision insurance. 401k eligibility after 6 months. Flexible PTO policy. How to Apply If you're excited to support Samara's mission and have the skills to match, we'd love to hear from you. Please submit your resume and a brief letter of introduction to our team. Let's build something extraordinary-together.

NVIDIA is looking for security researchers passionate about offensive research across different platforms. Do you have experience with identifying hardware and software vulnerabilities, developing PoC, and tools for automation in vulnerability research? Are you creative and devious in your offensive approach? We want to hear from you! You should demonstrate ability to excel in an environment with innovative and fast paced development on the worlds most powerful integrated software and hardware computing platform. What you'll be doing: Core job duties will identify vulnerabilities in our embedded firmware and critical system software, building proof of concepts, and collaborating with development teams to remediate them. Candidates will invest in improving current tools and offensive practices for bug discovery and evaluation while supporting remediation efforts. We expect team members to exercise modern tools for modeling new attack vectors on unreleased and emerging technology platforms. The most impactful candidates can simulate real attacker behaviors, break systems by exploiting design assumption and effectively communicate their findings for action. Focus will be to increase resilience of the end products against all forms of attack through close collaboration with extended SW and HW offensive security teams. Products targets span HPC data centers, consumer electronics, autonomous platforms, AI/cloud solutions, and a variety of embedded/IOT platforms providing a rich and complex target space to exercise your skills. What we need to see: We'd like to see proven experience and offensive security research (CVE's, publications, patents, tools, bounties) with demonstrated responsible disclosure practices. Strong skills in reverse engineering and automation (IDA, Ghidra), fuzzing (AFL, WinAFL, Syzcaller) and exploitation (ROP, memory corruption) are important to success; as well as understanding of modern embedded cryptography and common security issues. Experience with ARM/X86/RISCV assembly (include shellcode development) and low-level C programming paired with understanding and experience with micro-architectural attacks (side channels, fault injection, etc) is critical. Demonstrated skill for secure code reviews of complex source projects, and exposure to code quality practices (SDL, threat modeling) that support development goals. Candidates should be comfortable working collaboratively and remotely with others to accomplish complex team goals, enabling delivery of outstanding security for our products. BS/BA degree or equivalent experience 12+ years in a security related field Ways to stand out from the crowd: Navigating complex platform concerns and ability to analyze composed systems to identify high risk components and established testing targets and objectives. Practical skills using Hex-Rays IDA Pro and plugin/loaders development (or similar experience with Ghidra) is valuable Leveraging innovative strategies and AI advancements to accelerate discovery and resolution of security risks. Experience with enclave models such as NVIDIA CC, ARM TEE, Intel SGX/TDX, AMD SEV-SNP and other isolation technologies. Development and integration of AI tooling and skills to accelerate and improve activities and or experience with offensive actions targeting AI models (LLM or other) components within those platforms. NVIDIA has continuously reinvented itself over two decades. Our invention of the GPU in 1999 fueled the growth of the PC gaming market, redefined modern computer graphics, and revolutionized parallel computing. More recently, GPU deep learning ignited modern AI - the next era of computing. NVIDIA is a “learning machine” that constantly evolves by adapting to new opportunities that are hard to solve, that only we can pursue, and that matter to the world. This is our life's work, to amplify creativity and intelligence. Make the choice to join us today! Your base salary will be determined based on your location, experience, and the pay of employees in similar positions. The base salary range is 224,000 USD - 356,500 USD for Level 5, and 272,000 USD - 425,500 USD for Level 6. You will also be eligible for equity and benefits. Applications for this job will be accepted at least until October 5, 2025.NVIDIA is committed to fostering a diverse work environment and proud to be an equal opportunity employer. As we highly value diversity in our current and future employees, we do not discriminate (including in our hiring and promotion practices) on the basis of race, religion, color, national origin, gender, gender expression, sexual orientation, age, marital status, veteran status, disability status or any other characteristic protected by law.

Experience Needed: CCNP/JNCIP preferable Experience in new PoP or Datacenter builds. Understanding of outside plant construction requirements with fiber and/or copper or coax experience preferred. Solid understanding of fiber-optic technology including cable types, connector types, optic types, patch panels, and optical transport technologies. Rack and stack; Installation of new racks and devices. Experience in device installation and testing, software/firmware upgrade, re-bootstrapping and decommission. Experience in network optimization (re-stripes, migrations, upgrades, swaps, capacity upgrades). Knowledge of DCN and experience in DCN installation, migrations, and upgrades. Experience in break fix support Knowledge of Juniper, Ciena, Infinera, Cisco, Arista and ZPE systems (Network Deployment) Strong attention to detail with excellent time management and organization skills. Excellent experience in maintaining documentation. Demonstrated ability to analyze complex situations and utilize troubleshooting skills, systems and tools, and creative problem-solving abilities under pressure. Programming and scripting capabilities are strongly desired. Excellent communication skills. Ability to work within a global team in a fast-paced and dynamic environment with limited supervision. Duties: Deploy, configure, and support a large-scale production and corporate network and server infrastructure in data centers, Point of Presence (POP), edge, backbone, datacenter, and content delivery network (CDN) infrastructure. Provide onsite network support and expertise on local data center campus and remote support for POP sites while working with local vendor support staff Schedule and perform network maintenance, repair, and upgrade tasks as needed while limiting the impact on the production network Calculate and document equipment power requirements and work with Engineering, Facilities Operations, and/or collocation vendors to meet these requirements. Work closely with Network Engineering, Logistics, and equipment vendors as new equipment and technologies are integrated into the production network. Work with network provisioning engineers to turn up new circuits and engage and escalate with vendors to troubleshoot out-of-service or faulty circuits. Queue Management for tasks and incidents, participate in ongoing DC/POP deployment projects Use internal tools and scripts to configure, monitor, and repair servers and network equipment Develop internal documentation and conduct training as needed or appropriate Proactively contribute to documentation, automation and processes as they evolve Follow, improve, and implement data center and POP best practices Participate in on call activities and follow escalation process to support the infrastructure 24/7

The requirements listed below are representative of the knowledge, skill, and/or ability required: Build the networks by taking into consideration various factors like, bandwidth requirements, infrastructure requirements and security. Responsible for estimating growth and plan for the network upgrade to meet future demands. Ability to work on multiple priorities and/or projects simultaneously. Excellent listening and communications skills, both verbal and written. flexible in working hours to support global project and migration during non-business hours. Ability to collaborate with multiple teams to achieve project goals. Organized, detail oriented and self-motivated. Ability to provide and maintain detailed documentation on each project. Demonstrate knowledge in advanced networking and infra security domain. Ability to successfully train the operation team on the new solution(s) implemented. Problem-solving skills and abilities to meet reasonable deadlines. Ability to work with little supervision and manage a team. Identify opportunities and recommend solutions for improving the overall network health by assessing overall effectiveness and efficiency. Stay current with existing, emerging, and evolving technologies and when appropriate, make recommendations as to how we may best harness a new technology or idea. BS in Engineering, Computer Science, or related field, with 15+ years of work experience in networking domain Have completed minimum 3 significant network solution designs In-depth knowledge of the OSI network model Experience with different network types (i. e. LAN, WAN, WLAN) Network protocols and technologies, e. g. DNS, HTTP, SSL, 802. 1x, Load Balancing, WAN optimization, SD-WAN, VPN, PKI Cisco network products (Nexus and Catalyst switches, routers, WLC, ISE) Knowledge of Palo Alto Networks firewall and IPS configuration and troubleshooting Knowledge of F5 load balancer Knowledge of public cloud is highly desirable Knowledge of Zero-Trust networking is highly desirable CCNP certification CCIE certification PCNSE certification Azure Network Engineer Associate

