Information Security Analyst Jobs At The Trade Desk

LinkedIn is the world's largest professional network, built to create economic opportunity for every member of the global workforce. Our products help people make powerful connections, discover exciting opportunities, build necessary skills, and gain valuable insights every day. We're also committed to providing transformational opportunities for our own employees by investing in their growth. We aspire to create a culture that's built on trust, care, inclusion, and fun - where everyone can succeed. Join us to transform the way the world works.ted to diversity in its workforce and is proud to be an equal opportunity employer. We are looking to hire a Senior Information Security Engineer for the Identity and Access Management team who will own the strategy and delivery of our enterprise wide SSO Integrations. This role will collaborate with teams throughout the organization to guide our business and users to a productive and secure user experience. Our business solutions are constantly evolving. This role also involves engineering and operational duties in operating and managing SSO integrations, Active Directory, Azure AD and requires an innovative stance on the future of authentication and identity management at LinkedIn. At LinkedIn, our approach to flexible work is centered on trust and optimized for culture, connection, clarity, and the evolving needs of our business. The work location of this role is hybrid, meaning it will be performed both from home and from a LinkedIn office on select days, as determined by the business needs of the team. This role will be based in LinkedIn's Mountain View campus. Responsibilities: • Production support of IAM/SSO/RBAC infrastructure • Manage a large active directory environment • Manage and enable SSO integrations with Okta/ADFS/Azure. Working with Vendors and internal businesses to onboard cloud or internal applications • Device trust management for MAC, Windows, IOS and Android devices • Identify and drive business critical metrics with forward looking initiatives • Formulate and streamline processes to help uplift the team • Develop and update automation tools and scripts using preferred language • Proactively identifies gaps, plans, implements, updates, maintains, manages, monitors, and supports enterprise IAM/SSO Tools • Develop and execute high profile project plans in coordination with the project management team and peers • Resolve complex technical issues in a Tier 3 capacity. Participate in an on-call rotation supporting our core services • Educate and advocate for IAM/SSO security improvements throughout the LinkedIn ecosystem Basic Qualifications: • BA/BS Degree in Computer Science or related technical discipline, or related practical experience • 5+ years in IT, 3+ years of experience related to authentication (SAML/SSO) and identity management technologies in enterprise environments • Hands on working experience with AD ecosystem, including MS PKI infrastructure • Experience with technologies and protocols to support identity federation and robust access control models (e.g., SAML 2.0, WS-Federation, OAuth, OpenID Connect) • Knowledge of typical enterprise identity life cycle management processes and standards • Experience enabling integrations for Okta SSO • Experience with directory services such as Active Directory, LDAP, VDS • Experience in change management, participate in peer reviews • Experience Multi-Factor Authentication (MFA) solutions and technologies • Knowledge of End-to-End user lifecycle management from provisioning to deprovisioning using custom tools or enterprise solutions Preferred Qualifications: • General knowledge of cloud architectures as well as complex enterprise on-premises IT landscapes • Experience enabling integrations for AzureAD • Experience in scripting, specifically with either PowerShell, Python or Java • Experience with authorization/access control models. • Experience developing, deploying, and managing identity management solutions • Experience with configuring SSO using variety of federation solutions such as Okta, Ping, SiteMinder etc • Experience with Identity security concepts such as zero trust, PAM, JIT access etc. • Experience with designing/building scalable identity solutions • Expert in one more scripting or developer language such as Python or GoLang • Ability to identify, define, and document operational duties and processes for junior team members • Azure AD and Azure SSO experience Suggested Skills: • Python • Cloud architecture • Authentication & Identity management LinkedIn is committed to fair and equitable compensation practices. The pay range for this role is $121,000-198,000. Actual compensation packages are based on several factors that are unique to each candidate, including but not limited to skill set, depth of experience, certifications, and specific work location. This may be different in other locations due to differences in the cost of labor. The total compensation package for this position may also include annual performance bonus, stock, benefits and/or other applicable incentive compensation plans. For more information, visit ************************************** Equal Opportunity Statement LinkedIn is committed to diversity in its workforce and is proud to be an equal opportunity employer. LinkedIn considers qualified applicants without regard to race, color, religion, creed, gender, national origin, age, disability, veteran status, marital status, pregnancy, sex, gender expression or identity, sexual orientation, citizenship, or any other legally protected class. LinkedIn is an Affirmative Action and Equal Opportunity Employer as described in our equal opportunity statement here: *********************************************************************************************************** Please reference ******************************************************************************************** and ************************************************************************************************ for more information. LinkedIn is committed to offering an inclusive and accessible experience for all job seekers, including individuals with disabilities. Our goal is to foster an inclusive and accessible workplace where everyone has the opportunity to be successful. If you need a reasonable accommodation to search for a job opening, apply for a position, or participate in the interview process, connect with us at accommodations@linkedin.com and describe the specific accommodation requested for a disability-related limitation. Reasonable accommodations are modifications or adjustments to the application or hiring process that would enable you to fully participate in that process. Examples of reasonable accommodations include but are not limited to: -Documents in alternate formats or read aloud to you -Having interviews in an accessible location -Being accompanied by a service dog -Having a sign language interpreter present for the interview A request for an accommodation will be responded to within three business days. However, non-disability related requests, such as following up on an application, will not receive a response. LinkedIn will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by LinkedIn, or (c) consistent with LinkedIn's legal duty to furnish information. Pay Transparency Policy Statement As a federal contractor, LinkedIn follows the Pay Transparency and non-discrimination provisions described at this link: ******************************** Global Data Privacy Notice for Job Candidates This document provides transparency around the way in which LinkedIn handles personal data of employees and job applicants: ***************************************

**KDS** **Job ID 2425317** _KGS is seeking qualified candidates for our open positions, but we will only extend an offer of employment after a candidate applies through the link in our job posting. If you receive a job offer via email only and have not been interviewed by the KGS hiring manager, feel free to contact_ _***************************_ _to verify its validity._ **Koniag Data Solutions, LLC,** a Koniag Government Services company, is seeking a SME Information Security Analyst to support **KDS** and our government customer. **This is a Remote opportunity.** We offer competitive compensation and an extraordinary benefits package including health, dental and vision insurance, 401K with company matching, flexible spending accounts, paid holidays, three weeks paid time off, and more. Koniag Data Solutions, LLC (KDS), a Koniag Government Services company, is seeking an experienced highly qualified professional SME Information Security Analyst to support KDS, and our Department of Housing and Urban Development (HUD)/Office of the Chief Information Officer (OCIO)/Infrastructure and Operations Office (IOO) Government customer at 451 7th Street S.W., Washington, DC 20410. This opportunity offers the chance to work with some of the best and brightest minds in the HUD and US Industries. The SME Information Security Analyst is an integral component of a team supporting our HUD client's IT Modernization effort to provide a single Operations & Maintenance (O&M) consolidated support services of (1) data storage facilities, (2) hardware/software, and (3) cloud services providers. This position is in a team environment and involves collaboration with and supporting other team members, contractors, and HUD internal and external users. This Subject Matter Expert (SME): Provides technical/management leadership on major tasks or technology assignments. Establishes goals and plans that meet project objectives. Has domain and expert technical knowledge. Directs and controls activities for a client, having overall responsibility for financial management, methods, and staffing to ensure that technical requirements are met. Interactions involve client negotiations and interfacing with senior management. Decision-making and domain knowledge may have a critical impact on overall project implementation. May supervise others. The ideal candidate is a team player with proven experience as a SME Information Security Analyst. Below are the qualifications for this role. **Essential Functions, Responsibilities & Duties may include, and are not limited to:** - Possesses and applies a comprehensive knowledge across key tasks and high impact assignments. Plans and leads major technology assignments. Evaluates performance results and recommends major changes affecting short-term project growth and success. Functions as a technical expert across multiple project assignments and IOO functions mainly and not limited to: - DCIO IOO Configuration Management - IOO Risk Management - System Administration and Virtualization Services - Database Services - Network and LAN Services - Shared Service and Help Desk Services - Disaster Recovery/ Business Continuity (DR/BC) Services - Training and Tech Manual Services - Reviewing operating systems and software frequently and making any adjustments necessary to keep them running well. - Collaborating with software developers in the creation of programs for their organization. - Test and debug software applications to identify and fix any technical issues or bugs, ensuring highest quality and reliability. - Collaborate with a multidisciplinary team, to ensure seamless integration of programming components. - Stay up to date with emerging technologies and best practices in the Computer User Support arena. - Collaborate with dev team to develop and deliver solutions timely to the business. - Recommend solutions to improve new and existing functions and features. - Find creative solutions to complex problems. - Ensure a positive and professional Federal client service experience. - Responsibilities could include supporting all aspects of the software development life cycle including requirements analysis, design, development, testing, integration, and deployment. - Perform other O&M duties as assigned, including overlapping subject areas as applicable: - DCIO IOO IT Policies and Processes Support - DCIO IOO Configuration Management - Enterprise Architecture Services - IOO Risk Management - Enterprise Application Services - System Administration and Virtualization Services - Cloud Hosting Services - Database Services - Storage Services - Active Directory Services - Cabling Requirements - Hardware Support Services - Mainframe Services - Software Factory - Release Deployment Services and DevSecOps Pipeline - Virtual Desktop Infrastructure (VDI)/Desktop as a Service (DaaS) - Cloud Email, Collaboration Sites/Shared Workspace, Office Suites, and Cloud Services - Cloud and On-Premises Gold Disk O&M Services - Webcasting O&M Services - eDiscovery and Records Management Services - Shipping Support - Media Sanitization Support - Migration Services - Mobile Device Management Services (MDM) - Domain Name Services (DNS) and Internet Protocol (IP) Management Services - VPN Client Services - Network and LAN Services - Shared Service and Help Desk Services - Cyber and Operational Security (OPSEC) Services - Disaster Recovery/ Business Continuity (DR/BC) Services - Software License Management (SLM) Support **Work Experience, Knowledge, Skills & Abilities:** - 10+ years of demonstrated experience - DCIO IOO Configuration Management - IOO Risk Management - System Administration and Virtualization Services - Database Services - Network and LAN Services - Shared Service and Help Desk Services - Disaster Recovery/ Business Continuity (DR/BC) Services - Training and Tech Manual Services - 10+ years demonstrated experience in Sr. Enterprise Security Architect /Sr. Information Security Analyst / Sr. Network Engineer/ Architect roles and responsibilities. - Very strong experience in designing, developing and supporting tailored network, communications, endpoints & related IT solutions involving Cisco routing, switching, security & voice systems. - Excellent problem solving and analysis skills, self-motivated, and able to work and communicate in a team environment. - 10+ years knowledge and experience of Agile methodology and frameworks. - 10+ years of demonstrated experience and knowledge in/supporting software development lifecycles. - 10+ years of demonstrated experience in preparation, reviewing, and updating System Security Plan (SSP), Security Assessment Plan (SAP), Plan of Action & Milestone (POA&M), and Security Assessment Report (SAR). - Excellent written and verbal communication skills. - Experience with Federal consulting. **Education:** - Bachelor's degree in computer and information technology or a related field, such as engineering or math. - Master's degree is a bonus - Knowledge and experience with HUD OCIO IOO are a bonus. **CERTIFICATIONS such as the below are a bonus:** - PMP (Project Management Professional) - ASAE (Azure Solution Architect Expert) - CCNP Security (Cisco Certified Network Professional Security) - CISSP (Certified Information Systems Security Professional) - CompTIA Linux- CompTIA Security- CCNP (Cisco Certified Network Professional) - CSSDS (Cisco Security Solutions and Design Specialist) - CCDA (Cisco Certified Design Associate) - CCNA (Cisco Certified Network Associate) - MCSE (Microsoft Certified Systems Engineer) - CUA (Certified Unicenter Administrator) **Our Equal Employment Opportunity Policy** The company is an equal opportunity employer. The company shall not discriminate against any employee or applicant because of race, color, religion, creed, sex, sexual orientation, gender, or gender identity (except where gender is a bona fide occupational qualification), national origin, age, disability, military/veteran status, marital status, genetic information, or any other factor protected by law. We are committed to equal employment opportunity in all decisions related to employment, promotion, wages, benefits and all other privileges, terms, and conditions of employment. The company is dedicated to seeking all qualified applicants. If you require accommodation to navigate or to apply for a position on our website, please contact Heaven Wood via e-mail at accommodations@koniag-gs.com or by calling ************ to request accommodation. _Koniag Government Services (KGS) is an Alaska Native Owned corporation supporting the values and traditions of our native communities through an agile employee and corporate culture that delivers Enterprise Solutions, Professional Services and Operational Management to Federal Government Agencies. As a wholly owned subsidiary of Koniag, we apply our proven commercial solutions to a deep knowledge of Defense and Civilian missions to provide forward leaning technical, professional, and operational solutions. KGS enables successful mission outcomes for our customers through solution-oriented business partnerships and a commitment to exceptional service delivery. We ensure long-term success with a continuous improvement approach while balancing the collective interests of our customers, employees, and native communities. For more information, please visit_ _******************* **_Equal Opportunity Employer/Veterans/Disabled. Shareholder Preference in accordance with Public Law 88-352_**

