Senior information assurance engineer full time jobs - 39 jobs

Cintas is currently looking for an IT Security Engineer-Level 2 for the IT Security Team within IT. This role researches, recommends and implements changes to enhance information systems security and monitoring capabilities. The Information Security Engineer-Level 2 is responsible for: engineering solutions (processes, technologies) to mitigate control gaps; presenting proposed solutions to IT management; coordinating with vendors for proof-of-concept, proof-of-value, and pilot exercises; reviewing information systems to identify potential security weaknesses, recommending improvements to reduce vulnerabilities; taking part of on-call rotation to triage any potential security incidents; participating in network and systems design to ensure implementation of appropriate systems security policies; maintaining and growing knowledge and understanding of information security, risk management and regulatory compliance topics, providing occasional after hours and weekend support for project efforts; acting as mentor for junior engineers; and working collaboratively with various Cintas partners to design, build, and deploy security frameworks. **Skills/Qualifications** REQUIRED: + High school diploma/GED required; Bachelor's degree in Computer Science or related IT area, preferred + Minimum 7 years of experience in Information Technology + Minimum 4 years of experience in Information Security + Strong knowledge of cyber security practices and procedures + Strong knowledge of networking and infrastructure best practices + Ability to act as the primary SME for Cloud Security + Strong working knowledge of the CSF Framework + Strong working knowledge of GCP, GCVE required; Azure preferred Preferred: + Industry certifications (e.g., GCP, ACE) Benefits Cintas offers comprehensive and competitive medical, dental and vision benefits, with premiums below the national average. We offer flexibility with four different medical plan options; one plan is offered at zero cost. Additionally, our employee-partners enjoy: - Competitive Pay - 401(k) with Company Match/Profit Sharing/Employee Stock Ownership Plan (ESOP) - Disability, Life and AD&D Insurance, 100% Company Paid - Paid Time Off and Holidays - Skills Development, Training and Career Advancement Opportunities Company Information Cintas Corporation helps more than one million businesses of all types and sizes get Ready to open their doors with confidence every day by providing products and services that help keep their customers' facilities and employees clean, safe, and looking their best. With offerings including uniforms, mats, mops, towels, restroom supplies, workplace water services, first aid and safety products, eye-wash stations, safety training, fire extinguishers, sprinkler systems and alarm service, Cintas helps customers get Ready for the Workday . Headquartered in the U.S., Cincinnati, OH, Cintas is a publicly held Fortune 500 company traded over the Nasdaq Global Select Market under the symbol CTAS and is a component of both the Standard & Poor's 500 Index and Nasdaq-100 Index. Cintas Corporation is proud to be an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy), national origin, age, genetic information, disability, protected veteran status, or any other characteristic or category protected by local, state, or federal law. This job posting will remain open for at least five (5) days. **Job Category:** Information Technology **Organization:** **Employee Status:** Regular **Schedule:** Full Time **Shift:** 1st Shift

Cintas is currently looking for an IT Security Engineer-Level 2 for the IT Security Team within IT. This role researches, recommends and implements changes to enhance information systems security and monitoring capabilities. The Information Security Engineer-Level 2 is responsible for: engineering solutions (processes, technologies) to mitigate control gaps; presenting proposed solutions to IT management; coordinating with vendors for proof-of-concept, proof-of-value, and pilot exercises; reviewing information systems to identify potential security weaknesses, recommending improvements to reduce vulnerabilities; taking part of on-call rotation to triage any potential security incidents; participating in network and systems design to ensure implementation of appropriate systems security policies; maintaining and growing knowledge and understanding of information security, risk management and regulatory compliance topics, providing occasional after hours and weekend support for project efforts; acting as mentor for junior engineers; and working collaboratively with various Cintas partners to design, build, and deploy security frameworks. Skills/Qualifications REQUIRED: High school diploma/GED required; Bachelor's degree in Computer Science or related IT area, preferred Minimum 7 years of experience in Information Technology Minimum 4 years of experience in Information Security Strong knowledge of cyber security practices and procedures Strong knowledge of networking and infrastructure best practices Ability to act as the primary SME for Cloud Security Strong working knowledge of the CSF Framework Strong working knowledge of GCP, GCVE required; Azure preferred Preferred: Industry certifications (e.g., GCP, ACE) Benefits Cintas offers comprehensive and competitive medical, dental and vision benefits, with premiums below the national average. We offer flexibility with four different medical plan options; one plan is offered at zero cost. Additionally, our employee-partners enjoy: • Competitive Pay • 401(k) with Company Match/Profit Sharing/Employee Stock Ownership Plan (ESOP) • Disability, Life and AD&D Insurance, 100% Company Paid • Paid Time Off and Holidays • Skills Development, Training and Career Advancement Opportunities Company Information Cintas Corporation helps more than one million businesses of all types and sizes get Ready™ to open their doors with confidence every day by providing products and services that help keep their customers' facilities and employees clean, safe, and looking their best. With offerings including uniforms, mats, mops, towels, restroom supplies, workplace water services, first aid and safety products, eye-wash stations, safety training, fire extinguishers, sprinkler systems and alarm service, Cintas helps customers get Ready for the Workday . Headquartered in the U.S., Cincinnati, OH, Cintas is a publicly held Fortune 500 company traded over the Nasdaq Global Select Market under the symbol CTAS and is a component of both the Standard & Poor's 500 Index and Nasdaq-100 Index. Cintas Corporation is proud to be an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy), national origin, age, genetic information, disability, protected veteran status, or any other characteristic or category protected by local, state, or federal law. This job posting will remain open for at least five (5) days. Job Category: Information Technology Organization: Employee Status: Regular Schedule: Full Time Shift: 1st Shift

The Opportunity: Cyber threats are everywhere, and the constantly evolving nature of these threats can make understanding them seem overwhelming to our clients. In all of this “cyber noise,” how can these organizations understand their risks and how to mitigate them? The answer is you. We need your knowledge as an information security risk specialist to help break down complex threats into manageable plans of action. As an information security risk specialist on our team, you'll work with clients to discover their cyber risks, understand applicable policies, and develop a mitigation plan. You'll get technical and personnel details from colleagues to assess the entire threat landscape. Then, you'll help your team guide your client through a plan of action with presentations, whitepapers, and milestones. You'll work on translating security concepts for your client so they can make the best decisions to secure their mission-critical systems. This is your opportunity to take an active role in information security while growing your skills in cloud technologies. Be a part of our team as we protect our nation's critical information systems. Join us. The world can't wait. You Have: 5+ years of experience as an ISSO or Information System Security Analyst (ISSA) Experience conducting tools assessments and configuration analysis against best practices, vendor specifications, and government security guidelines and requirements Experience with the implementation, oversight, and maintenance of the security configuration, practices, and procedures for systems Experience implementing controls from NIST 800-53, FedRAMP, ICD 503, RMF, and DoD Information Levels, including applying them to the design and implementation of information technology solutions to achieve an authorization to operate (ATO) Experience with eMASS or Xacta IA Manager Ability to perform risk analysis Active TS/SCI clearance; willingness to take a polygraph exam HS diploma or GED DoD 8570 IAM Level II Certification such as CCNA-Security, CySA+, GICSP, GSEC, Security+ CE, CND, or SSCP Certification Nice If You Have: Experience with DoD security technical implementation guides (STIGs), checklists, and testing tools, including STIG Viewer, SCAP, and ACAS scanning tool Experience assessing configuration changes such as new COTS tools or web application upgrades, to system security boundary Experience with cyber-related tools such as Splunk or STIG Viewer Experience with SAP Knowledge of Zero Trust principles and concepts Ability to work within a collaborative team and a fast-paced and dynamic environment Possession of excellent written, organizational, presentation, and verbal communication skills AWS, Azure, or GCP Certification Clearance: Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance is required. Compensation At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen's benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page. Salary at Booz Allen is determined by various factors, including but not limited to location, the individual's particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $61,900.00 to $141,000.00 (annualized USD). The estimate displayed represents the typical salary range for this position and is just one component of Booz Allen's total compensation package for employees. This posting will close within 90 days from the Posting Date. Identity Statement As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud. Work Model Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely. If this position is listed as remote or hybrid, you'll periodically work from a Booz Allen or client site facility. If this position is listed as onsite, you'll work with colleagues and clients in person, as needed for the specific role. Commitment to Non-Discrimination All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.

