Security Engineer jobs at Wabtec Corporation

Why Mayo Clinic Mayo Clinic is top-ranked in more specialties than any other care provider according to U.S. News & World Report. As we work together to put the needs of the patient first, we are also dedicated to our employees, investing in competitive compensation and comprehensive benefit plans - to take care of you and your family, now and in the future. And with continuing education and advancement opportunities at every turn, you can build a long, successful career with Mayo Clinic. Benefits Highlights * Medical: Multiple plan options. * Dental: Delta Dental or reimbursement account for flexible coverage. * Vision: Affordable plan with national network. * Pre-Tax Savings: HSA and FSAs for eligible expenses. * Retirement: Competitive retirement package to secure your future. Responsibilities The Principal Information Security Engineer on the Incident Response Team is a critical leadership role responsible for overseeing, coordinating, and enhancing the organization's response to cyber threats and security incidents. Leads the technical aspects of incident detection, analysis, containment, eradication, and recovery for information security incidents. Develops and maintains incident response plans, playbooks, and procedures, ensuring alignment with industry best practices and regulatory requirements. Coordinates and drive investigations into suspicious activities, malware attacks, and advanced persistent threats (APTs). Serves as the primary escalation point for complex incidents, providing expert guidance and decision-making during critical events. Collaborates with security operations, threat intelligence, and IT teams to improve detection capabilities and reduce response times. Conducts post-incident reviews, root cause analyses, and lessons-learned sessions to strengthen the organization's security posture. Mentors and trains incident response team members, fostering technical growth and knowledge sharing. Stays current with emerging threats, vulnerabilities, and attack techniques, recommending proactive measures to mitigate risks. Prepares and delivers detailed reports, metrics, and presentations to senior leadership and stakeholders. Technical expertise in incident response and digital forensics. Deep knowledge of cybersecurity frameworks, security technologies, and threat landscape. Proficiency in forensic analysis, malware reverse engineering, and network security monitoring tools. Strong analytical, problem-solving, and communication skills. Strong ethical standards and attention to detail. The Information Security Principal Engineer acts as an information security liaison to various business units and the Information Technology Department to provide direction, training, and guidance for OIS staff. The Information Security Principal Engineer is considered an expert, leader and mentor; identifying and resolving technology related information security gaps based on the organization's risk posture. Specifically, the Information Security Principal Engineer is knowledgeable, proficient and experienced in: * Working with business partners across the organization to achieve organizational and OIS goals * Working collaboratively with team members and other leaders to develop and implement cybersecurity strategy based on industry best practice * Developing secure network and systems architecture * Analyzing technology security posture and appropriate use of security defenses * Matching technical solutions with business requirements and then designing and implementing them; * Software development, testing, support/problem solving, and overall technology administration; * Organizational procedures such as the system development lifecycle; * Use of defensive measures and information to identify, analyze and report security events; * Researching and understanding pertinent information technology laws, policies and procedures * Providing direct support for acquiring information security technology and applications * Applying IT-related laws and policies, and providing IT-related guidance throughout the software acquisition lifecycle * Collecting and analyzing information to identify vulnerabilities and potential for exploitation * Managing and administering processes and tools that enable the organization to identify, document, and access intellectual capital and information content * Executing duties governing hardware, software, and information system acquisition programs and other program management policies This is a full time, remote position within the United States. Mayo Clinic will not sponsor or transfer visas for this position including F1 OPT STEM. Qualifications Master's degree with three (3) years' experience OR Bachelor's degree in Computer Science, Information Systems, Engineering or related major and a minimum five (5) years' experience in the information security field required.The Information Security Principal Engineer also requires the following skills/abilities. * Understands the use and efficacy of information security tools, server configurations and controls with the ability to install, configure, test and operate them. * Able to test, implement, deploy, maintain, review and administer the infrastructure hardware and software required to effectively secure the enterprise, protect data, identify and mitigate risks * Ability to collect, process, preserve, analyze and present computer related evidence in support of network vulnerability mitigation and/or criminal, fraud, counterintelligence or law enforcement investigations. * Provides advanced technical opinions/conclusions re. security tools, trends, and controls which are supported by documented evidence, based on multiple perspectives and leverage of a variety of resources * Demonstrates a deep and broad knowledge of standard operating procedures, workflows and supporting technology across numerous critical user areas and an in-depth knowledge of multiple computing technologies either being actively used or of significant interest to Mayo; understands how systems fit into larger picture of technology at Mayo. * Capacity to work independently and willingness to seek advice/assistance. Must have one of the following certifications (or equivalent) at time of hire. * CISSP * GSEC * CISM * HCISPP * OSCP Exemption Status Exempt Compensation Detail $145,225.60 - $210,558.40 / year Benefits Eligible Yes Schedule Full Time Hours/Pay Period 80 Schedule Details Monday - Friday, 8am - 5pm Weekends and nights as needed with on call responsibilities. Weekend Schedule As needed International Assignment No Site Description Just as our reputation has spread beyond our Minnesota roots, so have our locations. Today, our employees are located at our three major campuses in Phoenix/Scottsdale, Arizona, Jacksonville, Florida, Rochester, Minnesota, and at Mayo Clinic Health System campuses throughout Midwestern communities, and at our international locations. Each Mayo Clinic location is a special place where our employees thrive in both their work and personal lives. Learn more about what each unique Mayo Clinic campus has to offer, and where your best fit is. Equal Opportunity All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, protected veteran status or disability status. Learn more about the 'EOE is the Law'. Mayo Clinic participates in E-Verify and may provide the Social Security Administration and, if necessary, the Department of Homeland Security with information from each new employee's Form I-9 to confirm work authorization. Recruiter Ted Keefe

Great benefits. Competitive pay. We know these are some of the things people look for in a job. If you're the kind of person who believes that honoring and empowering our nation's veterans is more than just a cause - that it's a calling - then we're ready to meet you. When you join Wounded Warrior Project (WWP), you're committing to making a difference. We make a commitment to you, too - helping you to find that spark, ignite your passion to serve, and embark on a career with meaning and purpose. At WWP, we recognize our mission cannot be accomplished without our talented teammates, which is why we're proud to offer benefits such as: * A flexible hybrid work schedule (three days in the office, two days' work from home) * Full medical, dental, and vision coverage for both teammates AND family members * Competitive pay and performance incentives * A fun, mission-focused, and collaborative team environment A mission that matters is just the beginning, so if you're ready to get started, we're ready for you. The Wounded Warrior Project (WWP) Infrastructure Security Engineer I is responsible for maintaining the security and compliance of servers, virtual machines (VMs), and network devices across both on-premises and Azure environments. This role includes applying security patches, implementing secure configurations, coordinating with cross-functional teams, and validating security remediations to protect the organization's IT infrastructure from vulnerabilities. DUTIES & RESPONSIBILITIES * Apply patches and security updates to servers, VMs, and network devices using tools such as Azure Update Manager, Intune, and GPO. * Follow step-by-step remediation instructions from IT Security and validate implementations to ensure compliance. * Manage the backlog of assigned vulnerabilities, including prioritizing and tracking remediation efforts in OneNote and Jira. * Implement, validate, and baseline secure configurations for servers, VMs, and network devices in both Azure and on-premises environments. * Research and apply best practices from sources such as Microsoft, Cisco, and NIST to maintain secure baselines. * Validate changes using monitoring tools (e.g., Rapid7, SentinelOne, Microsoft Defender for Endpoint, Azure Security Center) and operational checks (e.g., logging, alerting, and backups) to confirm compliance and prevent disruptions. * Coordinate with relevant technical teams to validate remediation feasibility and address dependencies. * Partner with security stakeholders to interpret and implement security requirements for infrastructure. * Collaborate with cross-functional teams to align remediation efforts and ensure operational stability. * Document work clearly in tools such as OneNote and Jira, capturing configuration changes, patch status, and compliance tracking while supporting shared understanding of security best practices. * Contribute to compliance dashboards and KPIs, ensuring accurate reporting of the organization's security posture. * Manage rollout strategies and rollback procedures to minimize operational risk. * Attend and actively participate in required training and/or meetings, including but not limited to New Teammate Orientation, WWP Cares, ASIST Suicide Prevention training, Leadership training, culture/team based training, or departmental huddles. * Other related duties as assigned. KNOWLEDGE, SKILLS, & ABILITIES * Knowledge of server, virtual machine (VM), and network device patching, security hardening, and vulnerability remediation. * Familiarity with vulnerability management and endpoint protection tools, such as Rapid7, SentinelOne, Microsoft Defender for Endpoint, and Azure Security Center. * Skilled in managing Network Security Groups (NSGs) and next-generation firewalls (NGFWs) to secure network traffic and enforce security policies. * Knowledge of hybrid cloud environments, including Azure Active Directory, Intune, Update Manager, and secure configuration management practices. * Strong understanding of industry security standards and frameworks (e.g., NIST, CIS, Microsoft, Cisco). * Proven ability to assess security risks, prioritize remediation efforts, and validate configuration changes without introducing operational risk. * Demonstrated ability to interpret and implement complex security requirements for network infrastructure, including firewall rule creation and NSG management. * Adept at communicating and documenting technical information clearly for both teammates and leadership. * Ability to collaborate effectively with cross-functional teams, including network, systems, and security personnel. * Proficient at managing competing priorities, tracking progress, and meeting deadlines using project management and documentation tools such as Jira and OneNote. * Willingness to collaborate with peers and contribute to process enhancements and team growth. * Unequivocal commitment to the highest