See yourself at Twilio Join the team as our next Security Customer Trust Analyst, Information Security that sits within our Enterprise Information Security Organization. Who we are At Twilio, we're shaping the future of communications, all from the comfort of our homes. We deliver innovative solutions to hundreds of thousands of businesses and empower millions of developers worldwide to craft personalized customer experiences. Our dedication to remote-first work, and strong culture of connection and global inclusion means that no matter your location, you're part of a vibrant, diverse team making a global impact each day. As we continue to revolutionize how the world interacts, we're acquiring new skills and experiences that make work feel truly rewarding. Your career at Twilio is in your hands. About the job This position is needed to support security awareness and education for Twilio sales teams and customers. Security Customer Enablement is responsible for maintenance of information security for our largest customers. This role requires an understanding of cybersecurity, compliance, technical knowledge, and strong interpersonal skills. You will partner with Product, Legal and InfoSec teams to be the face of Security/Customer Trust. The Security Analyst role will be accountable for answering questionnaires with integrity, reviewing legal documentation, and at times may be representing Twilio Security during technical audits. Responsibilities Independently manage and respond to security questionnaires, customer calls and more from Twilio's largest and most regulated customers. This includes the review, understanding, and alignment of questionnaire requirements with company policies, practices, and controls Collaborate closely with internal subject matter experts to gather and deliver accurate responses to Third-Party requests, ensuring alignment with industry standards and regulatory obligations Identify and communicate potential security risks or gaps within questionnaire responses in collaboration with relevant teams Maintain an up-to-date repository of questionnaire responses, reflecting the latest and most relevant information. Contribute to the enhancement of security questionnaire response templates and processes, aiding in their development and refinement. Thrive in an autonomous, fast-paced, collaborative environment, consistently delivering high-quality outputs within set deadlines. Cultivate and sustain productive relationships with internal stakeholders, facilitating the collection of accurate security details for Twilio's diverse range of products and services. Propose innovative ideas to enhance team and organizational processes and procedures. Develop proficiency in comprehending legal language. Collaborate closely with the Audit Lead to orchestrate external Twilio Security audits, engaging internal stakeholders effectively. Collaborate on educational security content, both internal and external, encompassing whitepapers, presentations, training materials, website content, and more Qualifications Not all applicants will have skills that match a job description exactly. Twilio values diverse experiences in other industries, and we encourage everyone who meets the required qualifications to apply. While having “desired” qualifications make for a strong candidate, we encourage applicants with alternative experiences to also apply. If your career is just starting or hasn't followed a traditional path, don't let that stop you from considering Twilio. We are always looking for people who will bring something new to the table! Required: 2+ years experience in customer facing technical roles engaging customers on various topics such as security, regulatory requirements, and risk management 2+ years experience working with security concepts and technology, including encryption, networking, databases, telephony, email, LDAP, middleware, and applications ideally in a cloud environment, cloud and or API knowledge. Understanding of frameworks (e.g., SOC, NIST) is a plus Comfort in conveying technical concepts both verbally and in written form, catering to a broad audience Showcase meticulous attention to detail, with expertise in both grammatical rules and formatting. Possess excellent time management, organizational, and multitasking skills Demonstrate the ability to collaborate effectively with personnel at all levels within an organization Desired: Experience in business writing and/or technical writing Previous involvement in overseeing security questionnaires or analogous compliance-related tasks Knowledgeable of security or compliance audits and/or assessments Experience reviewing and redlining contracts and legal documents from an InfoSec perspective You have or would be willing to obtain certification(s) such as: Security+, SSCP, CISSP, CISA, GSEC, CCSP, CCSK, PMP, CRISC, CFCP, or similar Experience with developing technical standards, and operational guidelines Experience working with common security frameworks and regulatory requirements (e.g., FISC, CCPA, GDPR, PCI, SOC, ISO/IEC 2700X, COBIT, etc.) Location This role will be remote, and based in Ireland or UK Travel We prioritize connection and opportunities to build relationships with our customers and each other. For this role, you may be required to travel occasionally to participate in project or team in-person meetings. What We Offer There are many benefits to working at Twilio, including, in addition to competitive pay, things like generous time-off, ample parental and wellness leave, healthcare, a retirement savings program, and much more. Offerings vary by location. Twilio thinks big. Do you? We like to solve problems, take initiative, pitch in when needed, and are always up for trying new things. That's why we seek out colleagues who embody our values - something we call Twilio Magic. Additionally, we empower employees to build positive change in their communities by supporting their volunteering and donation efforts. So, if you're ready to unleash your full potential, do your best work, and be the best version of yourself, apply now! If this role isn't what you're looking for, please consider other open positions. Twilio is proud to be an equal opportunity employer. Twilio is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Qualified Applicants with arrest or conviction records will be considered for Employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. Additionally, Twilio participates in the E-Verify program in certain locations, as required by law. Twilio is committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, please contact us at accommodation@twilio.com.

See yourself at Twilio Join the team as Twilio's next Senior Analyst, Security Compliance Who we are At Twilio, we're shaping the future of communications, all from the comfort of our homes. We deliver innovative solutions to hundreds of thousands of businesses and empower millions of developers worldwide to craft personalized customer experiences. Our dedication to remote-first work, and strong culture of connection and global inclusion means that no matter your location, you're part of a vibrant, diverse team making a global impact each day. As we continue to revolutionize how the world interacts, we're acquiring new skills and experiences that make work feel truly rewarding. Your career at Twilio is in your hands. About the job The Security Compliance Senior Analyst will be a key member of the Security Compliance program at Twilio, focused on maturing our Security Compliance posture by preparing internal stakeholders for certification activities. The team works closely with our Product and Engineering teams to ensure products are compliant with regulations and implement industry best practice security measures (e.g. ISO 27001, SOC2 Type 2, PCI DSS). This role would participate in advisory and gap assessment activities that drive down Security Compliance risk for the organization, demonstrate strong project planning and management skills, and be able to effectively represent Compliance programs with cross-functional stakeholders and leadership. Ideally, they would also have experience with creating metrics and executive dashboards to convey the risk burndown and value-add Compliance activities are creating for the organization. Responsibilities In this role, you'll: Manage multiple Security Compliance projects from inception to completion, including collaborating and tracking milestones, documenting key project risks, updating metrics and OKRs, and using problem-solving skills to clear blockers. Strong demonstrate experience working with multiple Security Compliance frameworks (e.g. ISO 27001, SOC2 Type 2, NIST 800v5, PCI DSS) and ability to drive strategic improvements in controls, process design, continuous monitoring, and policy / procedure documentation across a diverse set of cross-functional stakeholders across the company (Sales, Engineering, Product, Legal, Finance, IT, HR, etc). Advise on Security and Compliance control designs and architecture patterns. Work with the technical security teams and their business counterparts to implement controls, metrics, and automation to improve the security posture of the organization. Evaluate technology solutions and identify security gaps against security baselines and compliance requirements, partnering with cross-functional teams to clarify risk in the business context, recommend remediation activities and timelines, and escalate issues as needed for visibility. Improve internal processes to promote consistent and fact-based conclusions. Leverage and improve existing project management tools to provide metrics and reporting standardization. Qualifications Not all applicants will have skills that match a job description exactly. Twilio values diverse experiences in other industries, and we encourage everyone who meets the required qualifications to apply. While having “desired” qualifications make for a strong candidate, we encourage applicants with alternative experiences to also apply. If your career is just starting or hasn't followed a traditional path, don't let that stop you from considering Twilio. We are always looking for people who will bring something new to the table! Required: 5+ years of Security Compliance and / or Risk Management experience, working with security-centric risk management or compliance frameworks such as ISO/IEC 27001, PCI DSS, SOC2, HIPAA, FedRAMP, NIST CSF, or NIST 800-53. 2+ years of project management experience in security or another technical field, including defining overall project scope, creating milestones, tracking project performance with metrics, and communicating project status to management, including escalation of risks. 2+ years of working with technical security and Engineering / IT to implement technical control solutions (preferably within code deployment pipelines and public cloud solutions). Ability to interpret control requirements and relay those to different stakeholder groups with strong technical knowledge. Ability to work in a dynamic, fast-paced environment that requires constant prioritization. Demonstrate strong verbal and written communication skills, and ability to translate complex technical or security requirements or risks into business language that can be understood by various audiences. Ability to think critically and solve problems, create win-win solutions. Experiencing using or creating metrics to effectively tell a compliance or security “story”, including the use of various formats and visuals. Desired: Experience and familiarity with cloud security techniques and working with public cloud solutions including but not limited to AWS and GCP. Experience and familiarity with securing code deployment pipelines and Infrastructure as Code (IaC). CISA, CISM, GIAC, CISSP or other Information Security related certification is highly preferred. Location This role will be remote and based in Ireland. Twilio is proud to be an equal opportunity employer. Twilio is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Qualified Applicants with arrest or conviction records will be considered for Employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. Additionally, Twilio participates in the E-Verify program in certain locations, as required by law. Twilio is committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, please contact us at accommodation@twilio.com.