Location: Van Wert, OH; Dublin, OHWork Model: Hybrid Position type: Full time - salary We're a team of employees passionate about delivering best-in-class customer service and driving innovation in IT support. Integrity, relationships, and excellence are at the heart of everything we do. Our employees fully utilize their talents and bring their best selves to work. We believe who you are is just as important as what you do! Looking to make a difference and apply your depth of cyber security knowledge in a variety of security solutions. Join Central's cyber security team. We seek curious and passionate individuals that enjoy being empowered and who can lead within their areas of expertise. The ideal candidate will be responsible for technical expertise and execution in the areas of end point protection, vulnerability management, web security, network security, email security, and penetration testing for Central. Key Responsibilities of the Role Develops and executes security controls, defense, and countermeasures to prevent attacks or attempts to infiltrate company devices. Utilizes digital forensics tools to investigate any possible incidents. Configures and validates any security tools (EDR, SIEM, etc..) to reduce false positives for intrusion and enable us to detect and respond quicker in case of a compromise. Provides expert technical advice within IT / Forensics cyber incident tabletop exercises. Performs root cause analysis, conducts threat analysis, and determines an action plan to remediate any risks identified. Performs security gap assessments and threat modeling for new and existing IT solutions. Provides technical advice and collaborates effectively with all IT groups. Manages and enhances security processes and tools involving email security, collaboration and file sharing, network security, cloud security, and vulnerability management. Conducts penetration testing for exploitable weaknesses within Central infrastructure and recommends remediations. Supports compliance initiatives (NIST CSF, PCI-DSS, MAR) and assists with audits. Stays current with emerging threats, vulnerabilities, and technology trends. Required Qualifications Bachelor's degree within Computer Science and 2 year of related experience Or 4 years of related experience Preferred Qualifications Cyber-security coursework or experience CISSP, CEH, OSCP certifications Knowledge, Skills, and Abilities Creativity and passion for cyber security Curious mind and strong desire to constantly learn. Excellent communication skills and ability to clearly explain security risks to any audience. Ability to weigh risks, calculate the costs on a course of action, and propose the optimal path toward mitigation. Capable of designing and maintaining security KPI metrics to prioritize activities Experience with security tools such as Defender, Rapid 7, Abnormal, CrowdStrike, Palo Alto. Experience with scripting languages such as Python, PowerShell, Bash. Strong knowledge of network protocols and design, operating systems (Windows, Linux, MacOS) and cloud platforms (Azure) and DLP techniques. Demonstrated ability to produce clear, concise, and technically accurate documentation including visual diagrams to communicate complex security concepts to any audience. Maximizes the use of AI, automation, computer forensics tools, workflows, and practices. Capable of participating within table top exercises at the IT or Corporate level. Knowledgeable with risk assessment methodology. Knowledgeable and experienced in penetration testing exercises. Total Rewards Central establishes base pay based on several factors including labor market data and an evaluation of candidate qualifications relative to role requirements. Base pay is one component of a comprehensive total rewards package designed to support employees' financial, health, career, and retirement objectives. Central provides extensive health and wellness benefits to promote flexibility, work-life balance, and long-term financial security. For more information, see Central Insurance Benefits

Ready to be pushed beyond what you think you're capable of? At Coinbase, our mission is to increase economic freedom in the world. It's a massive, ambitious opportunity that demands the best of us, every day, as we build the emerging onchain platform - and with it, the future global financial system. To achieve our mission, we're seeking a very specific candidate. We want someone who is passionate about our mission and who believes in the power of crypto and blockchain technology to update the financial system. We want someone who is eager to leave their mark on the world, who relishes the pressure and privilege of working with high caliber colleagues, and who actively seeks feedback to keep leveling up. We want someone who will run towards, not away from, solving the company's hardest problems. Our ******************************** is intense and isn't for everyone. But if you want to build the future alongside others who excel in their disciplines and expect the same from you, there's no better place to be. While many roles at Coinbase are remote-first, we are not remote-only. In-person participation is required throughout the year. Team and company-wide offsites are held multiple times annually to foster collaboration, connection, and alignment. Attendance is expected and fully supported. The Application Security org at Coinbase is hiring for a Senior Offensive Security Engineer, Offensive Security. We are seeking a highly skilled and experienced Penetration Tester with a proven track record of assessing and securing the digital security of physical spaces. The ideal candidate will possess a strong technical background, active, current, or recently expired security clearance, and demonstrated experience working with executives at large companies. *What you'll be doing (ie. job duties):** To be completed by all business teams except Eng.* * Assess the digital security of physical spaces (e.g., labs, offices), including expertise in IOT/IOT automation and prosumer networking gear. * Conduct comprehensive penetration tests on networked devices, including hardware, firmware, and integrations. * Identify and exploit vulnerabilities in ecosystems, providing detailed reports and recommendations for remediation. * Collaborate with security and development teams to integrate security best practices throughout the device lifecycle. * Stay current with the latest security threats, vulnerabilities, and industry best practices for securing physical spaces. * Present findings and recommendations to technical and non-technical stakeholders, including executive leadership. *What we look for in you (ie. job requirements):*** * Active, current, or recently expired security clearance. * 2+ years of experience working with C-Suite at S&P 500 organizations. * Proven penetration testing expertise across the full threat spectrum, from common criminal actors up to highly sophisticated, resource-rich Advanced Persistent Threats (APTs) and nation-state actors. * Proven expertise in penetration testing the full digital security of physical spaces, including building management systems (BMS), physical access control systems (PACS), IoT/home automation devices, wireless protocols (LoRaWAN, Bluetooth, Zigbee, etc) and networked security infrastructure (e.g., IP cameras and alarms). * Extensive experience working with executives at large, complex organizations. * Strong understanding of networking protocols and architectures, security frameworks, and building security best practices. * Proficiency in various penetration testing tools and methodologies. * Excellent communication and report-writing skills. * Ability to travel occasionally, based on business needs. *Nice to haves:* * Participation in computer security competitions (CTFs), Bug Bounty programs, open source security research, CVE analysis * Experience in Web3 security, network security and/or cloud security. * Experience with developing and implementing security tooling to support penetration testing and AI penetration testing activities. * Experience pentesting AI systems and LLMs. *Pay Transparency Notice*: Depending on your work location, the target annual *base *salary for this position can range as detailed below. Full time offers from Coinbase also include bonus eligibility + equity eligibility + benefits (including medical, dental, vision and 401(k)). Base salary range shown. Total compensation also includes equity and bonus eligibility and benefits: $186,065-$218,900 USD Please be advised that each candidate may submit a maximum of four applications within any 30-day period. We encourage you to carefully evaluate how your skills and interests align with Coinbase's roles before applying. Commitment to Equal Opportunity Coinbase is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, gender, national origin, age, disability, veteran status, sex, gender expression or identity, sexual orientation or any other basis protected by applicable law. Coinbase will also consider for employment qualified applicants with criminal histories in a manner consistent with applicable federal, state and local law. For US applicants, you may view the *********************************************** in certain locations, as required by law. Coinbase is also committed to providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation because of a disability for any part of the employment process, please contact us at accommodations*********************************** *Global Data Privacy Notice for Job Candidates and Applicants* Depending on your location, the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA) may regulate the way we manage the data of job applicants. Our full notice outlining how data will be processed as part of the application procedure for applicable locations is available ********************************************************** By submitting your application, you are agreeing to our use and processing of your data as required. *AI Disclosure* For select roles, Coinbase is piloting an AI tool based on machine learning technologies to conduct initial screening interviews to qualified applicants. The tool simulates realistic interview scenarios and engages in dynamic conversation. A human recruiter will review your interview responses, provided in the form of a voice recording and/or transcript, to assess them against the qualifications and characteristics outlined in the job description. For select roles, Coinbase is also piloting an AI interview intelligence platform to transcribe and summarize interview notes, allowing our interviewers to fully focus on you as the candidate. *The above pilots are for testing purposes and Coinbase will not use AI to make decisions impacting employment*. To request a reasonable accommodation due to disability, please contact accommodations[at]coinbase.com

":"As an Information Security Compliance Analyst, you will learn about the regulatory, contractual, and legislative requirements that affect technology used by our Company . You will be responsible for coordinating with internal and external parties to complete a variety of cyber security assessments, help raise security awareness of associates, provide guidance on industry standard cyber security requirements, and track on-going activities that help meet our security and compliance goals. If you thrive on solving complex problems, embrace continuous learning, and approach challenges with curiosity and critical thinking, apply today! #LI-DNI","job_category":"Information Technology","job_state":"OH","job_title":"Information Security Compliance Analyst","date":"2026-01-03","zip":"45430","position_type":"Full-Time","salary_max":"0","salary_min":"0","requirements":"Strong critical thinking skills required~^~Basic computer skills required~^~Strong written and verbal communication~^~Strong ability to drive task and organizing\/maintaining records~^~Ability to think creatively and strategically~^~Passion for learning new and emerging technology~^~Technology education or certifications, experience with enterprise IT environments, experience working with security regulatory requirements, and knowledge of security frameworks such as NIST CFS, NIST 800-53, ISO, PCI-DSS a plus","training":"","benefits":"Our associates receive medical, dental, vision, and life insurance. We also offer company contributions to your HSA, 6% match on 401(k), and a work\/life balance with paid time off. At our Dayton office, you can take advantage of our great training programs and facility amenities, including an onsite dining facility offering complimentary breakfast and lunch, a fitness center, and an onsite medical center. We also offer a wide variety of sports and social leagues to participate in after work, along with volunteering initiatives through our Associate Foundation. Reynolds and Reynolds promotes a healthy lifestyle by providing a non-smoking environment. Reynolds and Reynolds is an equal opportunity employer. ","