standards of personal and business ethics and conduct. * Mission-driven, guided by core values, and a pleasure to work with. EXPERIENCE Requirements * Five years of experience in systems administration or infrastructure engineering, with a focus on server, VM, and network device security. * Three years of experience in vulnerability management, patch management, or endpoint protection, utilizing tools such as Rapid7, SentinelOne, Microsoft Defender for Endpoint, or Azure Security Center. * Two years of hands-on experience with Azure services, including Azure Active Directory, Intune, Update Manager, and secure configuration management. * Two years of experience applying security frameworks and standards, including NIST, CIS, and Microsoft security baselines. * Two years of experience managing network security in hybrid cloud environments, including configuring and maintaining Network Security Groups (NSGs) and next-generation firewalls (NGFWs). Preferences * Experience coordinating with cross-functional teams to remediate security vulnerabilities and validate secure configurations. EDUCATION Requirements * Bachelor's degree in information technology, computer science, cybersecurity, or related field. Equivalent combination of applicable education, training, certification, and experience may be considered in lieu of degree. Preferences * Bachelor's degree in information technology, computer science, cybersecurity, or related field. CERTIFICATIONS & LICENSURE Requirements * Cisco Certified Network Associate (CCNA) Certification. Preferences * Cisco Certified Network Professional (CCNP) Security Certification. * Certified Information Systems Security Professional (CISSP) Certification. * Microsoft Certified: Azure Security Engineer Associate (AZ-500). * Microsoft Certified: Identity and Access Administrator Associate (SC-300). WORK ENVIRONMENT/PHYSICAL DEMANDS * General office environment; temperature controlled. * Up to 10% travel. We recognize the success of our mission depends on the efforts of our passionate, hard-working teammates. To help teammates remain focused on the warriors and families we serve, WWP offers a comprehensive benefits package that includes; Medical/Prescription drug, Dental, Vision, Life/AD&D, Short-term Disability, Long-term Disability, and an Employee Assistance Program. WWP also offers a 401(k)-retirement plan, a competitive PTO package, Sick Leave, Family Care Leave, Paid Holidays, Birthday Holiday, Education Assistance, Teammate Wellness Program, and Bereavement Leave. For Washington, D.C. Applicants: The estimated hiring range for this position is between $118,272 - $147,840 annual base salary, subject to a candidate's combination of experience, qualifications, and credentials. This position may also be eligible for an annual performance incentive. * ca-ml #LI-HYBRID Wounded Warrior Project is an equal opportunity employer committed to providing equal employment opportunity to all persons without regard to race, color, religion, national origin, gender, gender identity, sexual orientation, marital status, citizenship, age, veteran or military status, disability, genetic information, or any other characteristic protected by law. Please note: Wounded Warrior Project is not seeking assistance or accepting unsolicited resumes from search firms without a written search agreement in place. All resumes submitted by search firms to any employee at Wounded Warrior Project via email, the Internet or directly to hiring managers at Wounded Warrior Project in any form without a valid written search agreement in place will be deemed the sole property of Wounded Warrior Project, and no fee will be paid in the event the candidate is hired by Wounded Warrior Project as a result of the referral or through other means."

Great benefits. Competitive pay. We know these are some of the things people look for in a job. If you're the kind of person who believes that honoring and empowering our nation's veterans is more than just a cause - that it's a calling - then we're ready to meet you. When you join Wounded Warrior Project (WWP), you're committing to making a difference. We make a commitment to you, too - helping you to find that spark, ignite your passion to serve, and embark on a career with meaning and purpose. At WWP, we recognize our mission cannot be accomplished without our talented teammates, which is why we're proud to offer benefits such as: * A flexible hybrid work schedule (three days in the office, two days' work from home) * Full medical, dental, and vision coverage for both teammates AND family members * Competitive pay and performance incentives * A fun, mission-focused, and collaborative team environment A mission that matters is just the beginning, so if you're ready to get started, we're ready for you. The Wounded Warrior Project (WWP) Infrastructure Security Engineer I is responsible for maintaining the security and compliance of servers, virtual machines (VMs), and network devices across both on-premises and Azure environments. This role includes applying security patches, implementing secure configurations, coordinating with cross-functional teams, and validating security remediations to protect the organization's IT infrastructure from vulnerabilities. DUTIES & RESPONSIBILITIES * Apply patches and security updates to servers, VMs, and network devices using tools such as Azure Update Manager, Intune, and GPO. * Follow step-by-step remediation instructions from IT Security and validate implementations to ensure compliance. * Manage the backlog of assigned vulnerabilities, including prioritizing and tracking remediation efforts in OneNote and Jira. * Implement, validate, and baseline secure configurations for servers, VMs, and network devices in both Azure and on-premises environments. * Research and apply best practices from sources such as Microsoft, Cisco, and NIST to maintain secure baselines. * Validate changes using monitoring tools (e.g., Rapid7, SentinelOne, Microsoft Defender for Endpoint, Azure Security Center) and operational checks (e.g., logging, alerting, and backups) to confirm compliance and prevent disruptions. * Coordinate with relevant technical teams to validate remediation feasibility and