The Product Security Incident Response Team is looking for a Product Security Engineer, to handle Product Security related incidents, and to perform vulnerability research on Fortinet products. This is an entry level role, ideal for someone looking to enter the PSIRT and threat research industry. On the job training by peers will be provided. Responsibilities: Support the management of the inbound PSIRT Queue, allocating tickets to engineers, and ensuring the tickets are handled in a timely manner. Triage incidents, answer questions they may raise, test for vulnerabilities they may signal, investigate source code and create (then follow up on) Incidents on the Incident Management System when necessary. Escalate to senior analyst when incident falls out of the field of competence/knowledge. Find and report unknown vulnerabilities in Fortinet products via black box analysis, fuzzing, and source code auditing. Skills and Experience: Good understanding of Fortinet products line-up would be advantageous along with a solid security background/ understanding. Understanding of asymmetric cryptography, scripting knowledge, high proficiency in C language, must be detail oriented and able to follow processes thoroughly. Good understanding of vulnerabilities at source-code level and some experience in vulnerability scanning tools. Experience in pentesting methodologies and/or fuzzing tools a plus. Education: BS in Computer Science or equivalent preferred. MS in Computer science preferred The US base salary range for this full-time position is $110,000-$150,000. Fortinet offers employees a variety of benefits, including medical, dental, vision, life and disability insurance, 401(k), 11 paid holidays, vacation time, and sick time as well as a comprehensive leave program. Wage ranges are based on various factors including the labor market, job type, and job level. Exact salary offers will be determined by factors such as the candidate's subject knowledge, skill level, qualifications, experience, and geographic location. All roles are eligible to participate in the Fortinet equity program, Bonus eligibility is reviewed at time of hire and annually at the Company's discretion. Why Join Us: We encourage candidates from all backgrounds and identities to apply. We offer a supportive work environment and a competitive Total Rewards package to support you with your overall health and financial well-being. Embark on a challenging, enjoyable, and rewarding career journey with Fortinet. Join us in bringing solutions that make a meaningful and lasting impact to our 660,000+ customers around the globe.

Hello Heart is on a mission to change the way people care for their hearts. The company provides the first app and connected heart monitor to help people track and manage their heart health. With Hello Heart, users take steps to control their risk of heart attacks and stroke - the leading cause of death in the United States. Peer-reviewed studies have shown that high-risk users of Hello Heart have seen meaningful drops in blood pressure, cholesterol and even weight. Recognized as the digital leader in preventive heart health, Hello Heart is trusted by more than 130 leading Fortune 500 and government employers, national health plans, and labor organizations. Founded in 2013, Hello Heart has raised more than $138 million from top venture firms and is a best-in-class solution on the American Heart Association's Innovators' Network and CVS Health Point Solutions Management platform. Visit ****************** for more information. About the Role We are seeking a Cyber Security Analyst to strengthen our security operations and compliance posture. Reporting into our Information Security Officer, you will play a key role in protecting sensitive data, ensuring regulatory compliance, and supporting the secure adoption of new technologies such as AI. You will work cross-functionally with IT, Engineering, Compliance, and HR to build and maintain secure, resilient processes across the organization. Responsibilities Support secure access lifecycle processes, including provisioning, deprovisioning, role-based access, and MFA/SSO management Conduct periodic access reviews and ensure identity data quality Perform vulnerability scans across systems and applications, track remediation progress, and partner with teams to prioritize risk-based fixes Assist with security assessments of cloud systems and applications, aligning with HIPAA, HITECH, NIST, and HITRUST frameworks Support internal and external audit preparation and execution Enforce encryption, access controls, and data loss prevention strategies for sensitive data Conduct third-party vendor risk assessments and oversee remediation efforts Support secure adoption of AI tools by monitoring for risks such as data leakage and prompt injection, establishing governance guardrails, and delivering awareness training Participate in endpoint security monitoring, disaster recovery exercises, tabletop simulations, and awareness training initiatives Contribute to ongoing security operations, risk management efforts, and special security projects Qualifications 3+ years of experience in IAM, IAM operations, or security analyst roles (healthcare technology or other regulated environments preferred) Hands-on experience with identity platforms such as Okta, Azure AD, or Google IdP, plus SCIM, SAML/OIDC/OAuth, directory services, group policy, and conditional access Experience with vulnerability management platforms (Tenable, Qualys, Rapid7, AWS Inspect, Kandji) and patch orchestration workflows Working knowledge of HIPAA, HITECH, NIST CSF/800-66, and CIS Controls (familiarity with HITRUST CSF is a plus) Knowledge of cloud security basics (AWS, Azure, GCP), least-privilege IAM, and networking fundamentals (TCP/IP, DNS, HTTP, VPN, segmentation) Familiarity with endpoint security solutions (CrowdStrike Falcon, Cynet, SentinelOne) and DLP tools Familiarity with GenAI, keeping up to date with innovative security programs and artificial intelligence systems Proactive communication and documentation skills, with the ability to collaborate across technical and non-technical teams globally The US base salary range for this full-time position is $130,000.00 to $145,000.00. Salary ranges are determined by role and level. Compensation is determined by additional factors, including job-related skills, experience, and relevant education or training. Please note that the compensation details listed in US role postings reflect the salary only, and do not include equity or benefits. #LI-DNP Hello Heart has a positive, diverse, and supportive culture - we look for people who are collaborative, creative, and courageous. Oh, and if you want to see some recent evidence of the fun things we do at Hello Heart, check out our Instagram page.

We're ALSO, an electric mobility company originally conceived as a part of Rivian. We're a passionate team of builders, dreamers, doers and innovators, focused on creating entirely new (not to mention, innovative and delightful) vertically integrated, small EVs designed to meet the global mobility challenges of today and tomorrow. Our mission is to inspire everyone to ride ALSO-replacing many local car, truck and SUV miles with ones on vehicles that are more affordable, more enjoyable and 10-50x more efficient. We're looking for a Staff Security Engineer with deep expertise in cloud, mobile, and PKI security to drive the next generation of our secure infrastructure and product ecosystem. You'll serve as a technical leader - designing and scaling security solutions, building tooling for vulnerability management, and collaborating closely with firmware, software, Devops, and infrastructure teams to embed security into everything we build. This role is ideal for a seasoned engineer who thrives at the intersection of security architecture, software engineering, and cross-functional collaboration. The opportunity here is to lead, define and scale security foundations across diverse platforms, Influence over critical technical decisions at the architecture and product level, collaboration with top-tier firmware, cloud, and software engineers on cutting-edge technology. What you will do Cloud & Mobile Security Develop and enforce cloud security frameworks, policies, and automation for threat detection and incident response and lead the design and implementation of secure architectures across AWS and mobile environments (Android, iOS). Partner with DevOps and product teams to integrate security into CI/CD pipelines, release processes and spearhead DevSecops Initiatives and conduct mobile app security assessments (static, dynamic, runtime), and guide teams on secure development practices. Architect, deploy, and maintain PKI systems that enable secure device identity, authentication, and communication, Develop automation and tooling to support certificate lifecycle management and hardware-backed security. Collaborate with firmware teams on secure boot, certificate provisioning, and cryptographic key management and evaluate emerging technologies (e.g., HSMs, TPMs, secure enclaves) for secure firmware integration. Own the end-to-end vulnerability management lifecycle, from detection to triage to remediation. Partner with developers to prioritize and fix vulnerabilities efficiently, providing expert-level guidance. Act as a security SME for engineering teams, providing technical guidance and mentorship, Lead threat modeling sessions, design reviews, and post-incident analyses. Drive security awareness and training initiatives across product and engineering organizations and represent the security function in architectural discussions and executive reviews. What you will bring 7+ years of experience in security engineering, including hands-on work with software systems. Strong programming experience in Python and Golang. Deep understanding of AWS security services (IAM, KMS, CloudTrail, Security Hub, etc.). Proven experience designing, deploying, and managing PKI and certificate infrastructure. Strong background in mobile application security (Android/iOS frameworks, secure communication, app hardening). Excellent analytical and problem-solving skills. Strong communication and collaboration across teams. Ability to influence and lead without direct authority. Preferred Experience with IoT or connected device ecosystems. Knowledge of cryptographic protocols (TLS, X.509, RSA, OCSP). Contributions to open-source security projects or internal tooling. Certifications such as AWS Security Specialty, CISSP, OSCP. The salary for this position ranges from $220,000 to $250,000 per year, depending on experience and qualifications. Why ALSO. We're passionate about helping the world find a better way to get there-wherever it is you're headed. We're located in the heart of Silicon Valley and have brought together a world-class team from some of the biggest brands in the technology, automotive, cycling, outdoor recreation and retail spaces. Together we're working hands-on to imagine, design and build an entirely new solution to a global set of transportation challenges. Perks and Benefits Robust health coverage. Excellent health, dental and vision insurance covered up to 100% by ALSO with FSA & HSA options. One Medical membership and dedicated insurance advocates. Rich fertility and family building benefits with Progyny. Flexible time off. 401(k) match.