Requisition Number: 26018 Required Travel: 0 - 10% Employment Type: Full Time/Salaried/Exempt Anticipated Salary Range: $87,989. 00 - $125,000. 00 Security Clearance: Secret Level of Experience: Senior This opportunity resides with Warfare Systems (WS), a business group within HII's Mission Technologies division. Warfare Systems comprises cyber and mission IT; electronic warfare; and C5ISR systems. HII works within our nation's intelligence and cyber operations communities to defend our interests in cyberspace and anticipate emerging threats. Our capabilities in cybersecurity, network architecture, reverse engineering, software and hardware development uniquely enable us to support sensitive missions for the U. S. military and federal agency partners. Meet HII's Mission Technologies Division Our team of more than 7,000 professionals worldwide delivers all-domain expertise and advanced technologies in service of mission partners across the globe. Mission Technologies is leading the next evolution of national defense - the data evolution - by accelerating a breadth of national security solutions for government and commercial customers. Our capabilities range from C5ISR, AI and Big Data, cyber operations and synthetic training environments to fleet sustainment, environmental remediation and the largest family of unmanned underwater vehicles in every class. Find the role that's right for you. Apply today. We look forward to meeting you. To learn more about Mission Technologies, click here for a short video: ************** com/732533072 Job Description + Develop an in-depth technical understanding of assigned programs, including an awareness of all AT related technical issues, and be prepared to answer technical and risk based questions for our customer and senior DoD decision makers + Coordinate reviews, meetings and test activities for assigned programs and work to support program needs + Review engineering design documents for anti-tamper solutions (e. g. Anti-Tamper Plans) and conduct vulnerability analysis of system level anti-tamper architectures + Author technical reports to document vulnerabilities of proposed anti-tamper solutions and provide technical recommendations for key DoD acquisition decision makers + Support technical interchange meetings and program reviews with US Air Force and DoD program offices and weapon system and sensor developers, and provide real time feedback to help achieve acceptable anti-tamper implementations + Author written feedback for US Air Force and DoD program offices and weapon system and sensor developers to document identified weaknesses and vulnerabilities of anti-tamper solutions #LI-HB1 Essential Job Responsibilities Performs technical planning, system integration, verification and validation, cost and risk, and supportability and effectiveness analyses for total systems. Analyses are performed at all levels of total system product to include: concept, design, fabrication, test, installation, operation, maintenance and disposal. Ensures the logical and systematic conversion of customer or product requirements into total systems solutions that acknowledge technical, schedule, and cost constraints. Performs functional analysis, timeline analysis, detail trade studies, requirements allocation and interface definition studies to translate customer requirements into hardware and software specifications. Minimum Qualifications + 9 years relevant experience with Bachelors in related field; 7 years relevant experience with Masters in related field; 4 years relevant experience with PhD in related field; or High School Diploma or equivalent and 13 years relevant experience. + B. S. (M. S. preferred) in Electrical Engineering, Computer Engineering, Computer Science, Software Engineering or other related engineering disciplines + Minimum three (3) years experience with DoD Anti-Tamper engineering + 5-20 years of engineering experience, to include systems engineering, electronic design, software development, system integration and/or test and failure analysis + Working knowledge of modern electronic components, to include microprocessors, FPGAs, and ASIC technologies + Proficient technical writing skills to generate technical documents and presentations + Good verbal communication skills, comfortable interacting with technical peers and the ability to work as part of a team required + Good analytical, critical thinking and problem solving skills + Must be able to obtain and maintain a TS/SCI security clearance with advanced security checks + Secret clearance minimum to start Preferred Requirements + Experience with DoD sensor and weapon system engineering and devolvement desired + Hardware and/or software reverse engineering experience is a plus + Experience with Defensive Cyber technologies and techniques is a plus The listed salary range for this role is intended as a good faith estimate based on the role's location, expectations, and responsibilities. When extending an offer, HII's Mission Technologies division takes a variety of factors into consideration which include, but are not limited to, the role's function and a candidate's education or training, work experience, and key skills. Together we are working to ensure a future where everyone can be free and thrive. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, physical or mental disability, age, or veteran status or any other basis protected by federal, state, or local law. Do You Need Assistance? If you need a reasonable accommodation for any part of the employment process, please send an e-mail to buildyourcareer@hii-co. com and let us know the nature of your request and your contact information. Reasonable accommodations are considered on a case-by-case basis. Please note that only those inquiries concerning a request for reasonable accommodation will be responded to from this email address. Additionally, you may also call ************** for assistance. Press #3 for HII Mission Technologies.

The Senior Security Engineer AI role within the Data Protection team is responsible for ensuring AI systems use data safely, securely, and in compliance with enterprise and regulatory requirements. Reporting into the Corporate Information Security department, this role designs and enforces technical controls and guardrails that protect sensitive data across AI model training, deployment, and usage, including generative AI platforms and third-party AI services. The role partners closely with engineering, legal, privacy, and business teams to assess AI risk, secure models and pipelines, and enable approved AI use cases at scale. Ultimately, the AI Security function bridges data protection and cyber security to reduce AI-driven risk while accelerating responsible, enterprise-wide AI adoption. Plan, design and build of security architectures to ensure strong security posture, compliance with regulations, and safeguard of customer data. Manage information systems security, including disaster recovery, database protection, and software development. Demonstrate the company's core values of respect, honesty, integrity, diversity, inclusion and safety.From one tiny Cincinnati grocery store more than a century ago, we've grown into what today is the nation's largest grocer with nearly 2,800 stores in 35 states operating under 28 different names. As America's grocer, we take pride in bringing diverse teams with a passion for food and people together with one common purpose: To Feed the Human Spirit. With a history of innovation, we work tirelessly to create amazing experiences for our customers, communities AND each other, with food at the heart of it all. Here, people matter. That's why we strive to provide the ingredients you need to create your own recipe for success at work and in life. We help feed your future by providing the value and care you need to grow. If you're caring, purpose-driven and hungry to learn, your potential is unlimited. Whether you're seeking a part-time position or a new career path, we've got a fresh opportunity for you. Apply today to become part of our Kroger family! What you'll receive from us: The Kroger Family of Companies offers comprehensive benefits to support your Associate Well-Being, including Physical, Emotional, Financial and more. We'll help you thrive, with access to: A wide range of healthcare coverage, including affordable, comprehensive medical, dental, vision and prescription coverage, through company plans or collective bargaining agreement plans. Flexible scheduling in full- and part-time roles with paid time off, including holiday and sick pay based on eligibility and length of service. Emotional and financial support with free counseling through our Employee Assistance Program and free, confidential financial tools and coaching with Goldman Sachs Ayco. Valuable associate discounts on purchases, including food, travel, technology and so much more. Up to $21,000 in tuition reimbursement over your career, through our industry-leading Continuing Education program. Vast potential for growth, through an abundance of industry-leading training programs and diverse career pathways. For more information about benefits and eligibility, please visit our Benefits Page ! Minimum - Bachelor's Degree computer science, information systems, or related technical field - Any of the common languages (e.g., Perl, Python, Ruby, shell scripting) - 5+ years of experience in a related security field - Proven ability to design and build scalable, high volume, and low latency applications - Knowledge of network and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, BGP and other routing protocols) Desired - Master's Degree computer science, information systems, or related technical field -Hands-on Experience with ML and cloud AI services -Data Protection and Security Engineering -The ability to threat-model AI-specific risks -Experience with AI firewall tools, AI governance, third-party risk, DevSecOps/MLOps automation, and AI incident response adds significant value- Oversee identity and access management, cloud security, cryptography, logging and alerting, security operations, malware detection, incident response, vulnerability scanning, penetration testing, security architecture, and digital forensics - Oversee the implementation of network and computer security and ensure compliance with corporate cybersecurity policies and procedures - Assist with the monitoring of all security systems and their corresponding or associated software, including firewalls, intrusion detection systems, cryptography systems, and anti-virus software - Monitor server and firewall logs, scrutinize network traffic, establish and update vulnerability scans - Analyze and resolve complex security breaches and vulnerability issues in a timely and accurate fashion, and conduct user activity audits where required - Manage and ensure the security of databases and data transferred both internally and externally - Oversee penetration testing of all systems in order to identify system vulnerabilities. Design, implement, and report on security system and end user activity audits - Assist in developing new and modifying existing security policies and procedures to maintain compliance - Evaluate existing and recommend new and emerging security technologies - Conduct research on emerging products, services, protocols, and standards in support of security enhancement and development efforts - Must be able to perform the essential job functions of this position with or without reasonable accommodation