address dependencies. * Partner with security stakeholders to interpret and implement security requirements for infrastructure. * Collaborate with cross-functional teams to align remediation efforts and ensure operational stability. * Document work clearly in tools such as OneNote and Jira, capturing configuration changes, patch status, and compliance tracking while supporting shared understanding of security best practices. * Contribute to compliance dashboards and KPIs, ensuring accurate reporting of the organization's security posture. * Manage rollout strategies and rollback procedures to minimize operational risk. * Attend and actively participate in required training and/or meetings, including but not limited to New Teammate Orientation, WWP Cares, ASIST Suicide Prevention training, Leadership training, culture/team based training, or departmental huddles. * Other related duties as assigned. KNOWLEDGE, SKILLS, & ABILITIES * Knowledge of server, virtual machine (VM), and network device patching, security hardening, and vulnerability remediation. * Familiarity with vulnerability management and endpoint protection tools, such as Rapid7, SentinelOne, Microsoft Defender for Endpoint, and Azure Security Center. * Skilled in managing Network Security Groups (NSGs) and next-generation firewalls (NGFWs) to secure network traffic and enforce security policies. * Knowledge of hybrid cloud environments, including Azure Active Directory, Intune, Update Manager, and secure configuration management practices. * Strong understanding of industry security standards and frameworks (e.g., NIST, CIS, Microsoft, Cisco). * Proven ability to assess security risks, prioritize remediation efforts, and validate configuration changes without introducing operational risk. * Demonstrated ability to interpret and implement complex security requirements for network infrastructure, including firewall rule creation and NSG management. * Adept at communicating and documenting technical information clearly for both teammates and leadership. * Ability to collaborate effectively with cross-functional teams, including network, systems, and security personnel. * Proficient at managing competing priorities, tracking progress, and meeting deadlines using project management and documentation tools such as Jira and OneNote. * Willingness to collaborate with peers and contribute to process enhancements and team growth. * Unequivocal commitment to the highest standards of personal and business ethics and conduct. * Mission-driven, guided by core values, and a pleasure to work with. EXPERIENCE Requirements * Five years of experience in systems administration or infrastructure engineering, with a focus on server, VM, and network device security. * Three years of experience in vulnerability management, patch management, or endpoint protection, utilizing tools such as Rapid7, SentinelOne, Microsoft Defender for Endpoint, or Azure Security Center. * Two years of hands-on experience with Azure services, including Azure Active Directory, Intune, Update Manager, and secure configuration management. * Two years of experience applying security frameworks and standards, including NIST, CIS, and Microsoft security baselines. * Two years of experience managing network security in hybrid cloud environments, including configuring and maintaining Network Security Groups (NSGs) and next-generation firewalls (NGFWs). Preferences * Experience coordinating with cross-functional teams to remediate security vulnerabilities and validate secure configurations. EDUCATION Requirements * Bachelor's degree in information technology, computer science, cybersecurity, or related field. Equivalent combination of applicable education, training, certification, and experience may be considered in lieu of degree. Preferences * Bachelor's degree in information technology, computer science, cybersecurity, or related field. CERTIFICATIONS & LICENSURE Requirements * Cisco Certified Network Associate (CCNA) Certification. Preferences * Cisco Certified Network Professional (CCNP) Security Certification. * Certified Information Systems Security Professional (CISSP) Certification. * Microsoft Certified: Azure Security Engineer Associate (AZ-500). * Microsoft Certified: Identity and Access Administrator Associate (SC-300). WORK ENVIRONMENT/PHYSICAL DEMANDS * General office environment; temperature controlled. * Up to 10% travel. We recognize the success of our mission depends on the efforts of our passionate, hard-working teammates. To help teammates remain focused on the warriors and families we serve, WWP offers a comprehensive benefits package that includes; Medical/Prescription drug, Dental, Vision, Life/AD&D, Short-term Disability, Long-term Disability, and an Employee Assistance Program. WWP also offers a 401(k)-retirement plan, a competitive PTO package, Sick Leave, Family Care Leave, Paid Holidays, Birthday Holiday, Education Assistance, Teammate Wellness Program, and Bereavement Leave. For Washington, D.C. Applicants: The estimated hiring range for this position is between $118,272 - $147,840 annual base salary, subject to a candidate's combination of experience, qualifications, and credentials. This position may also be eligible for an annual performance incentive. * ca-ml #LI-HYBRID Wounded Warrior Project is an equal opportunity employer committed to providing equal employment opportunity to all persons without regard to race, color, religion, national origin, gender, gender identity, sexual orientation, marital status, citizenship, age, veteran or military status, disability, genetic information, or any other characteristic protected by law. Please note: Wounded Warrior Project is not seeking assistance or accepting unsolicited resumes from search firms without a written search agreement in place. All resumes submitted by search firms to any employee at Wounded Warrior Project via email, the Internet or directly to hiring managers at Wounded Warrior Project in any form without a valid written search agreement in place will be deemed the sole property of Wounded Warrior Project, and no fee will be paid in the event the candidate is hired by Wounded Warrior Project as a result of the referral or through other means."