We are seeking an experienced and proactive DevSecOps engineer with expertise in AWS and AZURE Platforms to join our Cybersecurity Application Platform Security Team. This role combines expertise in AWS & AZURE platforms security with a strong foundation in DevSecOps practices to ensure the ‘secure by design', ‘secure by default' principles throughout development, deployment, and operation of AWS & AZURE platforms. The ideal candidate will have hands-on experience with Cybersecurity platforms, with a deep understanding of AWS & AZURE cloud platforms. This position plays a critical role in assisting customer portfolio teams to secure SaaS, PaaS platforms, maintain compliance and availability. DevSecOps engineer role responsible for security automation of cloud services. Job Responsibilities Secure the AWS & AZURE Platform: Implement best practices to ensure AWS & AZURE applications are “secure by design” and “secure by default” protecting sensitive data and workflows. Provide guidelines on usage of AppExchange / Vendor products versus using out of box capabilities with a keen eye for cybersecurity risk. Risk Identification & Mitigation: Proactively identify security risks across the AWS & AZURE ecosystem and implement solutions to address vulnerabilities. DevSecOps Enablement: Drive DevSecOps practices within the organization by embedding security into the development lifecycle of AWS & AZURE applications. Collaboration with Stakeholders: Partner with various customer portfolio teams to influence their roadmaps, ensuring security is a foundational element in their strategies. Data Security & Compliance: Ensure compliance with data protection regulations and implement robust data security measures within AWS & AZURE and integrated systems. Cloud Integration Expertise: Leverage your knowledge of AWS & AZURE to secure integrations Continuous Improvement: Stay up to date on emerging threats, trends, and technologies in application security to continuously improve our security posture. Communication & Advocacy: Act as a trusted advisor on security matters, effectively communicating complex technical concepts to both technical and non-technical stakeholders. Qualifications We're looking for someone with: Recent 5+ years of experience in IT focused on DevSecOps, DevOps or Security Engineering roles. Recent 3+ years of shell scripting, aws-cli, python, lambda. Recent 1+ years of Terraform deployments and Terraform templates (Infrastructure as Code). Knowledge of and experience with CI/CD technologies. Knowledge of and experience with continuous security practices. Knowledge of infrastructure automation and infrastructure as code. Demonstrated ability to integrate security practices into AWS & AZURE applications. Proficiency in data protection techniques such as encryption, tokenization, and access controls. Bachelor's degree in computer science, Information Security, or a related field. Desired Skills Experience with Salesforce, SAP, and MuleSoft architecture, development, and administration with a focus on platform security (e.g., profiles, roles, permissions, encryption). Excellent Communication Skills: Ability to clearly articulate security concepts to diverse audiences, including engineers, product managers, and executives. Collaboration & Influence: Proven ability to work cross-functionally with teams to align on security priorities and influence roadmaps. Preferred Technical Skills/ Qualifications Relevant certifications in Cybersecurity - SSCP, CISSP, CISM preferred. AWS certifications (e.g., AWS Certified Solutions Architect or AWS Certified Security Specialty). AZURE certifications. Experience with regulatory frameworks like GDPR, CCPA, or HIPAA. The ideal candidate will be passionate about security, have a proactive mindset, and be able to balance security requirements with business needs. They should be comfortable working in a fast-paced environment and be able to adapt to evolving security threats and technologies Salary Range $63.58 - $100.38 USD (Hourly) Please note that the salary information provided herein is base pay only (gross); it does not include other forms of compensation which may or may not apply to this specific position, namely, performance-based bonuses, benefits-related payments, or other general incentives - none of which are guaranteed, may be subject to specific eligibility requirements, and are wholly within the discretion of Astreya to remit. Further, the salary information noted above is a range that consists of a minimum and maximum rate of pay for this specific position. Where an applicant or employee is placed on this range will depend and be contingent on objective, documented work-related considerations like education, experience, certifications, licenses, preferred qualifications, among other factors. Astreya offers comprehensive benefits to all Regular, Full-Time Employees, including: Medical provided through Cigna (PPO, HSA, EPO options) / Medical provided through Kaiser (HMO option only) for California employees only Dental provided through Cigna (DPPO & DHMO options) Nationwide Vision provided through VSP Flexible Spending Account for Health & Dependent Care Pre-Tax Account for Commuter Benefit/Parking & Transit (location-specific) Continuing Education and Professional Development via various integrated platforms, e.g. Udemy and Coursera Corporate Wellness Program Employee Assistance Program Wellness Days 401k Plan Basic Life, Accidental Life, Supplemental Life Insurance Short Term & Long Term Disability Critical Illness, Critical Hospital, and Voluntary Accident Insurance Tuition Reimbursement (available 6 months after start date, capped) Paid Time Off (accrued and prorated, maximum of 120 hours annually) Paid Holidays Any other statutory leaves, paid time, or other fringe benefits required under state and federal law

Are you ready to hack our way from $25M to $100M ARR? TapClicks, the leading unified marketing operations platform for agencies, media companies, and brands, is looking for a bold, creative, data-obsessed Growth Hacker to engineer the next phase of our SaaS rocketship. We've built the engine-now we need you to pour on the fuel. Who You Are You're not just a marketer. You're a strategist, builder, optimizer, and relentless experimenter. You thrive in fast-paced environments, break traditional rules, and live to find scalable, repeatable growth levers. Funnels, dashboards, CAC, LTV-they're your playground. You know how to launch fast, test smart, and win big. What You'll Do * Architect and execute high-velocity growth experiments across acquisition, activation, retention, and revenue * Identify and scale untapped channels-from paid and outbound to SEO, partnerships, and PLG * Build growth loops and conversion funnels that accelerate every stage of the customer journey * Partner cross-functionally with sales, product, and revops to align strategy and amplify impact * Own growth metrics and continuously optimize for performance through rapid testing * Spot trends, analyze results, pivot quickly, and double down when you find a winner What you bring * 3+ years in growth, demand gen, or performance marketing at a high-growth SaaS company * Deep understanding of SaaS KPIs like CAC, LTV, activation rate, and churn * Mastery of growth tools (Optimizely, Unbounce, N8N, Crazy Egg, Hotjar, GA4, Webflow, Mixpanel, LinkedIn Ads, etc.) * A/B testing pro with a bias for action-you don't wait for permission to test bold ideas * Leverage AI to move prospects down the funnel * Creative thinker and clear communicator-you can sell the vision and ship the work Bonus Points if you…. * Helped scale a SaaS company from $20M to $100M+ * Have launched successful viral campaigns or Product Hunt hits * Understand both product-led and sales-led growth mechanics About TapClicks TapClicks is a Smart Marketing Cloud, powered by data, to unify marketing. We are a leader in Marketing Reporting, Operations and Search Engine Optimization SaaS solutions for Enterprises, Agencies and Media companies. TapClicks is the only end-to-end marketing operations platform that allows companies to streamline their marketing operations, manage and optimize campaigns and report progress from any device at any time and is used widely by over 400,000 end customers globally.