JobID: 210686675 JobSchedule: Full time JobShift: : Join a team where you can play a crucial role in shaping the future of a world-renowned company and make a direct and meaningful impact in a space designed for top performers. As a Senior Lead Security Engineer at JPMorganChase within Cyber Technology & Controls you are an integral part of an agile team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. Drive significant business impact through your capabilities and contributions and apply deep technical expertise and problem-solving methodologies to tackle a diverse array of cybersecurity challenges that span multiple technology domains. Job responsibilities * Architect, implement, and maintain security control objectives and procedures to ensure alignment with industry best practices and JPMorgan Chase (JPMC) security standards. * Partner in the design and actively participate in building security applications and technical solutions that enforce control objectives and address recurring HR security challenges. * Systematically identify gaps in vendor security offerings, and design and build in-house solutions to effectively mitigate these deficiencies. * Collaborate with HR and other stakeholders to understand business processes and security pain points, translating requirements into actionable engineering solutions. * Conduct comprehensive threat modeling for HR systems and processes; when threat models reveal security gaps, support the design and building of tailored security controls or applications. * Develop scripts, automation, and custom code to streamline security processes, enhance monitoring, and improve the efficiency and effectiveness of security controls. Required qualifications, capabilities, and skills * Formal training or certification on software engineering concepts and 5+ years applied experience. * Experience planning, designing, building and implementing enterprise level security engineering products and solutions in a public cloud environment (i.e. AWS, GCP, Azure) * Experience working with vendors to assess the sufficiency of their security practices and controls meet industry standards. * Extensive experience with threat modelling of applications or architectures using models such as STRIDE. * Advanced in one or more programming languages/scripts (i.e. C/C#, Python, PowerShell) * Advanced knowledge of secure software application development and technical processes with considerable in-depth knowledge in one or more technical disciplines (e.g., cloud, artificial intelligence, machine learning, mobile, etc.) * Experience with continuous integration and continuous deployment (CI/CD) tools (Jenkins), version control tools (BitBucket, Git), managing and tracking work using management tools like Jira * Ability to tackle design and functionality problems independently with little to no oversight Preferred qualifications, capabilities, and skills * Experience within Cyber Security is preferred with good understanding of industry frameworks like MITRE ATT&CK, NIST, CIS etc. * Certified Secure Software Lifecycle Professional or similar industry certification * Excellent communication and presentation skills * Prior experience in finance industry is a huge plus * Willingness to learn and drive to excel

Anduril Industries is a defense technology company with a mission to transform U.S. and allied military capabilities with advanced technology. By bringing the expertise, technology, and business model of the 21st century's most innovative companies to the defense industry, Anduril is changing how military systems are designed, built and sold. Anduril's family of systems is powered by Lattice OS, an AI-powered operating system that turns thousands of data streams into a realtime, 3D command and control center. As the world enters an era of strategic competition, Anduril is committed to bringing cutting-edge autonomy, AI, computer vision, sensor fusion, and networking technology to the military in months, not years. ABOUT THE TEAM Anduril's Security Engineering team is looking for a security engineer to focus on building world class defensive controls to protect the infrastructure around our advanced defense technology products. This is a role with a direct focus on securing Anduril's OT (Operational Technology) and ICS (Industrial Control Systems) environments. In this role, you will design and implement foundational security solutions playing a critical role in Anduril's roll out of cutting edge factory systems. ABOUT THE JOB WHAT YOU'LL DO Lead OT risk assessments, gap analyses, and develop a multi-year OT security roadmap Architect and implement defensive security controls for cloud, production, and corporate environments Support the deployment, configuration, and maintenance of security tools Build systems to support automation, visibility, and threat detection for efforts across various information security and infrastructure teams Independently drive security initiatives and foster a security-first mindset across the organization Work closely with factory production teams to review designs and use-cases, ensuring our environments are secure by design REQUIRED QUALIFICATIONS Experience with routing, switching, and network design principles Familiarity with zero trust architecture and segmentation strategies when it comes to OT networks Experience conducting security architecture or design reviews for OT/ICS environments Experience with threat modeling frameworks and applying these concepts to the OT/ICS domain (e.g. MITRE ATT&CK for ICS) Experience with programming in one or more general purpose languages (Python, Go, Rust, etc) Experience developing and implementing defensive controls in corporate and industrial production environments Ability to work autonomously and take ownership of complex projects Have participated in or supported incident response events Eligible to obtain and maintain an active U.S. Top Secret security clearance PREFERRED QUALIFICATIONS Familiarity with OT protocols (e.g., Modbus, DNP3, Ethernet/IP) and ICS environments Experience with specific ICS/SCADA vendor platforms (Siemens, Rockwell, Honeywell, etc.) Experience building bespoke solutions in high-growth high-complexity network environments Strong experience with Linux operating systems US Salary Range$129,000-$171,000 USD The salary range for this role is an estimate based on a wide range of compensation factors, inclusive of base salary only. Actual salary offer may vary based on (but not limited to) work experience, education and/or training, critical skills, and/or business considerations. Highly competitive equity grants are included in the majority of full time offers; and are considered part of Anduril's total compensation package. Additionally, Anduril offers top-tier benefits for full-time employees, including: Healthcare Benefits US Roles: Comprehensive medical, dental, and vision plans at little to no cost to you. UK & AUS Roles: We cover full cost of medical insurance premiums for you and your dependents. IE Roles: We offer an annual contribution toward your private health insurance for you and your dependents. Additional Benefits Income Protection: Anduril covers life and disability insurance for all employees. Generous time off: Highly competitive PTO plans with a holiday hiatus in December. Caregiver & Wellness Leave is available to care for family members, bond with a new baby, or address your own medical needs. Family Planning & Parenting Support: Coverage for fertility treatments (e.g., IVF, preservation), adoption, and gestational carriers, along with resources to support you and your partner from planning to parenting. Mental Health Resources: Access free mental health resources 24/7, including therapy and life coaching. Additional work-life services, such as legal and financial support, are also available. Professional Development: Annual reimbursement for professional development Commuter Benefits: Company-funded commuter benefits based on your region. Relocation Assistance: Available depending on role eligibility. Retirement Savings Plan US Roles: Traditional 401(k), Roth, and after-tax (mega backdoor Roth) options. UK & IE Roles: Pension plan with employer match. AUS Roles: Superannuation plan. The recruiter assigned to this role can share more information about the specific compensation and benefit details associated with this role during the hiring process. To view Anduril's candidate data privacy policy, please visit **********************************************

Senior Security Engineer, Platform and IAM Support - (04E7F) Description Position Title: Senior Security Engineer, Platform and IAM SupportYour RoleThe Senior Identity and Access Management (IAM) and Platform Engineer plays a critical role in designing, implementing, and maintaining secure, scalable, and user-centric identity and access solutions across the organization's technology ecosystem. This role sits at the intersection of security, infrastructure, and developer experience, ensuring that access controls are robust while enabling engineering teams to move quickly and safely. As a senior member of the engineering team, this role collaborates with the Leads on overall strategy and architecture of IAM and platform services, helping to define best practices, drive automation, and help with the integration of identity systems across cloud and on-prem environments. The role also supports broader platform engineering efforts by contributing to tooling, infrastructure-as-code, CI/CD pipelines, and service orchestration. Why You Belong HereAt Victoria's Secret & Co, you'll join a world-leading specialty retail brand recognized globally for innovation and excellence in lingerie and fashion. You'll work alongside industry leaders to set the standard for what a retail brand can achieve, placing customers at the center of everything we do to create products and experiences that bring them joy. We believe everyone deserves a place where they truly belong. We celebrate individuality and know that your passion, experience, and unique perspective strengthen our team and business. Here, you'll be empowered to perform, grow, and engage through unmatched opportunities to develop your skills, gain real-world experience, and learn from the best in the business. Your ImpactIdentity and Access Management (IAM) Design and implementation of identity and access management solutions, including federated identity, SSO, RBAC, and lifecycle management. Collaborate on the integration of IAM with cloud platforms (e. g. , AWS, Azure), SaaS applications, and internal services. Partner with security, DevOps, and application teams to enforce least privilege access, auditability, and compliance. Build and maintain platform tooling to manage secrets, certificates, authentication, and authorization flows. Automate IAM provisioning and de-provisioning using infrastructure-as-code and CI/CD pipelines. Participate in incident response and root cause analysis related to identity or platform infrastructure. Platform Security EngineeringCollaborate with lead engineers on operational support of security tools (Email Security, SASE, EDR, SIEM, etc. ) Collaborate with lead engineers to integrate security best practices into CI/CD pipelines and cloud infrastructure (Azure, GCP). Assist in securing container platforms (e. g. , Kubernetes, Docker) and infrastructure as code (Terraform, CloudFormation, etc. ). Participate in threat modeling and security reviews of new infrastructure components. Security Operations & MonitoringStay current with industry trends and threat landscapes related to identity security and platform resilience. Collaborate with SOC and security analysts to investigate IAM-related incidents. Develop scripts and automation (e. g. , Python, PowerShell) to enhance identity workflows and platform security. Monitor system logs, access events, and security alerts from IAM and cloud platforms. Maintain documentation for IAM processes, security controls, and supported systems. Click here for benefit details related to this position. Posted Salary Minimum: $96,500. 00 Posted Salary Maximum: $131,775. 00 (US Dollar (USD) VS&Co provides an estimated range of compensation for this role as shown. Your actual compensation will be determined by a number of relevant factors, including but not limited to your specific skills, experience, & geographic location. Qualifications: Your Experience6+ years related cybersecurity experience Experience with SailPoint ISE, CyberArk, PingIdentity, Directory Services, EntraADUnderstanding of networking applications and multiple platforms Demonstrated knowledge of security controls in relation to authentication, authorization, privilege access management, identity governance Customer Service orientation Understanding of security controls and how they are used to detect and respond Ability to communicate technical issues to non-technical audiences across functions Ability to assess/evaluate/prioritize risk Ability to lead small (sometimes cross functional) teams/projects/programs Demonstratable shell scripting abilities. Bash, python, Powershell, . Net, Java. Required ExperienceDeep expertise in IAM technologies such as PingIdentity, Azure AD, GCP, or similar systems. Strong understanding of authentication protocols (OAuth2, OIDC, SAML) and access control models (RBAC, ABAC, PBAC). Proficiency in infrastructure-as-code (Terraform, Pulumi) and automation tooling. Experience with CI/CD systems (e. g. , GitHub Actions, GitLab CI, Jenkins) and secrets management tools (e. g. , CyberArk, HashiCorp Vault, Azure Secrets Manager). Solid background in cloud infrastructure (Azure, or GCP) and container orchestration (Kubernetes preferred). Familiarity with regulatory and compliance requirements (e. g. , SOX, PCI) and how they relate to IAM. Experience prioritizing work and/or managing a queue Bachelor's degree in Information Technology/Information Security or equivalent experience We will consider for employment all qualified applicants, including those with arrest records, conviction records, or other criminal histories, in a manner consistent with the requirements of any applicable state and local laws. Please see links: California Fair Chance Act, Los Angeles Fair Chance Initiative for Hiring Ordinance, Philadelphia Fair Chance Law, San Francisco Fair Chance Ordinance, Los Angeles County Fair Chance Ordinance An equal opportunity employer, we do not discriminate in hiring or terms and conditions of employment because of an individual's race, color, religion, gender, gender identity, national origin, citizenship, age, disability, sexual orientation, marital status or any other protected category recognized by state, federal or local laws. We only hire individuals authorized for employment in the United States. Primary Location: United States-Ohio-ReynoldsburgWork Locations: Distribution Cntr 4-Vss/Vsb Reynoldsburg 43068Job: IT SecurityOrganization: VS Home OfficeSchedule: RegularShift: StandardEmployee Status: Individual ContributorJob Type: Full-time Job Level: Day JobJob Posting: Jan 26, 2026, 4:15:27 PM: : Employee Referral Bonus: 2,500. 00 US Dollar (USD) Refer a friend for this job Tell us about a friend who might be interested in this job. All privacy rights will be protected. Refer a friend