Great benefits. Competitive pay. We know these are some of the things people look for in a job. If you're the kind of person who believes that honoring and empowering our nation's veterans is more than just a cause - that it's a calling - then we're ready to meet you. When you join Wounded Warrior Project (WWP), you're committing to making a difference. We make a commitment to you, too - helping you to find that spark, ignite your passion to serve, and embark on a career with meaning and purpose. At WWP, we recognize our mission cannot be accomplished without our talented teammates, which is why we're proud to offer benefits such as: * A flexible hybrid work schedule (three days in the office, two days' work from home) * Full medical, dental, and vision coverage for both teammates AND family members * Competitive pay and performance incentives * A fun, mission-focused, and collaborative team environment A mission that matters is just the beginning, so if you're ready to get started, we're ready for you. The Wounded Warrior Project (WWP) Infrastructure Security Engineer I is responsible for maintaining the security and compliance of servers, virtual machines (VMs), and network devices across both on-premises and Azure environments. This role includes applying security patches, implementing secure configurations, coordinating with cross-functional teams, and validating security remediations to protect the organization's IT infrastructure from vulnerabilities. DUTIES & RESPONSIBILITIES * Apply patches and security updates to servers, VMs, and network devices using tools such as Azure Update Manager, Intune, and GPO. * Follow step-by-step remediation instructions from IT Security and validate implementations to ensure compliance. * Manage the backlog of assigned vulnerabilities, including prioritizing and tracking remediation efforts in OneNote and Jira. * Implement, validate, and baseline secure configurations for servers, VMs, and network devices in both Azure and on-premises environments. * Research and apply best practices from sources such as Microsoft, Cisco, and NIST to maintain secure baselines. * Validate changes using monitoring tools (e.g., Rapid7, SentinelOne, Microsoft Defender for Endpoint, Azure Security Center) and operational checks (e.g., logging, alerting, and backups) to confirm compliance and prevent disruptions. * Coordinate with relevant technical teams to validate remediation feasibility and address dependencies. * Partner with security stakeholders to interpret and implement security requirements for infrastructure. * Collaborate with cross-functional teams to align remediation efforts and ensure operational stability. * Document work clearly in tools such as OneNote and Jira, capturing configuration changes, patch status, and compliance tracking while supporting shared understanding of security best practices. * Contribute to compliance dashboards and KPIs, ensuring accurate reporting of the organization's security posture. * Manage rollout strategies and rollback procedures to minimize operational risk. * Attend and actively participate in required training and/or meetings, including but not limited to New Teammate Orientation, WWP Cares, ASIST Suicide Prevention training, Leadership training, culture/team based training, or departmental huddles. * Other related duties as assigned. KNOWLEDGE, SKILLS, & ABILITIES * Knowledge of server, virtual machine (VM), and network device patching, security hardening, and vulnerability remediation. * Familiarity with vulnerability management and endpoint protection tools, such as Rapid7, SentinelOne, Microsoft Defender for Endpoint, and Azure Security Center. * Skilled in managing Network Security Groups (NSGs) and next-generation firewalls (NGFWs) to secure network traffic and enforce security policies. * Knowledge of hybrid cloud environments, including Azure Active Directory, Intune, Update Manager, and secure configuration management practices. * Strong understanding of industry security standards and frameworks (e.g., NIST, CIS, Microsoft, Cisco). * Proven ability to assess security risks, prioritize remediation efforts, and validate configuration changes without introducing operational risk. * Demonstrated ability to interpret and implement complex security requirements for network infrastructure, including firewall rule creation and NSG management. * Adept at communicating and documenting technical information clearly for both teammates and leadership. * Ability to collaborate effectively with cross-functional teams, including network, systems, and security personnel. * Proficient at managing competing priorities, tracking progress, and meeting deadlines using project management and documentation tools such as Jira and OneNote. * Willingness to collaborate with peers and contribute to process enhancements and team growth. * Unequivocal commitment to the highest standards of personal and business ethics and conduct. * Mission-driven, guided by core values, and a pleasure to work with. EXPERIENCE Requirements * Five years of experience in systems administration or infrastructure engineering, with a focus on server, VM, and network device security. * Three years of experience in vulnerability management, patch management, or endpoint protection, utilizing tools such as Rapid7, SentinelOne, Microsoft Defender for Endpoint, or Azure Security Center. * Two years of hands-on experience with Azure services, including Azure Active Directory, Intune, Update Manager, and secure configuration management. * Two years of experience applying security frameworks and standards, including NIST, CIS, and Microsoft security baselines. * Two years of experience managing network security in hybrid cloud environments, including configuring and maintaining Network Security Groups (NSGs) and next-generation firewalls (NGFWs). Preferences * Experience coordinating with cross-functional teams to remediate security vulnerabilities and validate secure configurations. EDUCATION Requirements * Bachelor's degree in information technology, computer science, cybersecurity, or related field. Equivalent combination of applicable education, training, certification, and experience may be considered in lieu of degree. Preferences * Bachelor's degree in information technology, computer science, cybersecurity, or related field. CERTIFICATIONS & LICENSURE Requirements * Cisco Certified Network Associate (CCNA) Certification. Preferences * Cisco Certified Network Professional (CCNP) Security Certification. * Certified Information Systems Security Professional (CISSP) Certification. * Microsoft Certified: Azure Security Engineer Associate (AZ-500). * Microsoft Certified: Identity and Access Administrator Associate (SC-300). WORK ENVIRONMENT/PHYSICAL DEMANDS * General office environment; temperature controlled. * Up to 10% travel. We recognize the success of our mission depends on the efforts of our passionate, hard-working teammates. To help teammates remain focused on the warriors and families we serve, WWP offers a comprehensive benefits package that includes; Medical/Prescription drug, Dental, Vision, Life/AD&D, Short-term Disability, Long-term Disability, and an Employee Assistance Program. WWP also offers a 401(k)-retirement plan, a competitive PTO package, Sick Leave, Family Care Leave, Paid Holidays, Birthday Holiday, Education Assistance, Teammate Wellness Program, and Bereavement Leave. For Washington, D.C. Applicants: The estimated hiring range for this position is between $118,272 - $147,840 annual base salary, subject to a candidate's combination of experience, qualifications, and credentials. This position may also be eligible for an annual performance incentive. * ca-ml #LI-HYBRID Wounded Warrior Project is an equal opportunity employer committed to providing equal employment opportunity to all persons without regard to race, color, religion, national origin, gender, gender identity, sexual orientation, marital status, citizenship, age, veteran or military status, disability, genetic information, or any other characteristic protected by law. Please note: Wounded Warrior Project is not seeking assistance or accepting unsolicited resumes from search firms without a written search agreement in place. All resumes submitted by search firms to any employee at Wounded Warrior Project via email, the Internet or directly to hiring managers at Wounded Warrior Project in any form without a valid written search agreement in place will be deemed the sole property of Wounded Warrior Project, and no fee will be paid in the event the candidate is hired by Wounded Warrior Project as a result of the referral or through other means."