About 1X We're an AI and robotics company based in Palo Alto, California, on a mission to build a truly abundant society through general-purpose robots capable of performing any kind of work autonomously. We believe that to truly understand the world and grow in intelligence, humanoid robots must live and learn alongside us. That's why we're focused on developing friendly home robots designed to integrate seamlessly into everyday life. We're looking for curious, driven, and passionate people who want to help shape the future of robotics and AI. If this mission excites you, we'd be thrilled to hear from you and explore how you might contribute to our journey. Role Overview We are seeking a Product Security Engineer with expertise in operating system security to strengthen the foundation of our robotics platform. In this role, you will design and implement critical security features such as secure boot, trusted execution environments, and system service hardening. You will ensure that sensitive operations and data remain protected while enabling developers to maintain security best practices. This role will directly influence the resilience and trustworthiness of our robotics systems. Responsibilities Develop and maintain secure critical services for Linux system Implement secure boot chains from fused hardware keys, ensuring verified OS and data partitions with rollback protection Integrate OP-TEE to safeguard sensitive assets such as mTLS certificates and disk encryption keys Harden system services using least-privilege operations, systemd features, namespacing, and syscall filtering Build hardening templates and automation tools to streamline security boundary enforcement for developers Automate security validation processes within CI/CD pipelines Design and enforce device access controls for Linux systems Job requirements Experience contributing and shipping C/C++ code (or similar) to production Strong experience with Linux operating system internals and security mechanisms Hands-on expertise with secure boot and verified boot implementations Familiarity with Trusted Execution Environments (e.g., OP-TEE or similar) Proven track record of applying least-privilege principles and hardening root-level services Proficiency with systemd and sandboxing, including namespacing, privilege restrictions, syscall filtering, and other techniques Experience designing security tools, automation, and templates for developers Knowledge of device access control and Linux permissions management Solid understanding of CI/CD integration for security validation Experience with NVIDIA Orin or similar SoC platform preferred Expertise in software development, including code auditing Benefits & Compensation Health, dental, and vision insurance 401(k) with company match Paid time off and holidays Equal Opportunity Employer 1X is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, ancestry, citizenship, age, marital status, medical condition, genetic information, disability, military or veteran status, or any other characteristic protected under applicable federal, state, or local law. On-site Palo Alto, California, United States $137,861 - $240,000 per year Software EngineeringAll done! Your application has been successfully submitted! Other jobs

Job Description Forhyre is seeking a talented individual that will be able to provide security architecture support and interface across the program as needed. This support includes, but is not limited to, cybersecurity solutions, providing technical strategy for solutions, guidance, policy, and implementations. The successful candidate for this position is a highly motivated individual, with a strong IT security background who excels integrating, operating, and deploying security technology and solutions and interacts well with both internal teams and clients. Note: U.S. citizens and those authorized to work in the U.S. are encouraged to apply. We are unable to sponsor at this time. Responsibilities: Engineer, implement and monitor security measures for the protection of computer systems, networks and information Develop and implement security policies and controls to support the Cyber Security framework Manage the existing cyber security training program across global, multilingual business Assists in ensuring global Information security program meets all industry regulations, standards, and compliance requirements Drive adoption of infrastructure security best practices and work with Information Technology teams to ensure security standards are maintained Implement technology to proactively scan Information Technology environment for security breaches and suspicious activity Continuous improvement in the areas of Information Security technologies, techniques and processes Develops and maintains an effective system for the distribution of regular key performance indicator reports and dashboard Ability to interpret penetration test results and describe issues and fixes to non-security expert Responsible for leading an accurate & comprehensive status reporting to the executive steering committee Create and implement SOP/ process improvement initiatives to achieve outcomes that align or exceed the expectations of strategic roadmap Skills & Experience Bachelor's degree and 12+ years of experience; additional years of directly applicable experience may be accepted in lieu of a degree. Certified Information Systems Security Professional (CISSP) 8+ years hands-on experience designing or implementing security solutions, including all related documentation and artifacts Analytical ability, problem-solving skills, and ability to break down complex problems into actionable steps Extensive experience in design and development of enterprise security architectures. Experience must include a wide range of work in creating diagrams and documentation with all components that comprise IT systems including network topology. Strong knowledge and experience in secure enterprise architecture design, especially with regard to IAM, NDR, EDR, SIEM, AI/ML, and other cybersecurity tools and resultant applications Experience selecting effective methods, techniques, and evaluation criteria to achieve desired outcomes Previous experience developing architectures, strategies, strategic plans, roadmaps, and technical standards for the federal IT enterprise environment. Vulnerability Assessment testing and/or Penetration Testing (preferred) Robotic Process Automation/Intelligent Automation (preferred) Business case development supporting security technology solutions (preferred) Additional certifications demonstrating cybersecurity/technical mastery (preferred)