We are hiring a full-time Cybersecurity Engineer who is technical, dedicated to learning new things, security-minded, has strong initiative, and is able to manage projects autonomously. The Information Security team defends the company's digital infrastructure by designing, implementing, and improving the company's cybersecurity architecture. This is a critical role responsible for protecting infrastructure, cloud, edge devices, and data against unauthorized use, modification, exfiltration, or damage. If you're excited to be part of a fast-growing team, then Medpace is a great place to grow your career. Responsibilities * Engineer security solutions without oversight while collaborating with multiple internal departments and vendors; * Analyze security systems and drive continuous improvements; * Research vulnerabilities, perform vulnerability scanning and remediate threats; * Mature security best practices and policies internal to the organization; * Develop new processes while cross-training coworkers and assisting employees on security-related matters; * Provide security awareness training and testing for employees to verify proper security protocols are being adhered to; * Performing cyber security incident triage, reviewing logs, and performing remediation activities; and; * Review and reduce inappropriate/overprovisioned access to drive least privileged access. Qualifications * Minimum of bachelor's degree, preferably in Cybersecurity or Information Technology; * 3 years of experience in implementing, sustaining, and supporting Information Security solutions; * Understanding of security best practices and how to implement them within an enterprise environment; * Experience with managing, configuring, and deploying enterprise-grade security solutions in some of the following areas: * Zero Trust networking and network segmentation * Networking protocol analysis and forensics * Firewall configuration, Intrusions Detection and Prevention Systems (IDS/IPS) * Configuring Azure network architecture, working with Azure policies and Defender for Cloud Nice to have: * Experience with vulnerability assessment tools such as Nessus and Tenable; * Experience with enterprise web proxy solutions, web filters, and VPN such as Zscaler; * Experience with governing Windows environment including GPO; * Previous employment or experience in a highly regulated industry such as healthcare, financial, or defense experience with standards such as ISO, NIST, HIPPA, and/or SOC2; and * Auditing and policy-writing experience. Medpace Overview Medpace is a full-service clinical contract research organization (CRO). We provide Phase I-IV clinical development services to the biotechnology, pharmaceutical and medical device industries. Our mission is to accelerate the global development of safe and effective medical therapeutics through its scientific and disciplined approach. We leverage local regulatory and therapeutic expertise across all major areas including oncology, cardiology, metabolic disease, endocrinology, central nervous system, anti-viral and anti-infective. Headquartered in Cincinnati, Ohio, employing more than 5,000 people across 40+ countries. Why Medpace? People. Purpose. Passion. Make a Difference Tomorrow. Join Us Today. The work we've done over the past 30+ years has positively impacted the lives of countless patients and families who face hundreds of diseases across all key therapeutic areas. The work we do today will improve the lives of people living with illness and disease in the future. Cincinnati Perks * Cincinnati Campus Overview * Flexible work environment * Competitive PTO packages, starting at 20+ days * Competitive compensation and benefits package * Company-sponsored employee appreciation events * Employee health and wellness initiatives * Community involvement with local nonprofit organizations * Discounts on local sports games, fitness gyms and attractions * Modern, ecofriendly campus with an on-site fitness center * Structured career paths with opportunities for professional growth * Discounted tuition for UC online programs Awards * Named a Top Workplace in 2024 by The Cincinnati Enquirer * Recognized by Forbes as one of America's Most Successful Midsize Companies in 2021, 2022, 2023 and 2024 * Continually recognized with CRO Leadership Awards from Life Science Leader magazine based on expertise, quality, capabilities, reliability, and compatibility What to Expect Next A Medpace team member will review your qualifications and, if interested, you will be contacted with details for next steps.

Full Time 40 Hours/Week Monday - Friday, 8:00am - 4:30pm Remote On-Call Rotation The Sr Security Engineer is an integral part of the Cybersecurity program. This position will be responsible for maturing the Risk Management, and Incident response areas. This will be accomplished by conducting risk assessment of third parties, systems & equipment being placed on the network and cloud systems. Incident Response duties include organizing table top exercise and working with other staff on remediation of gaps identified. Day to day this position will interface with staff at all levels of the organization. Responsibilities: * Assists with the implementation, execution and continuous improvement of the Information Security Program including but not limited to: Policy and Document Maintenance, Risk Assessment, Security Controls and Technical Oversight. * Maintains information security policies, procedures, and standards. * Conducts periodic risk analysis and risk management assessments. * Develops and coordinates application security reviews and is responsible for vulnerability and incident management. * Responsible for evaluation, selection, and implementation of information security tools. * Ability to problem solve/remediate in a highly complex and matrixed environment. * Ability to successfully work in a fast-paced environment with a variety of personalities and work styles. * Ability to successfully work well under pressure with tight deadlines and with a sense of urgency. * Possess excellent written, oral, and active listening skills. * Other duties as required. Other information: Technical Expertise * Experience in HIPAA, HITECH, PCI, NIST, and other frameworks is required. * Experience in securing information system technologies is required. * Experience with both Technical Security Engineer and Governance, Risk and Compliance (GRC) is strongly preferred. * Experience working with all levels within an organization is required. * Experience in healthcare is preferred. * Proficiency in MS Office [Outlook, Excel, Word] or similar software is required. * In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc. * Experience with an organization's privacy and security due diligence efforts when entering into third party relationships or M&A activities a plus. * Knowledge of various operating system flavors including but not limited to Windows, Linux, Unix * Knowledge of applications, databases, middleware to address security threats against the same. * Proficient in preparation of reports, dashboards and documentation * Excellent communication and leadership skills * Ability to handle high pressure situations with key stakeholders * Good Analytical skills, Problem solving and Interpersonal skills * Ability to adapt and thrive in a dynamic work environment. Exceptional organization skills, ability to work independently as well as part of a team, and demonstrated experience in taking initiative and following up on tasks. * Proficiency in MS Office [Outlook, Excel, Word, Visio, and SharePoint] or similar software is required. Education and Experience * Education: Bachelor degree in related field is required. * Security Certification Required: CEH, CISSP, GCIH, GSEC, or similar level security certification * 2-3 years leadership/ supervisory experience preferred Full Time FTE: 1.000000