Ready to be pushed beyond what you think you're capable of? At Coinbase, our mission is to increase economic freedom in the world. It's a massive, ambitious opportunity that demands the best of us, every day, as we build the emerging onchain platform - and with it, the future global financial system. To achieve our mission, we're seeking a very specific candidate. We want someone who is passionate about our mission and who believes in the power of crypto and blockchain technology to update the financial system. We want someone who is eager to leave their mark on the world, who relishes the pressure and privilege of working with high caliber colleagues, and who actively seeks feedback to keep leveling up. We want someone who will run towards, not away from, solving the company's hardest problems. Our work culture is intense and isn't for everyone. But if you want to build the future alongside others who excel in their disciplines and expect the same from you, there's no better place to be. Security Operations Team Security is a primary competency at Coinbase, and the Security Operations team keeps a watchful eye over every aspect of it. Every day, we go to battle against some of the most sophisticated attackers in the world to protect billions of dollars worth of digital assets and ensure that our customers and employees can enjoy a safe, trusted experience. As Coinbase scales globally, our team is scaling along with it, using a blend of tooling, automation, and strategic team growth to ensure that we're well-equipped to protect the next billion users of crypto. What you'll be doing: The Security Operations group is a multi-functional organization that includes our CSIRT, Trust & Safety, Insider Threat, and Threat Intelligence. While no two days will end up looking the same, generally-speaking you'll be responsible for the following things: You'll serve as the first line of response when a security alert needs to be triaged, and lead the incident response/ management as needed You'll also refine our detection rules to improve our signal/noise ratio, because no one wants to be a button-pusher or SOC monkey If something happens twice, you'll write a runbook for it. If it happens three times, you'll figure out a way to automate that runbook You'll partner with Trust & Safety and Threat Intelligence on some of our attacker investigations to build TTP profiles You'll have a clear communication strategy and be able to assist with Coinbase emerging Web3 launches around the lines of Incident Response and Threat Detection You'll be part of a light on-call rotation with counterparts in multiple time zones You'll lead a culture of excellence by mentoring peers and share knowledge You'll collaborate with cross functional teams like engineering, product development, compliance to ensure timely Incident Response What we look for in you: Some security teams have strict requirements about certifications, degrees, years of experience, and things like that. Not us! We're more interested in the unique perspectives and expertise you'll bring to the team, rather than the acronyms on your resume. However, you'll be much more likely to be successful in this role if these bullet points seem like a good description of you: You've been doing practical security things (incident response, phishkit/malware analysis, investigating account compromises, etc) for a while now, probably in the realm of 8+ years You have got a knack for identifying threats and measuring coverage / visibility across a vast amount of log sources - Multicloud, SaaS, Container Environment, MnAs log sources You consider “Automation as a Force Multiplier”, you prefer spending time in building automation so you don't have to do manual work tasks You don't just reflexively open up a Jupyter Notebook during an investigation, you've actually got favorite Jupyter Notebooks you've built up over the years, because you like backing up your conclusions with data, and you like automating things You are good in understanding and analyzing multitude of artifacts across network and host level You frequently get praise from your peers and coworkers about your communication skills, both written and verbal Your high degree of empathy means that your coworkers trust you to help solve their security problems, because you never come across as judgmental or condescending Pressure doesn't get to you, even in high intensity situations or environments Nice to haves: You would bring a diverse perspective to the team: for example, maybe you took an unconventional route to get into your current security career You've got a passing familiarity with blockchains and cryptocurrency, or at least a good story about how you thought about investing in Bitcoin in 2014 but decided not to You're comfortable doing some basic scripting and writing alert rules in Python and running queries in SQL/Snowflake You've good understanding of Cloud and SaaS technologies You are good in analyzing data at scale and perform investigations to identify adversary behavior You've got some experience with OSINT and threat hunting You‘ve got some experience doing incident response in the cloud You'd prefer if everyone just settled on using the ATT&CK framework already You have got experience in analyzing attacker methodologies and build detections that will enhance the existing security posture #LI-Remote Job #: P60088 Pay Transparency Notice: Depending on your work location, the target annual salary for this position can range as detailed below. Full time offers from Coinbase also include target bonus + target equity + benefits (including medical, dental, vision and 401(k)).Pay Range: $180,370—$212,200 USDCommitment to Equal Opportunity Coinbase is committed to diversity in its workforce and is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, gender, national origin, age, disability, veteran status, sex, gender expression or identity, sexual orientation or any other basis protected by applicable law. Coinbase will also consider for employment qualified applicants with criminal histories in a manner consistent with applicable federal, state and local law. For US applicants, you may view the Know Your Rights notice here. Additionally, Coinbase participates in the E-Verify program in certain locations, as required by law. Coinbase is also committed to providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation because of a disability for any part of the employment process, please contact us at accommodations[at]coinbase.com to let us know the nature of your request and your contact information. For quick access to screen reading technology compatible with this site click here to download a free compatible screen reader (free step by step tutorial can be found here). Global Data Privacy Notice for Job Candidates and Applicants Depending on your location, the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA) may regulate the way we manage the data of job applicants. Our full notice outlining how data will be processed as part of the application procedure for applicable locations is available here. By submitting your application, you are agreeing to our use and processing of your data as required. For US applicants only, by submitting your application you are agreeing to arbitration of disputes as outlined here.

Client Name: City of New York Contract Length (in weeks): 52 Hybrid: 3 days in office/2 days remote. SCOPE OF SERVICES The forensics Analyst will investigate network intrusions and other cyber incidents to determine cause, extent and consequences of the breach. TASKS: Investigate network intrusions and other cybersecurity incidents to determine the cause and extent of the breach. Includes ability to perform host-based and network-based forensic analysis. Research and develop new techniques, and procedures to continually improve the digital forensics process. Produce high quality written work product presenting complex technical issues clearly and concisely. Managing and maintaining the analysis labs and forensics tools leveraged for investigations. Ensuring data is collected and preserved within industry standard best practices and in alignment evidence integrity requirements. Assisting the Cyber Emergency Response Team during critical incidents. RequirementsMANDATORY SKILLS/EXPERIENCE Note: Candidates who do not have the mandatory skills will not be considered Minimum 4 years of experience in Threat Management/Forensics Investigations/Incident Response environment Proficient in performing digital forensic investigations on a variety of platforms and operating systems with a deep understanding of digital forensics processes and tools. DESIRABLE SKILLS/EXPERIENCE: Experience with a wide range of forensic tools (TZWorks, X-Ways, SIFT, AXIOM, Volatility, etc.) Experience with memory analysis tools (i.e. Volatility) Experience with Linux and open source tools Experience investigating intrusions on Windows and Linux/Unix operating systems Knowledge of gathering, accessing, and assessing evidence from computer systems and electronic devices Knowledge of virtual environments Knowledge of forensic imaging techniques Knowledge of Microsoft Windows operating system and Windows artifacts Knowledge of Linux/UNIX operating systems and artifacts Knowledge of MAC OS operating system and forensics artifacts Knowledge of file systems Strong analytical skills