Opportunity Type CLASSIFIED EMPLOYMENT OPPORTUNITY Position Title INFORMATION SECURITY ANALYST Posting Number S2549 Close/First Review Date 11/16/2025 Department ITSS (Information Technology Support Services) Work Location District Office Position Status Full Time Salary Range $141,330 - $172,437 Annual Salary (Range 150: Classified Salary Schedule Fiscal Year 2025-2026). Starting placement is generally at Step 1. Benefits Summary In addition to the salary, this position qualifies for the choice of one of the District's excellent Health Benefits and Welfare plans, which the premium cost is 100% paid by the District for the employee and their eligible dependents, and one health plan costing an estimated $60,000 for the District for fiscal year 2025-2026. We offer two medical plans (Anthem Blue Cross [PPO] and Kaiser Permanente (HMO]); dental (Delta Dental PPO); vision (VSP Choice); life insurance for the employee (The Hartford); life insurance for eligible dependents (The Hartford); a long term disability/income protection plan (The Hartford); and an employee assistance plan (Anthem EAP). In addition, the District contributes an additional 26.81% of the employee's salary towards an eligible employee's pension (CalPERS). Employees may also elect to participate in optional plans including purchasing additional life insurance for themselves and their eligible dependent(s); enroll in a medical, transportation, and/or dependent care Flexible Spending Account(s) (with the $4 monthly administrative fee paid by the District); and set pre-taxed dollars aside to supplement their pension in a 403b (tax shelter annuity) and/or a 457 (deferred compensation) plan(s). Classified employees also earn 10 to 22 days per year of vacation (based on years of service), and up to 12 sick leave days (pro-rated for less than full-time positions). There are currently 20 paid holidays. Position Description POSITION SUMMARY The Information Security Analyst reports to Executive Director of ITSS (Information Technology Support Services) at the District Office. The work schedule is 12 months per year; 40 hours per week; Monday - Friday; 8:00 a.m. - 5:00 p.m. This position is represented by CSEA (California School Employees Association), Chapter 363. POSITION PURPOSE Reporting to Executive Director, ITSS or an assigned administrator, the Information Security Analyst performs complex work related to the District's information security program including testing, analysis and evaluation of the integrity and confidentiality of enterprise systems, network, assets and communication technology throughout the District. The position monitors security systems and conducts periodic risk assessments to identify, troubleshoot, diagnose, resolve and report security problems and breaches; assists in coordinating and conducting investigations involving District technology resources, and assists with security awareness training. DISTINGUISHING CHARACTERISTICS This position focuses on threat and vulnerability management with exposure and support on all aspects of the cybersecurity practice. Incumbent in this position should have advanced knowledge on risk identification, protection and compliance, threat detection, incident response plan development and annual review, and recovery services to achieve business resilience. KEY DUTIES AND RESPONSIBILITIES 1. Analyze, evaluate and implement security applications, policies, standards and procedures intended to prevent the unauthorized use, disclosure, modification, loss or destruction of data; work with the campus community and other staff to ensure the integrity and security of the information technology infrastructure. 2. Lead the development, testing and implementation of information security products and control techniques in all locations throughout the District. 3. Work with campus and district technology teams to ensure the security of all applications and assets. 4. Monitor and review security systems and logs. Identify, troubleshoot, diagnose, resolve, document and report security problems and incidents; help coordinate and conduct investigations of suspected breaches; respond to emergency information security situations. 5. Collaborate with application programming team and other IT staff to ensure production applications meet established security policies and standards. 6. Assist with training and education on information security and privacy awareness topics for District administrators, faculty and staff; assist in the development of appropriate security-incident notification procedures for District management. 7. Work with vendors to conduct vulnerability assessments to identify existing or potential electronic data and assets compromises and their sources; participate in investigative matters with appropriate law enforcement agencies. 8. Perform audits and periodic inspections of District information systems to ensure security measures are functioning and effectively utilized and recommend appropriate remedial measures to eliminate or mitigate future system compromises. 9. Review, evaluate, and recommend software products related to IT systems security, such as virus scanning and repair, encryption, firewalls, internet filtering and monitoring, intrusion detection, etc. 10. Monitor and maintain the District's security event information system (SEIM) and data loss prevention software. 11. Manage security systems and policies including but not limited to servers, firewalls, email security, and Microsoft 365 environment. 12. Recommend and implement security policies, protocols, practices and lead in creation of security training and guidance to staff. 13. Assist in the secure management and maintenance of the District's network authentication systems for wired and wireless network access. 14. Review security practices and controls of third-party service providers that handle District sensitive data, and review security controls and features of third-party software systems. 15. Ensure that maintenance, configuration, repair and patching of systems occurs on a scheduled and timely basis utilizing best practices in change management and consistent with policies and procedures. 16. Keep current with latest emerging security issues and threats through list servers, blogs, newsletters, conferences, user groups, and networking and collaboration with peers in other institutions. 17. Perform other duties reasonably related to the job classification. EMPLOYMENT STANDARD Knowledge of: 1. Compliance and industry cybersecurity standards frameworks such as NIST 800 and ISO standards. 2. Emerging technologies and the possible impact on existing information systems, instructional processes and business operations. 3. Incident response best practices and software license compliance laws. 4. Troubleshooting tools for computing hardware, servers and network equipment including but not limited to switches, routers, and firewalls. 5. Enterprise resource planning systems, Microsoft 365 and Active Directory and Azure Active Directory. 6. Principles of program design, coding, testing and implementation. 7. Advanced knowledge of desktop and server operating systems including Windows and Linux. 8. Disaster recovery and backup including business continuity planning. 9. Principles of training, support, and services to end-users. 10. General research techniques and data driven analytics. 11. Modern office administrative practices and use of tools including computers, websites and other applications related to this job. Skills and Ability to: 1. Apply current NIST and ISO standards to current operations. 2. Respond to incidents and events in a timely manner. 3. Prepare clear and concise system documentation and reports. 4. Prioritize assigned tasks and projects. 5. Communicate complicated technical issues and the risks they pose to stakeholders and management. 6. Establish and maintain effective and cooperative working relationships with others. 7. Analyze situations accurately and adopt effective course of action. 8. Coordinate, develop, and implement projects. 9. Work with attention to detail and independently with minimum supervision. Required Qualifications EDUCATION AND EXPERIENCE 1. A Bachelor's degree from an accredited institution with major course work in computer information systems, computer science, business administration, or related field. 2. Two years of experience performing information security duties, which may include implementing, overseeing, and/or managing information security technologies, process, or programs, including identification, protection, detection, response, and recovery activities. Certification: 1. Professional security or privacy certification, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or other similar credentials. District's Diversity * Demonstrated sensitivity, knowledge and understanding of the diverse academic, socioeconomic, gender identity, sexual orientation, cultural, disability, and ethnic background of groups historically underrepresented, and groups who may have experienced discrimination. * Success integrating diversity as appropriate into the major duties outlined in the job description and in the duties listed in the District's hiring policy; or demonstrated equivalent transferable skills to do so. Desired Qualifications 1. Bilingual abilities, desirable. Foreign Degree For positions that require a degree or coursework: Degree(s) must have been awarded by a college or university accredited by an accrediting body recognized by the U.S. Council on Post-Secondary Accreditation and/or the U.S. Department of Education. All degrees and credits earned outside of the United States must have a U.S. evaluation (course by course) of the transcripts and must be submitted with the application. Degrees earned outside of the U.S. without a U.S. credential evaluation attached, will not be considered. Working Environment Physical Demands: 1. Must sit for long periods of time, use hands and fingers to operate an electronic keyboard, reach with hands and arms, and speak clearly and distinctly to ask questions and provide information, hear and understand voices over telephone and in person. 2. The physical demands described here are representative of those that must be met by an individual to successfully perform the essential functions of this job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions. About San Jose/Evergreen Community College District The District is represented by dedicated and talented employees who are passionate about providing our student population with the best educational experience possible. The District recognizes that cultural diversity in the academic environment promotes academic excellence; fosters cultural, racial and human understanding; provides positive roles models for all students, and creates an inclusive and supportive educational and work environment for its employees, students, and the community it serves. As of Spring 2024, with enrollment of approximately 15,655 students per semester, and an extremely diverse student population (Hispanic/Latino 45.20%, Black/African-American 3.45%, Asian/Pacific Islander 31.70%, American Indian/Native American 0.36%, White/Caucasian 12.76%) attaining educational goals reflecting 56% - Transfer to a 4-Year College/ University, the District's emphasis on student success makes it a recognized educational leader in the State. The District encourages a diverse pool of applicants to serve as colleagues to an existing diverse classified staff consisting of 43.9% Latinx, 25.3% Asian/Pacific Islander, 4.2% Black/African American, 0.3% American Indian/Native American, 17.9% White/Caucasian, and as well as encouraging applications from all qualified, outstanding applicants. Important Information EQUAL OPPORTUNITY EMPLOYER STATEMENT: San José-Evergreen Community College District is an Equal Opportunity Employer committed to nondiscrimination on the basis of ethnic group identification, race, color, language, accent, immigration status, ancestry, national origin, age, gender, gender identity, religion, sexual orientation, transgender, marital status, veteran status, medical condition, and physical or mental disability consistent with applicable federal and state laws. CONTACT: Employment Services, Human Resources, SJECCD 40 S. Market Street, San Jose, CA 95113 Phone: ************** Email: ******************************* Employment Website: ****************************** District Website: ************** APPLICATION PROCEDURES: Interested applicants MUST SUBMIT ONLINE ALL of the following materials by the First Review Date/Closing Date as listed on the job announcement. Applications received after the First Review Date will only be forwarded to the hiring committee at their request. 1. A completed online San José-Evergreen Community College District APPLICATION. 2. A COVER LETTER (Stating how you feel you meet the qualifications as outline in the job announcement). 3. A current RESUME/CURRICULUM VITAE 4. TRANSCRIPT - (If Required) If a degree is listed as a requirement, transcripts (Not Diplomas) MUST INCLUDE confer or award date of stated degree. Unofficial transcripts will be accepted; however if the position is offered, official transcripts will be required prior to employment. If the transcripts or degrees are from outside of the United States, an official certification of equivalency to U.S. degrees by a certified U.S. credential review service (course by course of the transcripts) MUST also be submitted. (See below for a list of suggested services that provide foreign degree equivalency evaluation to U.S. degrees). Note: Some positions may require additional documents and/or certificates, in addition to the items listed above. Please refer to the job announcement. OTHER APPLICANT INFORMATION: 1. Only complete application materials will be considered. No exceptions. 2. Letters of Recommendation are NOT required and will not be forwarded to the hiring committee. 3. Upon hire the successful candidate must provide the required documents of identity and authorization to work and attest he/she is authorized to work in the United States. 4. Application materials become the property of the District and will not be returned or duplicated. 5. Travel expenses to attend the interview are the responsibility of the candidate. 6. Meeting the minimum qualifications does NOT assure an interview. 7. The District may re-advertise, delay, choose not to fill the position, or choose to fill more than one position. Suggested services that provide foreign degree equivalency evaluation to U.S. degrees: Academic Credentials Evaluation Institute, Inc. Website: *************************** Education Records Evaluation Services Website: ************ International Education Research Foundation Website: ******************** World Education Services Website: ***********