Security Engineer (260000H5) Organization: Secretary of StateAgency Contact Name and Information: Ambra StorayUnposting Date: Feb 6, 2026, 4:59:00 AMWork Location: SOS Civic Center Dr 4 180 Civic Center Dr Floor 4 Columbus 43215Primary Location: United States of America-OHIO-Franklin County-Columbus Compensation: $125,000 - $135,000 based on experience and skill Schedule: Full-time Classified Indicator: UnclassifiedUnion: Exempt from Union Primary Job Skill: CybersecurityTechnical Skills: Data Analytics, CybersecurityProfessional Skills: AnalyzationPrimary Technology: Security Software and Hardware Agency Overview SECURITY ENGINEERAbout Us:As Ohio's Secretary of State, Frank LaRose is doing his part to deliver a thriving democracy and a prosperous economy for all Ohioans. In his role as the state's chief elections officer, he is working to ensure that Ohio's elections are both secure and accessible. And, as the first stop for new businesses in the Buckeye State, he is assisting entrepreneurs as they receive articles of incorporation for a new business.Job Description The Security Engineer plays a critical role in safeguarding the Ohio Secretary of State's networks, systems, and data from cybersecurity threats and vulnerabilities. This position is responsible for implementing, administering, and continuously improving cyber defense technologies and security controls to protect enterprise technology assets and sensitive information.Working on the Cyber Defense Team, the Security Engineer supports the detection, prevention, analysis, and response to cybersecurity incidents and contributes to the design and sustainment of a resilient cyber defense infrastructure.ESSENTIAL DUTIES AND RESPONSIBILITIESCyber Defense Systems Administration• Administer specialized cyber defense systems and applications, including antivirus, intrusion detection and prevention systems (IDS/IPS), audit and remediation tools, and Virtual Private Network (VPN) devices.• Perform installation, configuration, maintenance, backup, restoration, and testing of cyber defense platforms.• Build, install, configure, and test dedicated cyber defense infrastructure and platforms.• Administer test environments and evaluate applications, hardware, access controls, and configurations managed internally or by service providers.Threat Detection, Prevention, and Optimization• Coordinate with Cyber Defense Team analysts to manage and update security rules, signatures, and content blacklists for cyber defense tools.• Create, edit, and manage network access control lists on firewalls, intrusion prevention systems, and related security devices.• Identify potential conflicts or performance issues associated with cyber defense tools and perform tuning, testing, and optimization of sensors and signatures.• Evaluate the impact of implementing and sustaining cyber defense technologies on enterprise systems and operations.Incident Response and Technical Support• Provide advanced technical support to enterprise-wide cyber defense personnel during cybersecurity incidents.• Assist with troubleshooting, diagnosing, and resolving anomalies within cyber defense infrastructure.• Apply incident handling methodologies to support containment, eradication, and recovery efforts.Security Architecture and Risk Management• Assist in assessing cybersecurity risks and recommending technical safeguards to mitigate vulnerabilities.• Support the application of cybersecurity and privacy principles related to confidentiality, integrity, availability, authentication, and non-repudiation.• Contribute to system, network, and operating system hardening efforts, including secure configuration, logging, segmentation, and least-privilege access.Other Duties• Perform related duties as assigned to support the mission and objectives of the Cyber Defense and Information Technology teams. Why Work for the State of OhioAt the State of Ohio, we take care of the team that cares for Ohioans. We provide a variety of quality, competitive benefits to eligible full-time and part-time employees*. For a list of all the State of Ohio Benefits, visit our Total Rewards website! Our benefits package includes: Medical Coverage Free Dental, Vision and Basic Life Insurance premiums after completion of eligibility period Paid time off, including vacation, personal, sick leave and 11 paid holidays per year Childbirth, Adoption, and Foster Care leave Education and Development Opportunities (Employee Development Funds, Public Service Loan Forgiveness, and more) Public Retirement Systems (such as OPERS, STRS, SERS, and HPRS) & Optional Deferred Compensation (Ohio Deferred Compensation) *Benefits eligibility is dependent on a number of factors. The Agency Contact listed above will be able to provide specific benefits information for this position.QualificationsMINIMUM QUALIFICATIONS Education • Required: Associate or higher degree in computer science, information technology, cyber security, or related field Certifications • Required: One or more of the following (or equivalent) industry recognized certifications addressing system security, network infrastructure, access control, cryptography, assessments and audits, organizational security, information security, information systems, network security, information assurance, troubleshooting, and security operations: o ISC2 Certified Information Systems Security Professional (CISSP) o ISC2 Certified Information Systems Auditor (CISA) o SANS GIAC, GSEC, GCIH, GCIA, GPEN o EC Council - Certified Ethical Hacker (CEH)o CompTIA Security+o Cisco Certified Network Associate (CCNA) - Security • Preferred: System-specific administrative and/or security-related certifications in Microsoft, Cloud, SIEM, Vulnerability Scanning, and IDS/IPS devices. Experience• Required: A minimum of three years of experience in real-world security challenges including network security vulnerability, advanced network analysis, basic cyber analysis/operations, network traffic analysis, Intermediate cyber, and hunt Knowledge, Skills & Abilities Knowledge• Cybersecurity principles related to confidentiality, integrity, availability, authentication, and non-repudiation.• Cyber threats, vulnerabilities, and common attack vectors.• Network security architecture, protocols, and methodologies (e.g., TCP/IP, DNS, DHCP, OSI model).• Intrusion Detection and Prevention Systems (IDS/IPS), firewalls, and web filtering technologies.• Risk management processes, including vulnerability assessment and mitigation strategies.• Laws, regulations, policies, and ethical standards related to cybersecurity and privacy.• Data backup, recovery, and continuity concepts.Skills• Strong technical skills in network security, operating systems, and cybersecurity tools.• Proficiency in automation and scripting using languages such as Python, PowerShell, Kusto Query Language (KQL), Shell, or similar.• Skill in tuning sensors, managing access controls, and securing network communications.• Skill in protecting networks against malware using preventive and detective controls (e.g., NIPS, anti-malware, spam filtering, device restrictions).• Skill in network traffic analysis using appropriate tools and methodologies.Abilities• Ability to troubleshoot and resolve complex cyber defense infrastructure issues.• Ability to analyze security data and translate findings into actionable recommendations.• Ability to work collaboratively with cybersecurity analysts, engineers, and leadership.• Ability to manage multiple priorities and respond effectively during cybersecurity incidents.• Ability to maintain accuracy, confidentiality, and professionalism when handling sensitive security information. Supplemental InformationThis position is Unclassified per ORC 124.11 (A) (30) Background check and drug screening required prior to employment ADA StatementOhio is a Disability Inclusion State and strives to be a model employer of individuals with disabilities. The State of Ohio is committed to providing access and inclusion and reasonable accommodation in its services, activities, programs and employment opportunities in accordance with the Americans with Disabilities Act (ADA) and other applicable laws.

Job Title: Security Engineer - Cloud & Endpoint Security Pay Rate: $50/hr - $85/hr Duration: 2/10/2025 - 12/31/2025 (Temp-to-Hire) Contract Type: W2 (must be authorized to work in the US; no sponsorships or C2C) Job Overview Our Cloud and Endpoint Security team is looking for a Security Engineer to drive the deployment and management of an allowlisting/reverse proxy solution (Airlock). This engineer will collaborate with cross-functional teams to ensure integration with existing infrastructure, refine security policies, and contribute to the enhancement of the organization's cybersecurity posture. The role involves hands-on configuration, monitoring, and ongoing maintenance of security solutions, while remaining adaptable to changing threats and technologies. Key Responsibilities Allowlisting & Reverse Proxy Deployment: Lead the deployment and configuration of Airlock, ensuring seamless integration with current systems and networks. Policy Development: Define and implement allowlisting policies to enhance application security, access control, and threat detection. Incident Response Collaboration: Work closely with the incident response team to optimize alerting and logging capabilities, ensuring swift detection and remediation of potential security incidents. Security Strategy & Best Practices: Assist in shaping the broader cybersecurity strategy, aligning it with business objectives and recognized frameworks (e.g., NIST, MITRE, ISO 27001). Automation & Reporting: Identify opportunities to automate configurations, streamline reporting processes, and enhance visibility into system performance. Monitoring & Analysis: Track solution performance and review security logs for emerging threats or anomalies; implement proactive measures where necessary. Research & Continuous Improvement: Stay informed about the latest cybersecurity threats and trends, applying relevant findings to enhance Airlock's configurations. Documentation & Maintenance: Support the development of incident response plans, secure access protocols, and maintain thorough documentation of all configurations and processes. Qualifications Minimum Requirements Bachelor's Degree in a related field or equivalent work experience. 3+ years of experience in cybersecurity, IT, or related roles. 1+ years of hands-on experience deploying or managing application allowlisting or reverse proxy solutions. 1+ years of experience with security frameworks (e.g., NIST, MITRE, ISO 27001). Proficiency with Windows and Linux environments, including command-line configurations. Preferred Skills Experience using Airlock or similar allowlisting tools. Familiarity with scripting/automation (Python, PowerShell, Bash) for configuration and reporting. Industry certifications (e.g., Sec+, CCSP, GIAC). Strong analytical and problem-solving abilities, especially in process development and root cause analysis. Additional Information Temp-to-Hire: This is a W2 contract position with potential to convert to a full-time role, contingent on performance and business needs. Work Arrangements: Local candidates are preferred; remote candidates will be considered if necessary. Team Environment: The Cloud & Endpoint Security team collaborates with multiple departments, playing a crucial part in establishing security best practices and ensuring incident response readiness.