The Principal Information Security Engineer on the Incident Response Team is a critical leadership role responsible for overseeing, coordinating, and enhancing the organization's response to cyber threats and security incidents. Leads the technical aspects of incident detection, analysis, containment, eradication, and recovery for information security incidents. Develops and maintains incident response plans, playbooks, and procedures, ensuring alignment with industry best practices and regulatory requirements. Coordinates and drive investigations into suspicious activities, malware attacks, and advanced persistent threats (APTs). Serves as the primary escalation point for complex incidents, providing expert guidance and decision-making during critical events. Collaborates with security operations, threat intelligence, and IT teams to improve detection capabilities and reduce response times. Conducts post-incident reviews, root cause analyses, and lessons-learned sessions to strengthen the organization's security posture. Mentors and trains incident response team members, fostering technical growth and knowledge sharing. Stays current with emerging threats, vulnerabilities, and attack techniques, recommending proactive measures to mitigate risks. Prepares and delivers detailed reports, metrics, and presentations to senior leadership and stakeholders. Technical expertise in incident response and digital forensics. Deep knowledge of cybersecurity frameworks, security technologies, and threat landscape. Proficiency in forensic analysis, malware reverse engineering, and network security monitoring tools. Strong analytical, problem-solving, and communication skills. Strong ethical standards and attention to detail. The Information Security Principal Engineer acts as an information security liaison to various business units and the Information Technology Department to provide direction, training, and guidance for OIS staff. The Information Security Principal Engineer is considered an expert, leader and mentor; identifying and resolving technology related information security gaps based on the organization's risk posture. Specifically, the Information Security Principal Engineer is knowledgeable, proficient and experienced in: •Working with business partners across the organization to achieve organizational and OIS goals •Working collaboratively with team members and other leaders to develop and implement cybersecurity strategy based on industry best practice •Developing secure network and systems architecture •Analyzing technology security posture and appropriate use of security defenses •Matching technical solutions with business requirements and then designing and implementing them; •Software development, testing, support/problem solving, and overall technology administration; •Organizational procedures such as the system development lifecycle; •Use of defensive measures and information to identify, analyze and report security events; •Researching and understanding pertinent information technology laws, policies and procedures •Providing direct support for acquiring information security technology and applications •Applying IT-related laws and policies, and providing IT-related guidance throughout the software acquisition lifecycle •Collecting and analyzing information to identify vulnerabilities and potential for exploitation •Managing and administering processes and tools that enable the organization to identify, document, and access intellectual capital and information content •Executing duties governing hardware, software, and information system acquisition programs and other program management policies This is a full time, remote position within the United States. Mayo Clinic will not sponsor or transfer visas for this position including F1 OPT STEM. Master's degree with three (3) years' experience OR Bachelor's degree in Computer Science, Information Systems, Engineering or related major and a minimum five (5) years' experience in the information security field required.The Information Security Principal Engineer also requires the following skills/abilities. •Understands the use and efficacy of information security tools, server configurations and controls with the ability to install, configure, test and operate them. •Able to test, implement, deploy, maintain, review and administer the infrastructure hardware and software required to effectively secure the enterprise, protect data, identify and mitigate risks •Ability to collect, process, preserve, analyze and present computer related evidence in support of network vulnerability mitigation and/or criminal, fraud, counterintelligence or law enforcement investigations. •Provides advanced technical opinions/conclusions re. security tools, trends, and controls which are supported by documented evidence, based on multiple perspectives and leverage of a variety of resources •Demonstrates a deep and broad knowledge of standard operating procedures, workflows and supporting technology across numerous critical user areas and an in-depth knowledge of multiple computing technologies either being actively used or of significant interest to Mayo; understands how systems fit into larger picture of technology at Mayo. •Capacity to work independently and willingness to seek advice/assistance. Must have one of the following certifications (or equivalent) at time of hire. • CISSP • GSEC • CISM • HCISPP • OSCP

Great benefits. Competitive pay. We know these are some of the things people look for in a job. If you're the kind of person who believes that honoring and empowering our nation's veterans is more than just a cause - that it's a calling - then we're ready to meet you. When you join Wounded Warrior Project (WWP), you're committing to making a difference. We make a commitment to you, too - helping you to find that spark, ignite your passion to serve, and embark on a career with meaning and purpose. At WWP™, we recognize our mission cannot be accomplished without our talented teammates, which is why we're proud to offer benefits such as: · A flexible hybrid work schedule (three days in the office, two days' work from home) · Full medical, dental, and vision coverage for both teammates AND family members · Competitive pay and performance incentives · A fun, mission-focused, and collaborative team environment A mission that matters is just the beginning, so if you're ready to get started, we're ready for you. The Wounded Warrior Project (WWP) Infrastructure Security Engineer I is responsible for maintaining the security and compliance of servers, virtual