Figure is an AI Robotics company developing a general purpose humanoid. Our humanoid robot, Figure 02, is designed for commercial tasks and the home. We are based in San Jose, CA and require 5 days/week in-office collaboration. It's time to build. We are looking for a Security Engineer to join the Security & Privacy team at Figure, focusing on designing, implementing, and managing the detection and response tooling and processes. Responsibilities: Design, pilot, and implement central logging and alerting systems to detect malicious activity on Figure's infrastructure, including endpoints, networks, labs, and cloud environments Develop tools and automation strategies to improve Figure's ability to hunt threats and respond to incidents Participate in team operations, such as investigating events generated by the alerting pipeline and triage potential incidents, and drive response efforts in case of an active incident Identify, analyze, and build threat intelligence on relevant trends in adversary tactics, techniques, and procedures (TTPs) for sophisticated threat actors spanning APTs and cybercrime. Requirements: Experience several of the following detection and response areas: digital forensics, malware analysis, incident management, host/network intrusion detection, threat intelligence Demonstrated knowledge in threat hunting and developing logic to automate threat detection and incident response Work record of collaborating with internal and external stakeholders at all levels of a company Practical experience in a BeyondCorp model Strong software engineering (beyond scripting or automation) skills in C/C++, Rust, Golang, Python or similar Solid knowledge of operating system internals (Linux, Windows, mac OS), and experience with detection in Cloud environments (Azure, GCP, AWS) Bachelor of Science in Computer Science, Engineering, Information Systems, or equivalent years of experience in a related technical field 6+ years of experience in the field of security monitoring or related security role Excellent verbal and written communication skills, with high attention to detail The US base salary range for this full-time position is between $150,000 - $350,000 annually. The pay offered for this position may vary based on several individual factors, including job-related knowledge, skills, and experience. The total compensation package may also include additional components/benefits depending on the specific role. This information will be shared if an employment offer is extended.

Specialized expertise in application security testing, secure architecture, and vulnerability management across a variety of enterprise environments. Key Responsibilities ● Perform manual web application and mobile penetration testing. ● Identify, validate, and prioritize vulnerabilities, delivering actionable remediation and migration recommendations. ● Conduct code assisted reviews, architecture assessments, and threat modeling exercises. ● Research emerging vulnerabilities, exploit techniques, and security technologies to proactively improve defenses. ● Develop and deliver clear, comprehensive reports and presentations for technical and non-technical audiences. ● Assess and secure applications and services that incorporate AI/ML models or LLM-based functionality. ● Evaluate AI system components (data inges4on, model APIs, inference endpoints) for security and privacy risks. Required Qualifications: ● 5+ years of experience as an Application Security Engineer, Principal Security Consultant, or Senior Penetration Tester in an enterprise environment. ● Proven experience manually testing web applications and performing enterprise-level penetration testing. ● Strong understanding of Web and Mobile application security testing, methodologies, and common vulnerabilities. ● Proficiency in at least one scripting language (Python, Perl, Ruby, PHP) and one programming language (Java, Objective-C). ● Proficiency with Mac OS X and/or UNIX/Linux systems. ● General understanding of secure network architecture and design, including segmentation, ACLs, and secure communication protocols. ● General knowledge of common web technology stacks (LAMP, LEMP, MEAN, etc.) and their associated security considerations. ● General understanding of AWS services (EC2, S3, KMS, RDS) and security best practices relevant to those services. ● Ability to explain basic networking concepts (routing, load balancing, SSL/TLS, TCP/IP) to support secure application architecture reviews. ● Ability to ascertain and clearly articulate the size and scope of security assessments and penetration testing engagements. ● Solid understanding of the OWASP Top 10 and CWE Top 25 vulnerabilities (e.g., XXE, XSS, SQLi, SSRF). ● Strong communication skills-both written and verbal-with the ability to convey complex technical issues to diverse audiences. ● Demonstrated passion for continuous learning, vulnerability research, and staying ahead of evolving threat landscapes. Salary Range : $70,000-137,000 a year #LI-AS3

Job Description Crusoe's mission is to accelerate the abundance of energy and intelligence. We're crafting the engine that powers a world where people can create ambitiously with AI - without sacrificing scale, speed, or sustainability. Be a part of the AI revolution with sustainable technology at Crusoe. Here, you'll drive meaningful innovation, make a tangible impact, and join a team that's setting the pace for responsible, transformative cloud infrastructure. About This Role: At Crusoe, the Corporate Security Engineer is essential for safeguarding our employees, data, and infrastructure. You will be responsible for designing, implementing, managing, and optimizing security solutions across our corporate landscape. By leveraging modern security principles like "secure by design" and Zero Trust, you will help build and maintain a robust corporate security posture, with a key focus on endpoint security, identity and access management (IAM), SaaS application security, data loss prevention (DLP), and incident response. What You'll Be Working On: MDM Administration & Endpoint Security: Implementing, administering, and optimizing Mobile Device Management (MDM) solutions and enforcing security policies across diverse endpoints (laptops, mobile devices). Hardware & Software Security Standards: Establishing and maintaining hardware/software security standards and ensuring the strong security posture of corporate devices. Identity & Access Management (IAM): Designing, implementing, and managing core Identity & Access Management (IAM) technologies, including SSO, MFA, PAM, and identity lifecycle solutions, contributing to our Zero Trust architecture. Data Protection & Email Security: Implementing, configuring, and tuning Data Loss Prevention (DLP), SaaS Security Posture Management (SSPM), and email security solutions to protect against various threats. Secure Architecture & Technology Evaluation: Designing secure corporate environments using "secure by design" principles and evaluating the security posture of new technologies, vendors, and applications. Security Operations & Incident Response: Actively participating in corporate security operations, including monitoring security alerts, detecting, triaging, investigating, and responding effectively to security incidents. Security Consulting & Best Practices: Consulting with and advising IT, Engineering, and other teams on secure architecture, IAM best practices, and secure configurations. What You'll Bring to the Team: 3-5+ years of hands-on experience in a Corporate Security, Enterprise Security, or similar role. Proven experience designing, implementing, and managing security technologies at scale, including: MDM solutions (e.g., Intune, Kandji, Jamf, etc.) IAM solutions (e.g., Okta, Azure AD, IGA applications, etc. including SSO, MFA, PAM concepts) Endpoint security tools (EDR/XDR) Email threat protection solutions DLP and/or SSPM solutions. Strong understanding of modern security principles, including Zero Trust architecture, "secure by design," and defense-in-depth. Experience with securing SaaS applications and enforcing security policies. Demonstrated experience in security incident response, including triage, investigation, and remediation. Familiarity with scripting languages (e.g., Python, PowerShell) for automation and integration. Excellent problem-solving, analytical, and critical-thinking skills. Strong communication and collaboration skills, with the ability to work effectively across different teams. Embody the Company values. Benefits: Industry competitive pay Restricted Stock Units in a fast growing, well-funded technology company Health insurance package options that include HDHP and PPO, vision, and dental for you and your dependents Employer contributions to HSA accounts Paid Parental Leave Paid life insurance, short-term and long-term disability Teladoc 401(k) with a 100% match up to 4% of salary Generous paid time off and holiday schedule Cell phone reimbursement Tuition reimbursement Subscription to the Calm app MetLife Legal Company paid commuter benefit; $300 per month Compensation: Compensation will be paid in the range of $130,000 - $170,000 + Bonus. Restricted Stock Units are included in all offers. Compensation to be determined by the applicant's education, experience, knowledge, skills, and abilities, as well as internal equity and alignment with market data. Crusoe is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, disability, genetic information, pregnancy, citizenship, marital status, sex/gender, sexual preference/ orientation, gender identity, age, veteran status, national origin, or any other status protected by law or regulation.