LinkedIn is the world's largest professional network, built to create economic opportunity for every member of the global workforce. Our products help people make powerful connections, discover exciting opportunities, build necessary skills, and gain valuable insights every day. We're also committed to providing transformational opportunities for our own employees by investing in their growth. We aspire to create a culture that's built on trust, care, inclusion, and fun - where everyone can succeed. Join us to transform the way the world works.ted to diversity in its workforce and is proud to be an equal opportunity employer. We are looking to hire a Senior Information Security Engineer for the Identity and Access Management team who will own the strategy and delivery of our enterprise wide SSO Integrations. This role will collaborate with teams throughout the organization to guide our business and users to a productive and secure user experience. Our business solutions are constantly evolving. This role also involves engineering and operational duties in operating and managing SSO integrations, Active Directory, Azure AD and requires an innovative stance on the future of authentication and identity management at LinkedIn. At LinkedIn, our approach to flexible work is centered on trust and optimized for culture, connection, clarity, and the evolving needs of our business. The work location of this role is hybrid, meaning it will be performed both from home and from a LinkedIn office on select days, as determined by the business needs of the team. This role will be based in LinkedIn's Mountain View campus. Responsibilities: - Production support of IAM/SSO/RBAC infrastructure - Manage a large active directory environment - Manage and enable SSO integrations with Okta/ADFS/Azure. Working with Vendors and internal businesses to onboard cloud or internal applications - Device trust management for MAC, Windows, IOS and Android devices - Identify and drive business critical metrics with forward looking initiatives - Formulate and streamline processes to help uplift the team - Develop and update automation tools and scripts using preferred language - Proactively identifies gaps, plans, implements, updates, maintains, manages, monitors, and supports enterprise IAM/SSO Tools - Develop and execute high profile project plans in coordination with the project management team and peers - Resolve complex technical issues in a Tier 3 capacity. Participate in an on-call rotation supporting our core services - Educate and advocate for IAM/SSO security improvements throughout the LinkedIn ecosystem Basic Qualifications: - BA/BS Degree in Computer Science or related technical discipline, or related practical experience - 5+ years in IT, 3+ years of experience related to authentication (SAML/SSO) and identity management technologies in enterprise environments - Hands on working experience with AD ecosystem, including MS PKI infrastructure - Experience with technologies and protocols to support identity federation and robust access control models (e.g., SAML 2.0, WS-Federation, OAuth, OpenID Connect) - Knowledge of typical enterprise identity life cycle management processes and standards - Experience enabling integrations for Okta SSO - Experience with directory services such as Active Directory, LDAP, VDS - Experience in change management, participate in peer reviews - Experience Multi-Factor Authentication (MFA) solutions and technologies - Knowledge of End-to-End user lifecycle management from provisioning to deprovisioning using custom tools or enterprise solutions Preferred Qualifications: - General knowledge of cloud architectures as well as complex enterprise on-premises IT landscapes - Experience enabling integrations for AzureAD - Experience in scripting, specifically with either PowerShell, Python or Java - Experience with authorization/access control models. - Experience developing, deploying, and managing identity management solutions - Experience with configuring SSO using variety of federation solutions such as Okta, Ping, SiteMinder etc - Experience with Identity security concepts such as zero trust, PAM, JIT access etc. - Experience with designing/building scalable identity solutions - Expert in one more scripting or developer language such as Python or GoLang - Ability to identify, define, and document operational duties and processes for junior team members - Azure AD and Azure SSO experience Suggested Skills: - Python - Cloud architecture - Authentication & Identity management LinkedIn is committed to fair and equitable compensation practices. The pay range for this role is $121,000-198,000. Actual compensation packages are based on several factors that are unique to each candidate, including but not limited to skill set, depth of experience, certifications, and specific work location. This may be different in other locations due to differences in the cost of labor. The total compensation package for this position may also include annual performance bonus, stock, benefits and/or other applicable incentive compensation plans. For more information, visit ************************************** Equal Opportunity Statement LinkedIn is committed to diversity in its workforce and is proud to be an equal opportunity employer. LinkedIn considers qualified applicants without regard to race, color, religion, creed, gender, national origin, age, disability, veteran status, marital status, pregnancy, sex, gender expression or identity, sexual orientation, citizenship, or any other legally protected class. LinkedIn is an Affirmative Action and Equal Opportunity Employer as described in our equal opportunity statement here: ************************************************************************************************************ Please reference ********************************************************************************************** and ****************************************************************************************************** for more information. LinkedIn is committed to offering an inclusive and accessible experience for all job seekers, including individuals with disabilities. Our goal is to foster an inclusive and accessible workplace where everyone has the opportunity to be successful. If you need a reasonable accommodation to search for a job opening, apply for a position, or participate in the interview process, connect with us at accommodations@linkedin.com and describe the specific accommodation requested for a disability-related limitation. Reasonable accommodations are modifications or adjustments to the application or hiring process that would enable you to fully participate in that process. Examples of reasonable accommodations include but are not limited to: -Documents in alternate formats or read aloud to you -Having interviews in an accessible location -Being accompanied by a service dog -Having a sign language interpreter present for the interview A request for an accommodation will be responded to within three business days. However, non-disability related requests, such as following up on an application, will not receive a response. LinkedIn will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by LinkedIn, or (c) consistent with LinkedIn's legal duty to furnish information. Pay Transparency Policy Statement As a federal contractor, LinkedIn follows the Pay Transparency and non-discrimination provisions described at this link: ******************************** Global Data Privacy Notice for Job Candidates This document provides transparency around the way in which LinkedIn handles personal data of employees and job applicants: ***************************************

Our Mission At Palo Alto Networks everything starts and ends with our mission: Being the cybersecurity partner of choice, protecting our digital way of life. Our vision is a world where each day is safer and more secure than the one before. We are a company built on the foundation of challenging and disrupting the way things are done, and we're looking for innovators who are as committed to shaping the future of cybersecurity as we are. Who We Are We take our mission of protecting the digital way of life seriously. We are relentless in protecting our customers and we believe that the unique ideas of every member of our team contributes to our collective success. Our values were crowdsourced by employees and are brought to life through each of us everyday - from disruptive innovation and collaboration, to execution. From showing up for each other with integrity to creating an environment where we all feel included. As a member of our team, you will be shaping the future of cybersecurity. We work fast, value ongoing learning, and we respect each employee as a unique individual. Knowing we all have different needs, our development and personal wellbeing programs are designed to give you choice in how you are supported. This includes our FLEXBenefits wellbeing spending account with over 1,000 eligible items selected by employees, our mental and financial health resources, and our personalized learning opportunities - just to name a few! At Palo Alto Networks, we believe in the power of collaboration and value in-person interactions. This is why our employees generally work full time from our office with flexibility offered where needed. This setup fosters casual conversations, problem-solving, and trusted relationships. Our goal is to create an environment where we all win with precision. Job Description Your Career At Palo Alto Networks, we are on a mission to redefine what it means to be secure in today's digital-first world. As we continue our rapid global expansion, we are seeking a passionate and experienced Senior Security Awareness and Training Analyst to lead and evolve our cybersecurity awareness and training program. This role will focus on fostering a strong security culture across the organization by designing, implementing, and managing initiatives that educate employees on cybersecurity best practices, mitigate human-related security risks, and ensure compliance with regulatory requirements. Your Impact As a member of our cybersecurity team, you will collaborate with cross-functional teams to create engaging and impactful content, assess training effectiveness, and proactively address emerging threats by driving behavioral change throughout the organization. You will focus your skills in the following areas: Program Development and Management: * Develop engaging educational materials, including e-learning modules, videos, infographics, and newsletters, to promote cybersecurity best practices. * Lead phishing simulation campaigns and other hands-on activities to test and reinforce awareness. * Organize and support awareness events such as Cybersecurity Awareness Month activities, workshops, and webinars. * Foster a culture of security by creating engaging communication campaigns using posters, emails, and interactive resources. * Establish metrics to measure program effectiveness and identify opportunities for improvement. * Collaboration and Engagement: * Partner with other departments to integrate security training into onboarding and ongoing employee education programs. * Work closely with the other Infosec teams to identify emerging threats and tailor training content accordingly. * Act as a security culture ambassador, fostering positive engagement and support from all levels of the organization. Compliance and Risk Mitigation: * Ensure the program complies with legal, regulatory, and contractual requirements (e.g., GDPR, CMMC, HIPAA). * Analyze user behavior trends, assess vulnerabilities, and provide insights to address human-related risks. * Maintain up-to-date knowledge of cybersecurity threats and adapt training programs to address evolving risks. Metrics and Reporting: * Track and analyze training participation, phishing simulation results, and employee engagement metrics. * Prepare regular reports on the effectiveness of training programs and identify areas for improvement. * Regularly present program updates, metrics, and recommendations to senior leadership and key stakeholders. Qualifications Your Experience Education and Experience: * Bachelor's degree in Cybersecurity, Information Technology, Education, or a related field (or equivalent work experience). * 5+ years of experience in security awareness, training, or a related cybersecurity role. * Proven track record of managing and enhancing security awareness programs in a corporate or cybersecurity environment. Skills and Competencies: * Deep understanding of cybersecurity concepts, best practices, and risk mitigation strategies. * Strong ability to create engaging and impactful awareness and training content tailored to diverse audiences. * Experience with phishing simulation tools and e-learning platforms. * Excellent communication and presentation skills, with the ability to translate complex technical topics into simple, relatable messages. * Analytical mindset to assess training effectiveness and make data-driven decisions. * Knowledge of relevant frameworks and standards (e.g., NIST, CIS, ISO 27001, SOC 2). Preferred Qualifications: * Relevant certifications, such as CISSP, CISM, CISA, or certifications in training and development (e.g., Certified Security Awareness Practitioner - CSAP). * Experience in managing global training initiatives in a multicultural organization. Additional Information The Team Serious mission, fun culture; We're not your ordinary Information Security team. We're a diverse group of security professionals that embraces challenging the status quo in order to protect Palo Alto Networks and our customers. They say it's the people you work with that make you want to go to work and it's true here; we love our work. Think about it: Driving innovation on the Information Security team of the fastest-growing high-tech cybersecurity company is a once in a lifetime opportunity. You'll be joined by the brightest minds in technology, and our global teams are on the front line of defense against cyberattacks. We're joined by one mission - but driven by the impact of that mission and what it means to protect our way of life in the digital age. Join a dynamic and fast-paced team that feels excitement at the prospect of a challenge and feels a thrill every time we beat the bad guys. Compensation Disclosure The compensation offered for this position will depend on qualifications, experience, and work location. For candidates who receive an offer at the posted level, the starting base salary (for non-sales roles) or base salary + commission target (for sales/commissioned roles) is expected to be between $0 - $0/YR. The offered compensation may also include restricted stock units and a bonus. A description of our employee benefits may be found here. Our Commitment We're problem solvers that take risks and challenge cybersecurity's status quo. It's simple: we can't accomplish our mission without diverse teams innovating, together. We are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or accommodation due to a disability or special need, please contact us at accommodations@paloaltonetworks.com. Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics. All your information will be kept confidential according to EEO guidelines.