machines (VMs), and network devices across both on-premises and Azure environments. This role includes applying security patches, implementing secure configurations, coordinating with cross-functional teams, and validating security remediations to protect the organization's IT infrastructure from vulnerabilities. DUTIES & RESPONSIBILITIES Apply patches and security updates to servers, VMs, and network devices using tools such as Azure Update Manager, Intune, and GPO. Follow step-by-step remediation instructions from IT Security and validate implementations to ensure compliance. Manage the backlog of assigned vulnerabilities, including prioritizing and tracking remediation efforts in OneNote and Jira. Implement, validate, and baseline secure configurations for servers, VMs, and network devices in both Azure and on-premises environments. Research and apply best practices from sources such as Microsoft, Cisco, and NIST to maintain secure baselines. Validate changes using monitoring tools (e.g., Rapid7, SentinelOne, Microsoft Defender for Endpoint, Azure Security Center) and operational checks (e.g., logging, alerting, and backups) to confirm compliance and prevent disruptions. Coordinate with relevant technical teams to validate remediation feasibility and address dependencies. Partner with security stakeholders to interpret and implement security requirements for infrastructure. Collaborate with cross-functional teams to align remediation efforts and ensure operational stability. Document work clearly in tools such as OneNote and Jira, capturing configuration changes, patch status, and compliance tracking while supporting shared understanding of security best practices. Contribute to compliance dashboards and KPIs, ensuring accurate reporting of the organization's security posture. Manage rollout strategies and rollback procedures to minimize operational risk. Attend and actively participate in required training and/or meetings, including but not limited to New Teammate Orientation, WWP Cares, ASIST Suicide Prevention training, Leadership training, culture/team based training, or departmental huddles. Other related duties as assigned. KNOWLEDGE, SKILLS, & ABILITIES Knowledge of server, virtual machine (VM), and network device patching, security hardening, and vulnerability remediation. Familiarity with vulnerability management and endpoint protection tools, such as Rapid7, SentinelOne, Microsoft Defender for Endpoint, and Azure Security Center. Skilled in managing Network Security Groups (NSGs) and next-generation firewalls (NGFWs) to secure network traffic and enforce security policies. Knowledge of hybrid cloud environments, including Azure Active Directory, Intune, Update Manager, and secure configuration management practices. Strong understanding of industry security standards and frameworks (e.g., NIST, CIS, Microsoft, Cisco). Proven ability to assess security risks, prioritize remediation efforts, and validate configuration changes without introducing operational risk. Demonstrated ability to interpret and implement complex security requirements for network infrastructure, including firewall rule creation and NSG management. Adept at communicating and documenting technical information clearly for both teammates and leadership. Ability to collaborate effectively with cross-functional teams, including network, systems, and security personnel. Proficient at managing competing priorities, tracking progress, and meeting deadlines using project management and documentation tools such as Jira and OneNote. Willingness to collaborate with peers and contribute to process enhancements and team growth. Unequivocal commitment to the highest standards of personal and business ethics and conduct. Mission-driven, guided by core values, and a pleasure to work with. EXPERIENCE Requirements Five years of experience in systems administration or infrastructure engineering, with a focus on server, VM, and network device security. Three years of experience in vulnerability management, patch management, or endpoint protection, utilizing tools such as Rapid7, SentinelOne, Microsoft Defender for Endpoint, or Azure Security Center. Two years of hands-on experience with Azure services, including Azure Active Directory, Intune, Update Manager, and secure configuration management. Two years of experience applying security frameworks and standards, including NIST, CIS, and Microsoft security baselines. Two years of experience managing network security in hybrid cloud environments, including configuring and maintaining Network Security Groups (NSGs) and next-generation firewalls (NGFWs). Preferences Experience coordinating with cross-functional teams to remediate security vulnerabilities and validate secure configurations. EDUCATION Requirements Bachelor's degree in information technology, computer science, cybersecurity, or related field. Equivalent combination of applicable education, training, certification, and experience may be considered in lieu of degree. Preferences Bachelor's degree in information technology, computer science, cybersecurity, or related field. CERTIFICATIONS & LICENSURE Requirements Cisco Certified Network Associate (CCNA) Certification. Preferences Cisco Certified Network Professional (CCNP) Security Certification. Certified Information Systems Security Professional (CISSP) Certification. Microsoft Certified: Azure Security Engineer Associate (AZ-500). Microsoft Certified: Identity and Access Administrator Associate (SC-300). WORK ENVIRONMENT/PHYSICAL DEMANDS General office environment; temperature controlled. Up to 10% travel. *ca-ml #LI-HYBRID Wounded Warrior Project is an equal opportunity employer committed to providing equal employment opportunity to all persons without regard to race, color, religion, national origin, gender, gender identity, sexual orientation, marital status, citizenship, age, veteran or military status, disability, genetic information, or any other characteristic protected by law. Please note: Wounded Warrior Project is not seeking assistance or accepting unsolicited resumes from search firms without a written search agreement in place. All resumes submitted by search firms to any employee at Wounded Warrior Project via email, the Internet or directly to hiring managers at Wounded Warrior Project in any form without a valid written search agreement in place will be deemed the sole property of Wounded Warrior Project, and no fee will be paid in the event the candidate is hired by Wounded Warrior Project as a result of the referral or through other means."