JOB FUNCTION/PURPOSE: The CAD Security Systems Engineer is responsible for the design, engineering, and implementation of physical security systems across client and internal projects. This role works closely with Pre-Construction and Operations teams to interpret project specifications and drawings, determine optimal system layout, and develop detailed installation drawings to support successful project execution. The Engineer will design and layout electronic security systems including access control, video surveillance (CCTV), intrusion detection and may also assist with intercom, nurse call, paging, and A/V systems. Utilizing deep system knowledge, AutoCAD, and other design tools, the Security Systems Engineer plays a critical role in ensuring a seamless transition from engineering to operations. The role supports effective collaboration between Pre-Construction, Solutions Management, and Engineering teams to deliver reliable, compliant, and high-performing integrated security solutions for awarded projects. KEY ACCOUNTABILITIES: Conduct detailed site assessments to identify security risks, environmental considerations, and operational requirements. Develop comprehensive physical security system designs, including CCTV, access control, intrusion detection, intercom, duress, and perimeter protection. Create system layouts, riser diagrams, wiring schematics, device placement plans, and bills of material using CAD or similar tools. Specify appropriate hardware and technologies, including camera types and placement, access control devices (readers, locks, credentials), and network components. Design systems that are scalable, integratable with third-party platforms, and aligned with IT infrastructure and cybersecurity best practices. Ensure all designs comply with applicable codes, standards, and regulations (e.g., NFPA 731, UL 294, NEC, ADA, FIPS 201). Coordinate closely with architects, general contractors, and other trades to integrate systems into building designs and construction timelines. Perform technical evaluations of manufacturers, products, and designs to ensure optimal performance and value. Prepare technical documentation for bidding, permitting, construction, and client approval, including scopes of work and installation details. Support peer reviews and participate in design workshops to validate concepts and identify improvement opportunities. Build and maintain subcontractor relationships. Collaborate with project managers, general contractors, IT teams, and vendors to align project scope, timelines, and milestones. Participate in design reviews and construction planning sessions. Maintain accurate and complete system documentation including as-builts, configuration records, and asset tags. Assist with on boarding of new employees. OPERATE AS ONE TEAM: Build strong win-win relationships with other departments within Beacon. JOB QUALIFICATIONS: Knowledge: In-depth understanding of physical security systems including access control, CCTV, intrusion detection, intercom, and related technologies. Familiarity with industry standards and codes such as UL 294, NFPA 731, NEC, ADA, and NIST. Working knowledge of low-voltage systems. Knowledge of building construction, system integration practices, and coordination with other trades. Experience with major security platforms (e.g., Lenel, Avigilon, Software House) is highly preferred. Skills and Abilities Proficient in AutoCAD, Revit, Bluebeam, or other design/drafting software for producing system layouts and construction drawings. Strong analytical and problem-solving skills with a detail-oriented mindset. Ability to interpret technical drawings, project specifications, and floorplans. Effective communication skills, both written and verbal, for coordination with internal teams, vendors, and clients. Ability to manage multiple tasks and projects under tight deadlines. Collaborative mindset with the ability to work across engineering, pre-construction, and operations teams. Comfortable working in both office and construction site environments. Must understand implicit instructions and react favorably in all work situations. Capable of producing accurate documentation including BOMs, riser diagrams, and installation packages. Must be able to communicate providing verbal feedback in a professional manner. Education: Bachelors degree in electrical engineering, Security Engineering, or a related field; equivalent work experience may be considered. 37 years of experience in security systems engineering or low-voltage design. Certifications on low voltage systems. WORK ENVIRONMENT: This position is a hybrid role after the initial onboarding phase has been completed. Must be in the office three times a week, with one of the days being Monday or Friday. A work environment can be an office environment, medical facility, educational facility, or a customer site under construction, renovation, or warehouse space. Job sites will have a variety of environmental factors including but not limited to noise, dust, and temperature changes. Candidates must have the capability to transfer job sites, as necessary. ESSENTIAL FUNCTIONS: Requires prolonged sitting, standing, some bending, stooping, and stretching. Requires manual dexterity and eye-hand coordination for data input. Occasionally lift and carry items weighing up to fifty pounds. Must maintain a clear background check to satisfy customer job site badging requirements. Must be willing to submit to all vaccinations and screening tests required for customer jobsite badging protocol. Maintain a clear drug and alcohol screening protocol. This does not list all the duties of the job. Supervisors or management may ask you to perform other instructions and duties. You will be evaluated in part based upon your performance of the tasks listed in this . Management has the right to revise this description at any time. The job description is not a contract for employment, and either you or the employer may terminate employment at any time, for any reason as outlined in the employee manual or other written agreement. An Equal Opportunity Employer We do not discriminate based on race, color, religion, national origin, sex, age, disability, genetic information, or any other status protected by law or regulation. It is our intention that all qualified applicants are given equal opportunity and that selection decisions be based on job-related factors.