Full Benefits Medical Dental Vision 401K match 28 PTO Days including company holidays New Era Technology is a global technology solutions provider with 4,500+ employees and offices around the world. New Era offers Cloud, Managed, Professional, and Security services, and delivers Collaboration, Data Networking, Digital Transformation, and Physical & Life Safety solutions to more than 20,000 customers worldwide. We are looking for team members to contribute to and deliver our mission: To deliver and support technology solutions that securely connect people, places, and information. New Era Technology is a community of like-minded, like-hearted people who share the same vision and values. Work alongside the finest team of highly skilled and industry-certified professionals who are encouraged to drive change and think outside of the box. As a team member, you will receive competitive benefits, industry training, and certifications. New Era Technology empowers businesses to embrace the future workplace. As customers shift their perspectives on where and how work happens, we are there to meet them with flexible, resilient, and productive solutions. New Era Technology provides a team-oriented culture, a positive environment filled with incredible staff, and a genuine passion for providing the best service to our customers worldwide. We believe that investing in our employees is the key to professional growth, delivering exceptional experiences for our customers, and setting the standard for excellence in our field. We offer a growth-orientated, high-tech environment for employees. Along with our many benefits, you can expect a corporate culture that promotes personal and professional development. Our customer-focused teams are built on our core values: Community, Integrity, Agile, and Committed. Currently not accepting international applicants The Physical Security Systems Engineer - Hybrid is responsible for engineering, implementation, and ongoing support for some of the most critical and important customers in New England. This role requires regular collaboration with company solutions architects, field technicians, project managers, vendors, and most importantly, direct interaction with customers and other external project stakeholders. The ideal candidate will possess strong organizational and communications skills along with experience configuring and managing multiple security technologies. Solutions typically include a mix of access control, video surveillance, intrusion systems and networks. An ideal candidate will have experience with some of the systems within the New Era portfolio. The Security Engineer should have knowledge of legacy systems along with a willingness to learn new systems and become certified as appropriate. An ability to quickly learn new systems is more important than system-specific experience. Seasoned experience with Avigilon, Genetec, Exacq, Lenel/S2, Bosch Intrusion Detection, and other enterprise-grade security solutions is desirable. We are seeking an individual who is a self-starter, possesses a strong work ethic, and is committed to their own professional growth & development as well as the growth & future of New Era. As a Physical Security Systems Engineer you will: Perform integration of security systems, including video surveillance, access control; Plan and perform system and software upgrades for security applications; Security systems applications engineering and configuration; Perform provisioning, configuration, and testing of system components in the lab and on-site to validate design concepts; Perform pre-sales and post-project site surveys as needed; Stage and program security solutions prior to field installation; Review drawings (i.e. architectural, electrical, mechanical, and civil) in order to identify potential design and installation problems; Coordinate project schedule and project-related information with Project Managers; Track and maintain engineering phases of assigned projects with Project Managers; Conduct project-based end-user and system training. Provide field support of security systems including video, access control, etc.; Provide remote support of security systems including video, access control, etc.; Provide engineering escalation support for technicians; Collaborate with New Era Network Engineers to support LAN/WAN topologies; Serve as a Subject Matter Expert (SME) on security engineering needs; Analyze data collected during site surveys; Assist with generation of performance verification and field device testing plans; Assist in the development of drawing sheet requirements for a design package; Provide on-call support when required; Requirements: REQUIRED EDUCATION & EXPERIENCE: A Bachelor's degree and a minimum of three years experience, an Associate of Science degree with five years' experience, or a minimum of seven years' direct experience is required. PHYSICAL DEMANDS: Regularly spend long hours sitting and using office equipment and computers Regularly use hands and fingers to handle, control or feel objects Regularly see details of objects that are less than a few feet away Regularly speak clearly so listeners can understand Regularly understand the speech of another person Frequently work on projects that require deadlines Frequently bend to file and maintain files Lift and carry up to 25 pounds PM21 PIefb68cbcb5-

Our Mission At Palo Alto Networks everything starts and ends with our mission: Being the cybersecurity partner of choice, protecting our digital way of life. Our vision is a world where each day is safer and more secure than the one before. We are a company built on the foundation of challenging and disrupting the way things are done, and we're looking for innovators who are as committed to shaping the future of cybersecurity as we are. Who We Are We take our mission of protecting the digital way of life seriously. We are relentless in protecting our customers and we believe that the unique ideas of every member of our team contributes to our collective success. Our values were crowdsourced by employees and are brought to life through each of us everyday - from disruptive innovation and collaboration, to execution. From showing up for each other with integrity to creating an environment where we all feel included. As a member of our team, you will be shaping the future of cybersecurity. We work fast, value ongoing learning, and we respect each employee as a unique individual. Knowing we all have different needs, our development and personal wellbeing programs are designed to give you choice in how you are supported. This includes our FLEXBenefits wellbeing spending account with over 1,000 eligible items selected by employees, our mental and financial health resources, and our personalized learning opportunities - just to name a few! At Palo Alto Networks, we believe in the power of collaboration and value in-person interactions. This is why our employees generally work full time from our office with flexibility offered where needed. This setup fosters casual conversations, problem-solving, and trusted relationships. Our goal is to create an environment where we all win with precision. Job Description Your Career As the Technical Security Systems Engineer, you will engage in highly technical projects in support of the Global Places and Security team. These projects will include process automation through API integration, physical security systems design, data analysis and visualization, technology evaluations, and software development. Your Impact * Working with the Global Places and Security Program Manager to define technical implementation standards and best practices * Working with technology vendors to understand emerging products, obtain demo and pilot equipment, and stay informed on security technology trends * Building out our physical security technologies lab * Working with stakeholders to define and document their technology requirements * Developing test and evaluation methodologies for new physical security technologies and products * Conducting technical evaluations of new physical security technologies and products * Applying a methodical approach, rooted in solid engineering principles, to drive technology selection and implementation for the wider Global Safety and Security org * Generating scopes of work for new system installations * Conducting technical site surveys, where necessary * Generating physical security device layouts in accordance with our Physical Security Standards * Developing API integrations with various business platforms, including but not limited to, Feenics, Everbridge, Slack, Google Workspace, and ServiceNow Qualifications Your Experience * Bachelor's degree in Computer Science or Engineering or equivalent military experience required * 7+ years of experience in physical security technology or similar field - 9+ years of experience may be acceptable in lieu of a degree * Experience with Python, Javascript/Node.js, SQL, Mongo DB * Experience developing REST API integrations * Understanding of networking and communications protocols (TCP/IP, HTTP/S, WebSocket, etc.) * Understanding of serial communications protocols (RS232, RS422, RS485, etc.) * Experience with the Feenics Keep access control platform and Mercury security hardware components * Excellent verbal and written communication skills * Excellent analytical skills - ability to break down a complex problem into its primitives * Ability to manage multiple projects and work assignments and ensure that projects are tracking to deliverable dates * Comfortable with ambiguity and handling confidential information * Professional at all times with all levels of the company * Ability to accomplish projects with minimal supervision * Proficiency in Google Workspace tools (Gmail, Docs, Sheets, Slides, etc.) * Ability to analyze and compare data to make impactful recommendations * Experience with project management tools and principles (MS Project, Primavera P6, Asana, Smartsheet, Monday.com, etc.) Additional Information The Team Global Places and Security team's Mission is, "Act as a data-driven business enabler that ensures a safe and inclusive workplace, protecting our people, property, and brand". Collaborating with leadership and key stakeholders across America, EMEA, and APAC, this role will be focused on the financial management lifecycle and supplier landscape including annual budget planning, tracking & dashboard reporting actual monthly spend, Requests for Proposals - RFPs, org financial health & savings optimization reporting to leadership, etc. The successful candidate will guide stakeholders to operationalize changes in financial guidance, clearly manage expectations regarding financial processes, and provide analyses enabling the team to make best data driven decisions Our diverse team consists of passionate individuals who continually strive to deliver innovative solutions, drive efficiencies, and have fun! Compensation Disclosure The compensation offered for this position will depend on qualifications, experience, and work location. For candidates who receive an offer at the posted level, the starting base salary (for non-sales roles) or base salary + commission target (for sales/commissioned roles) is expected to be between $117000 - $189000/YR. The offered compensation may also include restricted stock units and a bonus. A description of our employee benefits may be found here. Our Commitment We're problem solvers that take risks and challenge cybersecurity's status quo. It's simple: we can't accomplish our mission without diverse teams innovating, together. We are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or accommodation due to a disability or special need, please contact us at accommodations@paloaltonetworks.com. Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics. All your information will be kept confidential according to EEO guidelines.

Company Details Berkley Technology Services (BTS) is the dynamic technology solution for W. R. Berkley Corporation, a Fortune 500 Commercial Lines Insurance Company. With key locations in Urbandale, IA and Wilmington, DE, BTS provides innovative and customer-focused IT solutions to the majority of WRBC's 60+ operating units across the globe. BTS's wide reach ensures that ideas and opinions are considered at every level of the organization to guarantee we find the best solutions possible. Driven by a commitment to collaboration, BTS acts as consultants to our customers and Operating Units by providing comprehensive solutions that not only address the challenge at hand, but proactively plan for the “ What's Next ” in our industry and beyond. With a culture centered on innovation and entrepreneurial spirit, BTS stands as a community of technology leaders with eyes toward the future -- leaders who genuinely care about growing not only their team members, but themselves, and take pride in their employees who shine. BTS offers endless ways to get involved and have the chance to grow your career into a wide range of roles you'd never known existed. Come join us as we push forward into the future of industry leading technological solutions. Berkley Technology Services: Right Team, Right Technology, Simple and Secure. Responsibilities The Information Security Architecture Manager at BTS is entrusted with a critical role in sculpting our Global Information Security Architecture framework. This leadership role demands a hands-on approach in the architectural design, strategic implementation, and management of security technologies and processes across various technology platforms. This role is integral in ensuring alignment with the overarching Global Information Security Strategy at WRBC. This role is designed for a visionary leader eager to drive the future of information security architecture at a global scale, ensuring the protection and resilience of Berkley Technology Services' technological assets and services. Spearhead the architectural design, deployment, and management of cutting-edge security solutions, including but not limited to SIEM, EDR, PAM, Data Access Governance, Identity Governance, Cloud Access Security Brokers, and WAFs. Architect and sustain the security infrastructure, ensuring seamless integration with existing technology ecosystems. Craft and execute architectural strategies for bolstering vulnerability management, security automation, and the safeguarding of infrastructure. Guide the formulation and continuous refinement of security policies and procedures, with a spotlight on architectural best practices. Cultivate an environment of innovation within the team, promoting continual learning and professional advancement. Function as a principal consultant and subject matter authority on information security architecture, offering pivotal guidance to internal teams and key stakeholders. Develop and maintain roadmaps for critical security infrastructure components, aligning them with the strategic goals of the organization. Collaborate with fellow Information Security leaders to forge a unified and robust Information Security Framework and Strategy. Perform regular technology evaluations, risk assessments, and devise appropriate remediation strategies. Lead and nurture a team of security architects and engineers in a fast-paced, global setting. Provide “Person in Charge” (PIC) coverage when on rotation. This added responsibility is factored into your base salary. Qualifications Demonstrated expertise in Information Security Architecture, with practical experience in the design and management of a broad spectrum of security technologies. Exceptional leadership and communication capabilities, adept at guiding global, interdisciplinary teams. Deep familiarity with contemporary cybersecurity trends and a commitment to remaining at the cutting edge of technology. Desirable certifications include CISSP, CISM, CEH, or other relevant qualifications. Proficiency in cloud security architecture and solutions, with experience in AWS, Azure, or Google Cloud platforms. Expertise in security frameworks such as NIST, ISO 27001, and CIS. Strong analytical and problem-solving skills, capable of making informed decisions in complex scenarios. Ability to foster relationships and collaborate effectively with various internal and external stakeholders. Commitment to ethical conduct and a deep understanding of regulatory compliance requirements relevant to the insurance and financial sectors. Bachelor's or Master's degree in Computer Science, Information Security, or a related discipline, or equivalent experience. Behavioral Core Competencies Flexibility Customer Service Oriented & Operational Effectiveness Personal Ownership Quick Decision Making Team Builder Transformational Leadership The Company is an equal employment opportunity employer.