WhiteDog is seeking an Information Security Analyst to join our Security Operations Center team. The Analyst will help coordinate and report on cyber incidents impacting SOC-as-a-Service customers. This position involves critical duties and responsibilities that must continue to be performed during crisis situations and contingency operations, which may necessitate extended hours of work. Onsite Location: Cincinnati, OH (no remote available) Employment Type: Full-Time, hourly Compensation: $22-$28/hour Key Responsibilities: Responsible for working in a 24x7 Security Operation Center (SOC) in person. (Hours - 7:00pm-7:00am PST) Provide analysis and trending of security log data from a large number of heterogeneous security devices. Provide Incident Response (IR) support when analysis confirms actionable incident. Provide threat and vulnerability analysis as well as security advisory services. Analyze and respond to previously undisclosed software and hardware vulnerabilities. Investigate, document, and report on information security issues and emerging trends. Integrate and share information with other analysts and other teams. Ability to work and be available for on-call activities Other duties as assigned. Experience and Skills: Experience in security device management and SIEM. Knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc. Knowledge of various operating system flavors including but not limited to Windows, Linux, Unix. Knowledge of applications, databases, middleware to address security threats against the same. Knowledge of various security methodologies and processes, and technical security solutions (firewall and intrusion detection systems). Knowledge of TCP/IP Protocols, network analysis, and network/security applications. Knowledge of common Internet protocols and applications. Ability to multi-task, prioritize, and manage time effectively. Strong attention to detail. Excellent interpersonal skills and professional demeanor. Excellent verbal and written communication skills. Excellent customer service skills. Proficient in Microsoft Office Applications. Qualifications: The successful candidate will possess the personality traits, work habits, communication, and social skills necessary to work effectively within a dynamic and highly operational environment. This person will have exemplary personal and professional integrity and demonstrate strong interpersonal skills. In addition, the qualified candidate will have a strong desire to succeed in a nationally and internationally recognized operational environment. Bachelor's or Master's degree in a related field or equivalent demonstrated experience and knowledge. You must be a US Citizen 1-3 years' experience as a Security/Network Administrator or equivalent knowledge. Security Essentials Certification (GSEC) Certified Intrusion Analyst (GCIA) Certified Incident Handler (GCIH) Certified Ethical Hacker (CEH) Certified Penetration Tester (CWAPT) CompTIA Network+ CompTIA Security+ Benefits: WhiteDog offers a competitive compensation plan with great earning potential. Our benefits include medical coverage, dental coverage, disability, life insurance, 401K and an amazing work environment! We are an Equal Opportunity Employer. All qualified applicants receive consideration for employment without regard to race, ethnicity, religious affiliation, gender, gender identity or expression, sexual orientation, national origin, or disability status. EOE AA M/ F/Vet/Disabled

At Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity. Learn more at ******************* Job Function: R&D Product Development Job Sub Function: R&D Software/Systems Engineering Job Category: Scientific/Technology All Job Posting Locations: Cincinnati, Ohio, United States of America, Santa Clara, California, United States of America : About Surgery Fueled by innovation at the intersection of biology and technology, we're developing the next generation of smarter, less invasive, more personalized treatments. Are you passionate about improving and expanding the possibilities of MedTech surgery? Ready to join a team that's reimagining how we heal? Our MedTech Surgery team will give you the chance to deliver surgical technologies and solutions to surgeons and healthcare professionals around the world. Your contributions will help effectively treat some of the world's most prevalent conditions such as obesity, cardiovascular disease and cancer. Patients are waiting. Your unique talents will help patients on their journey to wellness. Learn more at *******************/medtech. We are searching for the best talent for a Staff Product Security Engineer position, to be located in Santa Clara, CA or Cincinnati, OH. Job Description: The Staff Product Security Engineer will be a key member of the Capital R&D organization, make vital contributions to the New Product Development (NPD) pipeline and transform patient care through innovation. They are accountable for leading our NPD teams and creating a strategy to implement cybersecurity into the design and development of product hardware and software for use in cutting edge medical devices and associated capital equipment You will be responsible for: Identify threats and vulnerabilities to patient safety and product integrity, assess current security controls and determine potential impact of a threat and the risk level associated with threat/vulnerability pairs. Drive architecture, requirements, and design to ensure that decisions incorporate security considerations. Advise embedded system security software to ensure system hardening and secure coding practices. Support all stakeholders on patch management, vulnerability handling, and SBOM scanning Document designs and specifications per design control processes and conform to Industry Standards for Medical Device Software (IEC 62304) Qualifications / Requirements: Education: Bachelor's degree in Computer Science, Computer Engineering, Cybersecurity or related degree Experience and Skills 6+ years' experience (or 4+ with M.S.) establishing security architecture or implementing security solutions in consumer products or medical devices 3+ experience in a software engineering or software architectural role in a New Product Development (NPD) environment Proven experience with threat modeling and risk assessments for connected products or medical devices Ability to work autonomously and proactively seek out security opportunities within the different surgical robotics teams Ability to think big picture and have attention to detail - aligning strategic objectives with tactical implementation. Proven experience with electrical and embedded software design Experience developing software for embedded Real-Time Operating Systems (RTOS) Experience developing embedded software systems using Modern C++ (preferably standards 17+) A results and performance driven demeanor with strong sense of accountability Understanding of penetration testing, vulnerability scanning, and/or other general security testing principles Preferred Skills & Experience: Experience with FDA, data governance, and privacy standards (HIPAA, ISO 27001, UL 2900) Work experience with Systems Engineering activities: requirements management and development, risk management, and verification Strong collaboration, proven technical leadership capabilities, and conflict resolution skills A security certification from an accredited body is preferred and may be considered in lieu of a portion of required years of experience Experience working with secure boot, Trusted Platform Module (TPM), Data Distribution System (DDS), and QNX Other Requirements: Ability to travel up to 10% domestic US and Internationally The anticipated base pay range for this position is $105,000- $169,050. California Bay Area - The anticipated base pay range for this position is $141,000 - $227,000. The Company maintains highly competitive, performance-based compensation programs. Under current guidelines, this position is eligible for an annual performance bonus in accordance with the terms of the applicable plan. The annual performance bonus is a cash bonus intended to provide an incentive to achieve annual targeted results by rewarding for individual and the corporation's performance over a calendar/performance year. Bonuses are awarded at the Company's discretion on an individual basis. Employees and/or eligible dependents may be eligible to participate in the following Company sponsored employee benefit programs: medical, dental, vision, life insurance, short- and long-term disability, business accident insurance, and group legal insurance. Employees may be eligible to participate in the Company's consolidated retirement plan (pension) and savings plan (401(k)). This position is eligible to participate in the Company's long-term incentive program. Employees are eligible for the following time off benefits: Vacation - up to 120 hours per calendar year Sick time - up to 40 hours per calendar year Holiday pay, including Floating Holidays - up to 13 days per calendar year Work, Personal and Family Time - up to 40 hours per calendar year Additional information can be found through the link below. For additional general information on Company benefits, please go to: - ********************************************* This job posting is anticipated to close on 7/22/25. The Company may however extend this time-period, in which case the posting will remain available on *************************** to accept additional applications. Johnson & Johnson is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, protected veteran status or other characteristics protected by federal, state or local law. We actively seek qualified candidates who are protected veterans and individuals with disabilities as defined under VEVRAA and Section 503 of the Rehabilitation Act. Johnson & Johnson is committed to providing an interview process that is inclusive of our applicants' needs. If you are an individual with a disability and would like to request an accommodation, external applicants please contact us via *******************/contact-us/careers . internal employees contact AskGS to be directed to your accommodation resource. #RADSW #Li-Hybrid Required Skills: Product Security, Threat Modeling Preferred Skills: C++ STL, Embedded C++

At Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity. Learn more at ******************* Job Function: R&D Product Development Job Sub Function: R&D Software/Systems Engineering Job Category: Scientific/Technology All Job Posting Locations: Cincinnati, Ohio, United States of America, Santa Clara, California, United States of America : About Surgery Fueled by innovation at the intersection of biology and technology, we're developing the next generation of smarter, less invasive, more personalized treatments. Are you passionate about improving and expanding the possibilities of MedTech surgery? Ready to join a team that's reimagining how we heal? Our MedTech Surgery team will give you the chance to deliver surgical technologies and solutions to surgeons and healthcare professionals around the world. Your contributions will help effectively treat some of the world's most prevalent conditions such as obesity, cardiovascular disease and cancer. Patients are waiting. Your unique talents will help patients on their journey to wellness. Learn more at *******************/medtech. We are searching for the best talent for a Staff Product Security Engineer position, to be located in Santa Clara, CA or Cincinnati, OH. Job Description: The Staff Product Security Engineer will be a key member of the Capital R&D organization, make vital contributions to the New Product Development (NPD) pipeline and transform patient care through innovation. They are accountable for leading our NPD teams and creating a strategy to implement cybersecurity into the design and development of product hardware and software for use in cutting edge medical devices and associated capital equipment You will be responsible for: Identify threats and vulnerabilities to patient safety and product integrity, assess current security controls and determine potential impact of a threat and the risk level associated with threat/vulnerability pairs. Drive architecture, requirements, and design to ensure that decisions incorporate security considerations. Advise embedded system security software to ensure system hardening and secure coding practices. Support all stakeholders on patch management, vulnerability handling, and SBOM scanning Document designs and specifications per design control processes and conform to Industry Standards for Medical Device Software (IEC 62304) Qualifications / Requirements: Education: Bachelor's degree in Computer Science, Computer Engineering, Cybersecurity or related degree Experience and Skills 6+ years' experience (or 4+ with M.S.) establishing security architecture or implementing security solutions in consumer products or medical devices 3+ experience in a software engineering or software architectural role in a New Product Development (NPD) environment Proven experience with threat modeling and risk assessments for connected products or medical devices Ability to work autonomously and proactively seek out security opportunities within the different surgical robotics teams Ability to think big picture and have attention to detail - aligning strategic objectives with tactical implementation. Proven experience with electrical and embedded software design Experience developing software for embedded Real-Time Operating Systems (RTOS) Experience developing embedded software systems using Modern C++ (preferably standards 17+) A results and performance driven demeanor with strong sense of accountability Understanding of penetration testing, vulnerability scanning, and/or other general security testing principles Preferred Skills & Experience: Experience with FDA, data governance, and privacy standards (HIPAA, ISO 27001, UL 2900) Work experience with Systems Engineering activities: requirements management and development, risk management, and verification Strong collaboration, proven technical leadership capabilities, and conflict resolution skills A security certification from an accredited body is preferred and may be considered in lieu of a portion of required years of experience Experience working with secure boot, Trusted Platform Module (TPM), Data Distribution System (DDS), and QNX Other Requirements: Ability to travel up to 10% domestic US and Internationally The anticipated base pay range for this position is $105,000- $169,050. California Bay Area - The anticipated base pay range for this position is $141,000 - $227,000. The Company maintains highly competitive, performance-based compensation programs. Under current guidelines, this position is eligible for an annual performance bonus in accordance with the terms of the applicable plan. The annual performance bonus is a cash bonus intended to provide an incentive to achieve annual targeted results by rewarding for individual and the corporation's performance over a calendar/performance year. Bonuses are awarded at the Company's discretion on an individual basis. Employees and/or eligible dependents may be eligible to participate in the following Company sponsored employee benefit programs: medical, dental, vision, life insurance, short- and long-term disability, business accident insurance, and group legal insurance. Employees may be eligible to participate in the Company's consolidated retirement plan (pension) and savings plan (401(k)). This position is eligible to participate in the Company's long-term incentive program. Employees are eligible for the following time off benefits: Vacation - up to 120 hours per calendar year Sick time - up to 40 hours per calendar year Holiday pay, including Floating Holidays - up to 13 days per calendar year Work, Personal and Family Time - up to 40 hours per calendar year Additional information can be found through the link below. For additional general information on Company benefits, please go to: - ********************************************* This job posting is anticipated to close on 7/22/25. The Company may however extend this time-period, in which case the posting will remain available on *************************** to accept additional applications. Johnson & Johnson is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, protected veteran status or other characteristics protected by federal, state or local law. We actively seek qualified candidates who are protected veterans and individuals with disabilities as defined under VEVRAA and Section 503 of the Rehabilitation Act. Johnson & Johnson is committed to providing an interview process that is inclusive of our applicants' needs. If you are an individual with a disability and would like to request an accommodation, external applicants please contact us via *******************/contact-us/careers . internal employees contact AskGS to be directed to your accommodation resource. #RADSW #Li-Hybrid Required Skills: Product Security, Threat Modeling Preferred Skills: C++ STL, Embedded C++

Cloud Security Engineer - (23000FK6) Description The Cloud Security Engineer (CSE) should be hands-on in all aspects of Azure security including implementing security controls and threat protection, manage identity and access management, defining organizational structure and policies, using Azure technologies in order to provide data protection, configuring network security defenses, collecting and analyzing Azure logs, managing incident responses, and an understanding of regulatory concerns. As a Cloud Security Engineer you design and implement a secure end-to-end infrastructure on Azure in a hybrid cloud setup. Essential FunctionsMonitor security events daily, performing investigations and working with appropriate team members, business teams and Technology teams to develop solutions that address critical security concerns Maintain and improve the security posture of the Azure platform, identifying, and remediating vulnerabilities by using a variety of security tools. Provide cyber security expertise in the analysis, assessment, development, and evaluation of security solutions and architectures to secure applications, operating systems, databases, and networks. Implement and configure security controls and policies, manage access to data, and monitor threats to ensure that apps, containers, infrastructure, and networks are protected. Implementing threat protection and responding to security incident escalations. Automate security controls, data, and processes to provide better metrics and operational support using security-as-code. Configure access within a cloud solution environment using the defense-in-depth principle Configure network security including in a hybrid context with traditional network centric controls Ensure data protection Manage operations within a cloud solution environment such as operations tasks, using cloud native tools, like Log Analytics, Azure Monitor and Azure Security Center or other monitoring tooling. Support our cloud engineers to implement security best-practices and enable secure development and release processes. Deep understanding of configuring security policies and securing applications and data. Required For All JobsPerforms other duties as assigned. Complies with all policies and standards. For specific duties and responsibilities, refer to documentation provided by the department during orientation. Must abide by all requirements to safely and securely maintain Protected Health Information (PHI) for our patients. Annual training, the UH Code of Conduct and UH policies and procedures are in place to address appropriate use of PHI in the workplace. Qualifications QualificationsEducationBachelor's Degree in Information Technology, Computer Science, or a related field Required Work Experience5+ years IT security experience Required and 3+ years building and maintaining secure azure cloud solution and tools (Azure Monitor, Log Analytics, Azure Security Center) Required Knowledge, Skills, & Abilities Understand agile and DevOps concepts in a security context such as “trust but verify”, central vs decentral controls, make agile teams as autonomous as possible while ensuring the teams adhere to the NonFunctional-Requirements. A deep understanding of networking, e. g. IP subnetting, Network Security Groups, routing, Azure Firewall, ExpressRoute, load balancer, DNS. Strong familiarity with cloud capabilities and products and services for Azure, e. g. Azure Active Directory, Privileged Identity Management, VMs, Container Registry, Azure Kubernetes Services (AKS), Data Services, KeyVault. Have the intrinsic quality to want to continuously improve and do better Hands-on and can-do mentality Feeling of ownership Good communication and presentation skills Team player Able to express ideas effectively in individual and group situations. Able to execute a task in a good manner and with good results with limited supervision Strong skills in scripting and automation, Infrastructure-as-Code and using CI/CD concepts. Experience with pipeline tooling for automated deployments and applying security controls. Experience with Experience with infrastructure orchestration tools such as Terraform and other cloud-specific infrastructure automation tools (Azure Resource Manager, Google Cloud Deployment Manager) to automate the creation of staging, testing and production environments. Work experience from large, international companies and have dealt with or worked for global service providers. Licenses and CertificationsCertified Information System Security Professional (CISSP) Preferred Certified Ethical Hacker (CEH) Preferred Additional Licenses and Certifications Microsoft Azure Security related certifications Microsoft Certified: Azure Security Engineer Associate, Microsoft Certified: Information Protection Administrator Associate, or Microsoft Certified: Security Operations Analyst Associate) Preferred Certified Cloud Security Professional (CCSP) Preferred Certificate of Cloud Security Knowledge (CCSK) Preferred Global Information Assurance Certification (GIAC) Preferred Physical DemandsStanding Occasionally Walking Occasionally Sitting Constantly Lifting Rarely 20 lbs Carrying Rarely 20 lbs Pushing Rarely 20 lbs Pulling Rarely 20 lbs Climbing Rarely 20 lbs Balancing Rarely Stooping Rarely Kneeling Rarely Crouching Rarely Crawling Rarely Reaching Rarely Handling Occasionally Grasping Occasionally Feeling Rarely Talking Constantly Hearing Constantly Repetitive Motions Frequently Eye/Hand/Foot Coordination Frequently Primary Location: United States-Ohio-Shaker_HeightsWork Locations: 3605 Warrensville Center Road 3605 Warrensville Center Road Shaker Heights 44122Job: Information TechnologyOrganization: UHHS_Information_TechnologySchedule: Full-time Employee Status: Regular - ShiftDaysJob Type: StandardJob Level: ProfessionalTravel: NoRemote Work: YesJob Posting: Nov 14, 2025, 1:58:20 PM