LinkedIn is the world's largest professional network, built to create economic opportunity for every member of the global workforce. Our products help people make powerful connections, discover exciting opportunities, build necessary skills, and gain valuable insights every day. We're also committed to providing transformational opportunities for our own employees by investing in their growth. We aspire to create a culture that's built on trust, care, inclusion, and fun - where everyone can succeed. Join us to transform the way the world works. At LinkedIn, our approach to flexible work is centered on trust and optimized for culture, connection, clarity, and the evolving needs of our business. This role may be remote or hybrid. At LinkedIn, hybrid roles are performed both from home and from a LinkedIn office on select days, as determined by the business needs of the team. Remote roles are performed from the designated home work location upon time of hire, and any changes to this home work location requires a review of remote status and approval. LinkedIn's members entrust us with their information every day and we take their security seriously. Our core value of putting our members first powers all the decisions we make, including how we manage and protect the data of our members and customers. We never stop working to ensure LinkedIn is secure. We follow industry standards and have developed our own best practices to stay ahead of the increasing number of threats facing all Internet services and infrastructure. LinkedIn is looking for an experienced Engineering Manager to lead the Detection Engineering team in the US and to be an integral part of our Information Security organization. The Detection Engineering team is responsible for developing and maintaining threat detection capabilities, security monitoring systems, and detection rules to protect our infrastructure, applications, and, most importantly, our members. This is a key role in supporting and growing our security detection and monitoring capabilities. Responsibilities: Leadership and Team Management + Lead and manage the detection engineering team, including hiring, training, and mentoring team members. + Develop and maintain detection engineering policies, procedures, infrastructure, and guidelines. + Coordinate and oversee all activities of the detection engineering team during threat detection development and implementation. Detection Development and Management + Serve as the primary point of contact for all threat detection development and enhancement initiatives. + Ensure timely development, testing, and deployment of detection rules and monitoring capabilities. + Conduct post-deployment analysis and create detailed reports on detection effectiveness with KPIs, including tuning recommendations and optimization strategies. Communication and Coordination + Communicate detection development status, updates, metrics and reporting, and capabilities to senior management, stakeholders, and security teams regularly. + Coordinate with internal and external teams, including security operations, defense infrastructure, incident response, and product engineering teams to develop and maintain effective detection capabilities. + Develop and maintain an effective detection engineering communication plan. Continuous Improvement + Continuously evaluate and improve detection engineering processes, tools, and capabilities. + Conduct and report on regular detection testing and validation exercises to test and refine detection rules and monitoring systems. + Stay current with emerging threats, attack techniques, and detection technologies to enhance the detection engineering program. Reporting and Documentation + Maintain comprehensive documentation of all detection rules, including development rationale, testing results, and performance metrics. + Prepare and present detection engineering reports and metrics to senior leadership and stakeholders. + Ensure compliance with regulatory requirements and industry standards related to threat detection and monitoring. Training and Awareness + Develop and deliver detection engineering training programs for team members and other relevant personnel. + Promote security detection awareness and best practices across the organization. + Ensure the detection engineering team is up-to-date with the latest tools, techniques, and procedures. Budget and Resource Management + Manage the detection engineering budget and allocate resources effectively. + Evaluate and recommend tools, technologies, and services to enhance the detection engineering program. + Ensure the team has the necessary resources and support to perform their duties effectively. Basic Qualifications: + Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related technical discipline, or equivalent practical experience. + 1+ year(s) of management experience or 1+ year(s) of staff level engineering experience with management training. + 7+ years of experience in cybersecurity, with a focus on detection engineering, security monitoring, threat intelligence, incident response, or related security roles. + Experience leading or managing a cybersecurity, incident response, or detection engineering team. + Experience in cybersecurity frameworks and standards (e.g., NIST, MITRE ATT&CK, OCSF). + Experience in detection engineering tools and technologies (e.g., Query Languages, CI/CD, YARA, Sigma rules, threat intelligence platforms). + Experience with threat analysis, detection rule development, automation engineering, and security monitoring optimization. + Project management experience with managing budgets and resources. Preferred Qualifications: + Master's degree in Cybersecurity, Information Assurance, or a related field. + 10+ years of experience in cybersecurity, with significant experience in detection engineering, threat intelligence, or incident response. + 3+ years of management experience in building small to medium-sized teams, demonstrating growth and a track record of successful deliveries. + Ability to work under pressure and manage multiple detection development projects simultaneously as well as managing an oncall team. + Relevant certifications (e.g., CISSP, CISM, GCIH, GCFA, SANS). + Experience in developing and delivering detection engineering training and awareness programs. + Strong proficiency in Kusto Query Language (KQL) and SQL. + Proficiency in programming or scripting languages (e.g., Python, Go, etc.) for automating detection development and testing processes. + Experience with cloud security and detection engineering in cloud environments especially Azure. + Knowledge of advanced threat detection techniques, including threat hunting and behavioral analysis as well as applied threat intelligence. + Familiarity with detection engineering frameworks and best practices (e.g., Sigma, YARA, STIX/TAXII, OCSF). + Strong communication skills, both written and verbal, with the ability to convey complex technical information to non-technical stakeholders. Suggested Skills : + Security Information and Event Management (SIEM) + Query languages (KQL, SPL, SQL, Elastic, etc.) + Detection Rule Development (YARA, Sigma) + Scripting and Automation (e.g., Python, PowerShell, SQL) + Threat Intelligence Integration + Cloud Security (e.g., Azure, GCP) You will Benefit from our Culture We strongly believe in the well-being of our employees and their families. That is why we offer generous health and wellness programs and time away for employees of all levels. LinkedIn is committed to fair and equitable compensation practices. The pay range for this role is $152,000 - $248,000. Actual compensation packages are based on a wide array of factors unique to each candidate, including but not limited to skill set, years & depth of experience, certifications and specific office location. This may differ in other locations due to cost of labor considerations. The total compensation package for this position may also include annual performance bonus, stock, benefits and/or other applicable incentive compensation plans. For additional information, visit: ************************************** **Equal Opportunity Statement** We seek candidates with a wide range of perspectives and backgrounds and we are proud to be an equal opportunity employer. LinkedIn considers qualified applicants without regard to race, color, religion, creed, gender, national origin, age, disability, veteran status, marital status, pregnancy, sex, gender expression or identity, sexual orientation, citizenship, or any other legally protected class. LinkedIn is committed to offering an inclusive and accessible experience for all job seekers, including individuals with disabilities. Our goal is to foster an inclusive and accessible workplace where everyone has the opportunity to be successful. If you need a reasonable accommodation to search for a job opening, apply for a position, or participate in the interview process, connect with us at accommodations@linkedin.com and describe the specific accommodation requested for a disability-related limitation. Reasonable accommodations are modifications or adjustments to the application or hiring process that would enable you to fully participate in that process. Examples of reasonable accommodations include but are not limited to: + Documents in alternate formats or read aloud to you + Having interviews in an accessible location + Being accompanied by a service dog + Having a sign language interpreter present for the interview A request for an accommodation will be responded to within three business days. However, non-disability related requests, such as following up on an application, will not receive a response. LinkedIn will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by LinkedIn, or (c) consistent with LinkedIn's legal duty to furnish information. **San Francisco Fair Chance Ordinance ** Pursuant to the San Francisco Fair Chance Ordinance, LinkedIn will consider for employment qualified applicants with arrest and conviction records. **Pay Transparency Policy Statement ** As a federal contractor, LinkedIn follows the Pay Transparency and non-discrimination provisions described at this link: ******************************** **Global Data Privacy Notice for Job Candidates ** Please follow this link to access the document that provides transparency around the way in which LinkedIn handles personal data of employees and job applicants: ********************************************

**Be visionary** Teledyne Technologies Incorporated provides enabling technologies for industrial growth markets that require advanced technology and high reliability. These markets include aerospace and defense, factory automation, air and water quality environmental monitoring, electronics design and development, oceanographic research, deepwater oil and gas exploration and production, medical imaging and pharmaceutical research. We are looking for individuals who thrive on making an impact and want the excitement of being on a team that wins. **Job Description** **Make an impact where security meets innovation.** At Teledyne RF & Microwave, we design and deliver advanced technologies that power aerospace, defense, and communications worldwide. Our team thrives on precision, collaboration, and a commitment to protecting critical systems. If you're passionate about cybersecurity and want to work for a trusted leader in high-tech solutions, this role is for you. **What you'll do** + Maintain the security posture of classified systems in line with approved policies + Verify implementation of security controls and keep documentation current + Manage system accounts and ensure proper authorization procedures + Conduct regular system assessments and report findings to the ISSM + Monitor audit logs and analyze user activity for compliance + Respond to security incidents and oversee recovery processes + Notify ISSM of system changes that impact authorization + Support hardware maintenance, backups, and virus updates + Train employees on internal security policies and assist with spill containment + Participate in configuration control activities when designated **What you need** + Strong problem-solving and organizational skills (required) + Ability to analyze security data and enforce compliance (required) + Excellent communication and teamwork skills (required) + U.S. citizenship and eligibility for security clearance (required) + Bachelor's degree in Information Systems or Security+ certification (required) + Experience with classified systems and security audits (advantage) + Familiarity with DAAPM and ITPSO policies (advantage) + Hands-on technical competence with system administration (advantage) **What we offer** + Competitive pay and comprehensive health benefits + 401(k) with company match and retirement plans + Paid time off and flexible work arrangements + Professional development and training opportunities + Employee wellness programs and assistance resources + A collaborative environment working on mission-critical technology **What happens next** Apply online through Teledyne's careers page. If your qualifications align, our team will contact you for interviews and guide you through the clearance process. _Teledyne is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status._ **Salary Range:** $61,600.00-$82,100.000 **Pay Transparency** The anticipated salary range listed for this role is only an estimate. Actual compensation for successful candidates is carefully determined based on several factors including, but not limited to, location, education/training, work experience, key skills, and type of position. Teledyne and all of our employees are committed to conducting business with the highest ethical standards. We require all employees to comply with all applicable laws, regulations, rules and regulatory orders. Our reputation for honesty, integrity and high ethics is as important to us as our reputation for making innovative sensing solutions. Teledyne is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age, or any other characteristic or non-merit based factor made unlawful by federal, state, or local laws. You may not realize it, but Teledyne enables many of the products and services you use every day **.** Teledyne provides enabling technologies to sense, transmit and analyze information for industrial growth markets, including aerospace and defense, factory automation, air and water quality environmental monitoring, electronics design and development, oceanographic research, energy, medical imaging and pharmaceutical research.