At Klaviyo, we value the unique backgrounds, experiences and perspectives each Klaviyo (we call ourselves Klaviyos) brings to our workplace each and every day. We believe everyone deserves a fair shot at success and appreciate the experiences each person brings beyond the traditional job requirements. If you're a close but not exact match with the description, we hope you'll still consider applying. Want to learn more about life at Klaviyo? Visit careers.klaviyo.com to see how we empower creators to own their own destiny. Klaviyo is building a world where creators are empowered to own their destiny. In support of this, our Security Risk & Trust team is focused on empowering our fellow Klaviyos to securely deliver value to and foster trust with our customers. We do this by building and leading highly efficient and effective security governance, risk management, compliance, and trust programs. We're seeking a highly motivated and collaborative Senior Security Risk Analyst who will help us accelerate our evolution in these key programs. Partnering closely with our Engineering, IT, Security, Leadership, and other teams, you'll build tools and processes that foster a culture of disciplined risk decision making, informed by an evidence-based understanding of our assets, weaknesses, threats, and safeguards. You will help evolve our risk management practices to be transparent and centered around quantitative risk models. With a knack for communicating nuanced security topics to technical and non-technical audiences, you'll help grow security consciousness across all of Klaviyo to the betterment of our customers. What you'll be doing * Enhance existing risk management tools and processes to create a data driven, seamless, and excellent user experience for risk / asset owners * Consult with partner teams to proactively identify potential risks and co-create controls and mitigation plans with them * Streamline and automate third-party risk assessments, speeding up time-to-completion and enabling continuous re-assessments at scale * Mentor junior team members to help them reach their full potential and achieve their development goals * Contribute to Risk & Trust operations, such as performing third-party risk assessments, user access reviews, facilitating internal and external audits (SOC 2 Type II, ISO 27001, SOX ITGCs, etc.), continuously monitoring controls, responding to customer security questionnaires, fulfilling employees' security service requests, etc. * Then build and implement tooling that automates repetitive toil to free up our team's time We'd love to hear from you if you have: * Experience designing, building, or implementing security controls, especially in AWS * Experience doing security risk assessments, architecture reviews, or threat modeling * Knowledge of security best practices for SaaS, IaaS, IAM, networks, or containers * Excellent ability to plan, prioritize, and execute work cross functionally and on time * Proficiency discussing complex, nuanced topics with technical & non-technical audiences alike * Strong alignment with Klaviyo's core values Bonus points if you have any of the following: * Experience with data query languages, writing code, or integrating with web APIs * Experience implementing FAIR or cyber risk quantification (CRQ) processes or tools * Experience with business intelligence or data analytics platforms (Tableau, Domo, etc.) Massachusetts Applicants: It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability. The pay range for this role is listed below. Sales roles are also eligible for variable compensation and hourly non-exempt roles are eligible for overtime in accordance with applicable law. This role is eligible for benefits, including: medical, dental and vision coverage, health savings accounts, flexible spending accounts, 401(k), flexible paid time off and company-paid holidays and a culture of learning that includes a learning allowance and access to a professional coaching service for all employees. Base Pay Range For US Locations: $120,000-$180,000 USD Get to Know Klaviyo We're Klaviyo (pronounced clay-vee-oh). We empower creators to own their destiny by making first-party data accessible and actionable like never before. We see limitless potential for the technology we're developing to nurture personalized experiences in ecommerce and beyond. To reach our goals, we need our own crew of remarkable creators-ambitious and collaborative teammates who stay focused on our north star: delighting our customers. If you're ready to do the best work of your career, where you'll be welcomed as your whole self from day one and supported with generous benefits, we hope you'll join us. Klaviyo is committed to a policy of equal opportunity and non-discrimination. We do not discriminate on the basis of race, ethnicity, citizenship, national origin, color, religion or religious creed, age, sex (including pregnancy), gender identity, sexual orientation, physical or mental disability, veteran or active military status, marital status, criminal record, genetics, retaliation, sexual harassment or any other characteristic protected by applicable law. IMPORTANT NOTICE: Our company takes the security and privacy of job applicants very seriously. We will never ask for payment, bank details, or personal financial information as part of the application process. All our legitimate job postings can be found on our official career site. Please be cautious of job offers that come from non-company email addresses (@klaviyo.com), instant messaging platforms, or unsolicited calls. By clicking "Submit Application" you consent to Klaviyo processing your Personal Data in accordance with our Job Applicant Privacy Notice. If you do not wish for Klaviyo to process your Personal Data, please do not submit an application. You can find our Job Applicant Privacy Notice here.

At Klaviyo, we value the unique backgrounds, experiences and perspectives each Klaviyo (we call ourselves Klaviyos) brings to our workplace each and every day. We believe everyone deserves a fair shot at success and appreciate the experiences each person brings beyond the traditional job requirements. If you're a close but not exact match with the description, we hope you'll still consider applying. Want to learn more about life at Klaviyo? Visit careers.klaviyo.com to see how we empower creators to own their own destiny. Klaviyo is building a world where creators are empowered to own their destiny. In support of this, our Security Risk & Trust team is focused on empowering our fellow Klaviyos to securely deliver value to and foster trust with our customers. We do this by building and leading highly efficient and effective security governance, risk management, compliance, and trust programs. We're seeking a highly motivated and collaborative Senior Security Risk Analyst who will help us accelerate our evolution in these key programs. Partnering closely with our Engineering, IT, Security, Leadership, and other teams, you'll build tools and processes that foster a culture of disciplined risk decision making, informed by an evidence-based understanding of our assets, weaknesses, threats, and safeguards. You will help evolve our risk management practices to be transparent and centered around quantitative risk models. With a knack for communicating nuanced security topics to technical and non-technical audiences, you'll help grow security consciousness across all of Klaviyo to the betterment of our customers. What you'll be doing Enhance existing risk management tools and processes to create a data driven, seamless, and excellent user experience for risk / asset owners Consult with partner teams to proactively identify potential risks and co-create controls and mitigation plans with them Streamline and automate third-party risk assessments, speeding up time-to-completion and enabling continuous re-assessments at scale Mentor junior team members to help them reach their full potential and achieve their development goals Contribute to Risk & Trust operations, such as performing third-party risk assessments, user access reviews, facilitating internal and external audits (SOC 2 Type II, ISO 27001, SOX ITGCs, etc.), continuously monitoring controls, responding to customer security questionnaires, fulfilling employees' security service requests, etc. Then build and implement tooling that automates repetitive toil to free up our team's time We'd love to hear from you if you have: Experience designing, building, or implementing security controls, especially in AWS Experience doing security risk assessments, architecture reviews, or threat modeling Knowledge of security best practices for SaaS, IaaS, IAM, networks, or containers Excellent ability to plan, prioritize, and execute work cross functionally and on time Proficiency discussing complex, nuanced topics with technical & non-technical audiences alike Strong alignment with Klaviyo's core values Bonus points if you have any of the following: Experience with data query languages, writing code, or integrating with web APIs Experience implementing FAIR or cyber risk quantification (CRQ) processes or tools Experience with business intelligence or data analytics platforms (Tableau, Domo, etc.) Massachusetts Applicants: It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability. The pay range for this role is listed below. Sales roles are also eligible for variable compensation and hourly non-exempt roles are eligible for overtime in accordance with applicable law. This role is eligible for benefits, including: medical, dental and vision coverage, health savings accounts, flexible spending accounts, 401(k), flexible paid time off and company-paid holidays and a culture of learning that includes a learning allowance and access to a professional coaching service for all employees. Base Pay Range For US Locations:$120,000—$180,000 USD Get to Know Klaviyo We're Klaviyo (pronounced clay-vee-oh). We empower creators to own their destiny by making first-party data accessible and actionable like never before. We see limitless potential for the technology we're developing to nurture personalized experiences in ecommerce and beyond. To reach our goals, we need our own crew of remarkable creators-ambitious and collaborative teammates who stay focused on our north star: delighting our customers. If you're ready to do the best work of your career, where you'll be welcomed as your whole self from day one and supported with generous benefits, we hope you'll join us. Klaviyo is committed to a policy of equal opportunity and non-discrimination. We do not discriminate on the basis of race, ethnicity, citizenship, national origin, color, religion or religious creed, age, sex (including pregnancy), gender identity, sexual orientation, physical or mental disability, veteran or active military status, marital status, criminal record, genetics, retaliation, sexual harassment or any other characteristic protected by applicable law. IMPORTANT NOTICE: Our company takes the security and privacy of job applicants very seriously. We will never ask for payment, bank details, or personal financial information as part of the application process. All our legitimate job postings can be found on our official career site. Please be cautious of job offers that come from non-company email addresses (@klaviyo.com), instant messaging platforms, or unsolicited calls. By clicking "Submit Application" you consent to Klaviyo processing your Personal Data in accordance with our Job Applicant Privacy Notice. If you do not wish for Klaviyo to process your Personal Data, please do not submit an application. You can find our Job Applicant Privacy Notice here .

Klaviyo is building a world where creators are empowered to own their destiny. In support of this, our Security Risk & Trust team is focused on empowering our fellow Klaviyos to securely deliver value to and foster trust with our customers. We do this by building and leading highly efficient and effective security governance, risk management, compliance, and trust programs. We're seeking a highly motivated and collaborative Senior Security Risk Analyst who will help us accelerate our evolution in these key programs. Partnering closely with our Engineering, IT, Security, Leadership, and other teams, you'll build tools and processes that foster a culture of disciplined risk decision making, informed by an evidence-based understanding of our assets, weaknesses, threats, and safeguards. You will help evolve our risk management practices to be transparent and centered around quantitative risk models. With a knack for communicating nuanced security topics to technical and non-technical audiences, you'll help grow security consciousness across all of Klaviyo to the betterment of our customers. What you'll be doing Enhance existing risk management tools and processes to create a data driven, seamless, and excellent user experience for risk / asset owners Consult with partner teams to proactively identify potential risks and co-create controls and mitigation plans with them Streamline and automate third-party risk assessments, speeding up time-to-completion and enabling continuous re-assessments at scale Mentor junior team members to help them reach their full potential and achieve their development goals Contribute to Risk & Trust operations, such as performing third-party risk assessments, user access reviews, facilitating internal and external audits (SOC 2 Type II, ISO 27001, SOX ITGCs, etc.), continuously monitoring controls, responding to customer security questionnaires, fulfilling employees' security service requests, etc. Then build and implement tooling that automates repetitive toil to free up our team's time We'd love to hear from you if you have: Experience designing, building, or implementing security controls, especially in AWS Experience doing security risk assessments, architecture reviews, or threat modeling Knowledge of security best practices for SaaS, IaaS, IAM, networks, or containers Excellent ability to plan, prioritize, and execute work cross functionally and on time Proficiency discussing complex, nuanced topics with technical & non-technical audiences alike Strong alignment with Klaviyo's core values Bonus points if you have any of the following: Experience with data query languages, writing code, or integrating with web APIs Experience implementing FAIR or cyber risk quantification (CRQ) processes or tools Experience with business intelligence or data analytics platforms (Tableau, Domo, etc.)

At Klaviyo, we value the unique backgrounds, experiences and perspectives each Klaviyo (we call ourselves Klaviyos) brings to our workplace each and every day. We believe everyone deserves a fair shot at success and appreciate the experiences each person brings beyond the traditional job requirements. If you're a close but not exact match with the description, we hope you'll still consider applying. Want to learn more about life at Klaviyo? Visit careers.klaviyo.com to see how we empower creators to own their own destiny. Klaviyo is building a world where creators are empowered to own their destiny. In support of this, our Security Risk & Trust team is focused on empowering our fellow Klaviyos to securely deliver value to and foster trust with our customers. We do this by building and leading highly efficient and effective security governance, risk management, compliance, and trust programs. We're seeking a highly motivated and collaborative Senior Security Risk Analyst who will help us accelerate our evolution in these key programs. Partnering closely with our Engineering, IT, Security, Leadership, and other teams, you'll build tools and processes that foster a culture of disciplined risk decision making, informed by an evidence-based understanding of our assets, weaknesses, threats, and safeguards. You will help evolve our risk management practices to be transparent and centered around quantitative risk models. With a knack for communicating nuanced security topics to technical and non-technical audiences, you'll help grow security consciousness across all of Klaviyo to the betterment of our customers. What you'll be doing * Enhance existing risk management tools and processes to create a data driven, seamless, and excellent user experience for risk / asset owners * Consult with partner teams to proactively identify potential risks and co-create controls and mitigation plans with them * Streamline and automate third-party risk assessments, speeding up time-to-completion and enabling continuous re-assessments at scale * Mentor junior team members to help them reach their full potential and achieve their development goals * Contribute to Risk & Trust operations, such as performing third-party risk assessments, user access reviews, facilitating internal and external audits (SOC 2 Type II, ISO 27001, SOX ITGCs, etc.), continuously monitoring controls, responding to customer security questionnaires, fulfilling employees' security service requests, etc. * Then build and implement tooling that automates repetitive toil to free up our team's time We'd love to hear from you if you have: * Experience designing, building, or implementing security controls, especially in AWS * Experience doing security risk assessments, architecture reviews, or threat modeling * Knowledge of security best practices for SaaS, IaaS, IAM, networks, or containers * Excellent ability to plan, prioritize, and execute work cross functionally and on time * Proficiency discussing complex, nuanced topics with technical & non-technical audiences alike * Strong alignment with Klaviyo's core values Bonus points if you have any of the following: * Experience with data query languages, writing code, or integrating with web APIs * Experience implementing FAIR or cyber risk quantification (CRQ) processes or tools * Experience with business intelligence or data analytics platforms (Tableau, Domo, etc.) Massachusetts Applicants: It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability. The pay range for this role is listed below. Sales roles are also eligible for variable compensation and hourly non-exempt roles are eligible for overtime in accordance with applicable law. This role is eligible for benefits, including: medical, dental and vision coverage, health savings accounts, flexible spending accounts, 401(k), flexible paid time off and company-paid holidays and a culture of learning that includes a learning allowance and access to a professional coaching service for all employees. Base Pay Range For US Locations: $120,000-$180,000 USD Get to Know Klaviyo We're Klaviyo (pronounced clay-vee-oh). We empower creators to own their destiny by making first-party data accessible and actionable like never before. We see limitless potential for the technology we're developing to nurture personalized experiences in ecommerce and beyond. To reach our goals, we need our own crew of remarkable creators-ambitious and collaborative teammates who stay focused on our north star: delighting our customers. If you're ready to do the best work of your career, where you'll be welcomed as your whole self from day one and supported with generous benefits, we hope you'll join us. Klaviyo is committed to a policy of equal opportunity and non-discrimination. We do not discriminate on the basis of race, ethnicity, citizenship, national origin, color, religion or religious creed, age, sex (including pregnancy), gender identity, sexual orientation, physical or mental disability, veteran or active military status, marital status, criminal record, genetics, retaliation, sexual harassment or any other characteristic protected by applicable law. IMPORTANT NOTICE: Our company takes the security and privacy of job applicants very seriously. We will never ask for payment, bank details, or personal financial information as part of the application process. All our legitimate job postings can be found on our official career site. Please be cautious of job offers that come from non-company email addresses (@klaviyo.com), instant messaging platforms, or unsolicited calls. By clicking "Submit Application" you consent to Klaviyo processing your Personal Data in accordance with our Job Applicant Privacy Notice. If you do not wish for Klaviyo to process your Personal Data, please do not submit an application. You can find our Job Applicant Privacy Notice here.

At Klaviyo, we value the unique backgrounds, experiences and perspectives each Klaviyo (we call ourselves Klaviyos) brings to our workplace each and every day. We believe everyone deserves a fair shot at success and appreciate the experiences each person brings beyond the traditional job requirements. If you're a close but not exact match with the description, we hope you'll still consider applying. Want to learn more about life at Klaviyo? Visit careers.klaviyo.com to see how we empower creators to own their own destiny. Klaviyo is building a world where creators are empowered to own their destiny. In support of this, our Security Risk & Trust team is focused on empowering our fellow Klaviyos to securely deliver value to and foster trust with our customers. We do this by building and leading highly efficient and effective security governance, risk management, compliance, and trust programs. We're seeking a highly motivated and collaborative Senior Security Risk Analyst who will help us accelerate our evolution in these key programs. Partnering closely with our Engineering, IT, Security, Leadership, and other teams, you'll build tools and processes that foster a culture of disciplined risk decision making, informed by an evidence-based understanding of our assets, weaknesses, threats, and safeguards. You will help evolve our risk management practices to be transparent and centered around quantitative risk models. With a knack for communicating nuanced security topics to technical and non-technical audiences, you'll help grow security consciousness across all of Klaviyo to the betterment of our customers. What you'll be doing * Enhance existing risk management tools and processes to create a data driven, seamless, and excellent user experience for risk / asset owners * Consult with partner teams to proactively identify potential risks and co-create controls and mitigation plans with them * Streamline and automate third-party risk assessments, speeding up time-to-completion and enabling continuous re-assessments at scale * Mentor junior team members to help them reach their full potential and achieve their development goals * Contribute to Risk & Trust operations, such as performing third-party risk assessments, user access reviews, facilitating internal and external audits (SOC 2 Type II, ISO 27001, SOX ITGCs, etc.), continuously monitoring controls, responding to customer security questionnaires, fulfilling employees' security service requests, etc. * Then build and implement tooling that automates repetitive toil to free up our team's time We'd love to hear from you if you have: * Experience designing, building, or implementing security controls, especially in AWS * Experience doing security risk assessments, architecture reviews, or threat modeling * Knowledge of security best practices for SaaS, IaaS, IAM, networks, or containers * Excellent ability to plan, prioritize, and execute work cross functionally and on time * Proficiency discussing complex, nuanced topics with technical & non-technical audiences alike * Strong alignment with Klaviyo's core values Bonus points if you have any of the following: * Experience with data query languages, writing code, or integrating with web APIs * Experience implementing FAIR or cyber risk quantification (CRQ) processes or tools * Experience with business intelligence or data analytics platforms (Tableau, Domo, etc.) Massachusetts Applicants: It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability. The pay range for this role is listed below. Sales roles are also eligible for variable compensation and hourly non-exempt roles are eligible for overtime in accordance with applicable law. This role is eligible for benefits, including: medical, dental and vision coverage, health savings accounts, flexible spending accounts, 401(k), flexible paid time off and company-paid holidays and a culture of learning that includes a learning allowance and access to a professional coaching service for all employees. Base Pay Range For US Locations: $120,000-$180,000 USD Get to Know Klaviyo We're Klaviyo (pronounced clay-vee-oh). We empower creators to own their destiny by making first-party data accessible and actionable like never before. We see limitless potential for the technology we're developing to nurture personalized experiences in ecommerce and beyond. To reach our goals, we need our own crew of remarkable creators-ambitious and collaborative teammates who stay focused on our north star: delighting our customers. If you're ready to do the best work of your career, where you'll be welcomed as your whole self from day one and supported with generous benefits, we hope you'll join us. Klaviyo is committed to a policy of equal opportunity and non-discrimination. We do not discriminate on the basis of race, ethnicity, citizenship, national origin, color, religion or religious creed, age, sex (including pregnancy), gender identity, sexual orientation, physical or mental disability, veteran or active military status, marital status, criminal record, genetics, retaliation, sexual harassment or any other characteristic protected by applicable law. IMPORTANT NOTICE: Our company takes the security and privacy of job applicants very seriously. We will never ask for payment, bank details, or personal financial information as part of the application process. All our legitimate job postings can be found on our official career site. Please be cautious of job offers that come from non-company email addresses (@klaviyo.com), instant messaging platforms, or unsolicited calls. By clicking "Submit Application" you consent to Klaviyo processing your Personal Data in accordance with our Job Applicant Privacy Notice. If you do not wish for Klaviyo to process your Personal Data, please do not submit an application. You can find our Job Applicant Privacy Notice here.

At Klaviyo, we value the unique backgrounds, experiences and perspectives each Klaviyo (we call ourselves Klaviyos) brings to our workplace each and every day. We believe everyone deserves a fair shot at success and appreciate the experiences each person brings beyond the traditional job requirements. If you're a close but not exact match with the description, we hope you'll still consider applying. Want to learn more about life at Klaviyo? Visit careers.klaviyo.com to see how we empower creators to own their own destiny. Klaviyo is building a world where creators are empowered to own their destiny. In support of this, our Security Risk & Trust team is focused on empowering our fellow Klaviyos to securely deliver value to and foster trust with our customers. We do this by building and leading highly efficient and effective security governance, risk management, compliance, and trust programs. We're seeking a highly motivated and collaborative Senior Security Risk Analyst who will help us accelerate our evolution in these key programs. Partnering closely with our Engineering, IT, Security, Leadership, and other teams, you'll build tools and processes that foster a culture of disciplined risk decision making, informed by an evidence-based understanding of our assets, weaknesses, threats, and safeguards. You will help evolve our risk management practices to be transparent and centered around quantitative risk models. With a knack for communicating nuanced security topics to technical and non-technical audiences, you'll help grow security consciousness across all of Klaviyo to the betterment of our customers. What you'll be doing Enhance existing risk management tools and processes to create a data driven, seamless, and excellent user experience for risk / asset owners Consult with partner teams to proactively identify potential risks and co-create controls and mitigation plans with them Streamline and automate third-party risk assessments, speeding up time-to-completion and enabling continuous re-assessments at scale Mentor junior team members to help them reach their full potential and achieve their development goals Contribute to Risk & Trust operations, such as performing third-party risk assessments, user access reviews, facilitating internal and external audits (SOC 2 Type II, ISO 27001, SOX ITGCs, etc.), continuously monitoring controls, responding to customer security questionnaires, fulfilling employees' security service requests, etc. Then build and implement tooling that automates repetitive toil to free up our team's time We'd love to hear from you if you have: Experience designing, building, or implementing security controls, especially in AWS Experience doing security risk assessments, architecture reviews, or threat modeling Knowledge of security best practices for SaaS, IaaS, IAM, networks, or containers Excellent ability to plan, prioritize, and execute work cross functionally and on time Proficiency discussing complex, nuanced topics with technical & non-technical audiences alike Strong alignment with Klaviyo's core values Bonus points if you have any of the following: Experience with data query languages, writing code, or integrating with web APIs Experience implementing FAIR or cyber risk quantification (CRQ) processes or tools Experience with business intelligence or data analytics platforms (Tableau, Domo, etc.) Massachusetts Applicants: It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability. The pay range for this role is listed below. Sales roles are also eligible for variable compensation and hourly non-exempt roles are eligible for overtime in accordance with applicable law. This role is eligible for benefits, including: medical, dental and vision coverage, health savings accounts, flexible spending accounts, 401(k), flexible paid time off and company-paid holidays and a culture of learning that includes a learning allowance and access to a professional coaching service for all employees. Base Pay Range For US Locations:$120,000—$180,000 USD Get to Know Klaviyo We're Klaviyo (pronounced clay-vee-oh). We empower creators to own their destiny by making first-party data accessible and actionable like never before. We see limitless potential for the technology we're developing to nurture personalized experiences in ecommerce and beyond. To reach our goals, we need our own crew of remarkable creators-ambitious and collaborative teammates who stay focused on our north star: delighting our customers. If you're ready to do the best work of your career, where you'll be welcomed as your whole self from day one and supported with generous benefits, we hope you'll join us. Klaviyo is committed to a policy of equal opportunity and non-discrimination. We do not discriminate on the basis of race, ethnicity, citizenship, national origin, color, religion or religious creed, age, sex (including pregnancy), gender identity, sexual orientation, physical or mental disability, veteran or active military status, marital status, criminal record, genetics, retaliation, sexual harassment or any other characteristic protected by applicable law. IMPORTANT NOTICE: Our company takes the security and privacy of job applicants very seriously. We will never ask for payment, bank details, or personal financial information as part of the application process. All our legitimate job postings can be found on our official career site. Please be cautious of job offers that come from non-company email addresses (@klaviyo.com), instant messaging platforms, or unsolicited calls. By clicking "Submit Application" you consent to Klaviyo processing your Personal Data in accordance with our Job Applicant Privacy Notice. If you do not wish for Klaviyo to process your Personal Data, please do not submit an application. You can find our Job Applicant Privacy Notice here .

Klaviyo is building a world where creators are empowered to own their destiny. In support of this, our Security Risk & Trust team is focused on empowering our fellow Klaviyos to securely deliver value to and foster trust with our customers. We do this by building and leading highly efficient and effective security governance, risk management, compliance, and trust programs. We're seeking a highly motivated and collaborative Senior Security Risk Analyst who will help us accelerate our evolution in these key programs. Partnering closely with our Engineering, IT, Security, Leadership, and other teams, you'll build tools and processes that foster a culture of disciplined risk decision making, informed by an evidence-based understanding of our assets, weaknesses, threats, and safeguards. You will help evolve our risk management practices to be transparent and centered around quantitative risk models. With a knack for communicating nuanced security topics to technical and non-technical audiences, you'll help grow security consciousness across all of Klaviyo to the betterment of our customers. What you'll be doing Enhance existing risk management tools and processes to create a data driven, seamless, and excellent user experience for risk / asset owners Consult with partner teams to proactively identify potential risks and co-create controls and mitigation plans with them Streamline and automate third-party risk assessments, speeding up time-to-completion and enabling continuous re-assessments at scale Mentor junior team members to help them reach their full potential and achieve their development goals Contribute to Risk & Trust operations, such as performing third-party risk assessments, user access reviews, facilitating internal and external audits (SOC 2 Type II, ISO 27001, SOX ITGCs, etc.), continuously monitoring controls, responding to customer security questionnaires, fulfilling employees' security service requests, etc. Then build and implement tooling that automates repetitive toil to free up our team's time We'd love to hear from you if you have: Experience designing, building, or implementing security controls, especially in AWS Experience doing security risk assessments, architecture reviews, or threat modeling Knowledge of security best practices for SaaS, IaaS, IAM, networks, or containers Excellent ability to plan, prioritize, and execute work cross functionally and on time Proficiency discussing complex, nuanced topics with technical & non-technical audiences alike Strong alignment with Klaviyo's core values Bonus points if you have any of the following: Experience with data query languages, writing code, or integrating with web APIs Experience implementing FAIR or cyber risk quantification (CRQ) processes or tools Experience with business intelligence or data analytics platforms (Tableau, Domo, etc.)

Klaviyo is building a world where creators are empowered to own their destiny. In support of this, our Security Risk & Trust team is focused on empowering our fellow Klaviyos to securely deliver value to and foster trust with our customers. We do this by building and leading highly efficient and effective security governance, risk management, compliance, and trust programs. We're seeking a highly motivated and collaborative Senior Security Risk Analyst who will help us accelerate our evolution in these key programs. Partnering closely with our Engineering, IT, Security, Leadership, and other teams, you'll build tools and processes that foster a culture of disciplined risk decision making, informed by an evidence-based understanding of our assets, weaknesses, threats, and safeguards. You will help evolve our risk management practices to be transparent and centered around quantitative risk models. With a knack for communicating nuanced security topics to technical and non-technical audiences, you'll help grow security consciousness across all of Klaviyo to the betterment of our customers. What you'll be doing Enhance existing risk management tools and processes to create a data driven, seamless, and excellent user experience for risk / asset owners Consult with partner teams to proactively identify potential risks and co-create controls and mitigation plans with them Streamline and automate third-party risk assessments, speeding up time-to-completion and enabling continuous re-assessments at scale Mentor junior team members to help them reach their full potential and achieve their development goals Contribute to Risk & Trust operations, such as performing third-party risk assessments, user access reviews, facilitating internal and external audits (SOC 2 Type II, ISO 27001, SOX ITGCs, etc.), continuously monitoring controls, responding to customer security questionnaires, fulfilling employees' security service requests, etc. Then build and implement tooling that automates repetitive toil to free up our team's time We'd love to hear from you if you have: Experience designing, building, or implementing security controls, especially in AWS Experience doing security risk assessments, architecture reviews, or threat modeling Knowledge of security best practices for SaaS, IaaS, IAM, networks, or containers Excellent ability to plan, prioritize, and execute work cross functionally and on time Proficiency discussing complex, nuanced topics with technical & non-technical audiences alike Strong alignment with Klaviyo's core values Bonus points if you have any of the following: Experience with data query languages, writing code, or integrating with web APIs Experience implementing FAIR or cyber risk quantification (CRQ) processes or tools Experience with business intelligence or data analytics platforms (Tableau, Domo, etc.)