At Accenture Federal Services, nothing matters more than helping the US federal government make the nation stronger and safer and life better for people. Our 13,000+ people are united in a shared purpose to pursue the limitless potential of technology and ingenuity for clients across defense, national security, public safety, civilian, and military health organizations. Join Accenture Federal Services, a technology company and part of global Accenture, to do work that matters in a collaborative and caring community, where you feel like you belong and are empowered to grow, learn and thrive through hands-on experience, certifications, industry training and more. Join us to drive positive, lasting change that moves missions and the government forward! Job Description: Accenture Federal Services is seeking bold, innovative thinkers to tear apart our world of code and find vulnerabilities. Software and applications, PCs, Macs, Linux and IoT are all the objects of our investigation, so we need someone who likes to solve puzzles and deep dive into new topics to solve some of the most challenging problems. Our projects involve small teams working a variety of research efforts in close coordination with customers. As a technical leader, you will drive vulnerability research (VR) and operational success for our customers Here's what you need: In-depth knowledge of C, C++, Python and Bash scripting; additional languages desired include C#, Java, Swift Experience with fuzzer development, AFL, Ida Pro, Ghidra and custom forensic analysis tools Academic degree(s) in Computer Science, Cyber Security, Software Engineering, Electrical or Computer Engineering, Physics and/or military training/experience Experience reading or writing assembly (x86, x64, ARM, PPC, MIPS, TILE, or others) Working experience with Git, GitLab, or Jira Bonus points if you have: Experience utilizing full system emulation for research and analysis Experience using VMware vCenter, vSphere Experience setting up networking and packet capture in Virtual Machine environments Security Clearance: Must have an active TS/SCI level clearance #clearancejobs As required by local law, Accenture Federal Services provides reasonable ranges of compensation for hired roles based on labor costs in the states of California, Colorado, Hawaii, Illinois, Maryland, Massachusetts, Minnesota, New Jersey, New York, Washington, Vermont, the District of Columbia, and the city of Cleveland. The base pay range for this position in these locations is shown below. Compensation for roles at Accenture Federal Services varies depending on a wide array of factors, including but not limited to office location, role, skill set, and level of experience. Accenture Federal Services offers a wide variety of benefits. You can find more information on benefits here. We accept applications on an on-going basis and there is no fixed deadline to apply. The pay range for the states of California, Colorado, Hawaii, Illinois, Maryland, Massachusetts, Minnesota, New Jersey, New York, Washington, Vermont, the District of Columbia, and the city of Cleveland is:$113,500-$234,900 USD What We Believe As a company wholly dedicated to serving the US federal government, we bring together the best talent to help reinvent how federal agencies operate and deliver greater value for their mission and the American people. We have an unwavering commitment to creating a culture in which all our people are respected, feel a sense of belonging, and have equal opportunity. As a business imperative, every person at Accenture Federal Services has the responsibility to create and sustain a culture where everyone feels welcomed and included. This is grounded in our core values and our experience that hiring and developing great people who reflect different perspectives, experiences, and backgrounds is key to driving innovation and delivering the results that our clients and the country count on. Equal Employment Opportunity Statement We believe that no one should be discriminated against because of their differences. All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law. Our rich diversity makes us more innovative, more competitive, and more creative, which helps us better serve our clients and our communities. For details, view a copy of the Accenture Federal Services Equal Opportunity Policy Statement. Accenture Federal Services is an Equal Employment Opportunity employer. Additionally, as an Affirmative Action Employer for Veterans and Individuals with Disabilities, Accenture Federal Services is committed to providing veteran employment opportunities to our service men and women. Requesting An Accommodation Accenture Federal Services is committed to providing equal employment opportunities for persons with disabilities or religious observances, including reasonable accommodation when needed. If you are hired by Accenture Federal Services and require accommodation to perform the essential functions of your role, you will be asked to participate in our reasonable accommodation process. Accommodations made to facilitate the recruiting process are not a guarantee of future or continued accommodations once hired. If you are being considered for employment opportunities with Accenture Federal Services and need an accommodation for a disability or religious observance during the interview process or for the job you are interviewing for, please speak with your recruiter. Other Employment Statements Applicants for employment in the US must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the United States. Candidates who are currently employed by a client of Accenture Federal Services or an affiliated Accenture business may not be eligible for consideration. Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process. The Company will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. Additionally, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the Company's legal duty to furnish information. California requires additional notifications for applicants and employees. If you are a California resident, live in or plan to work from Los Angeles County upon being hired for this position, please click here for additional important information.

Responsibilities: * Monitor security systems and networks for potential threats and vulnerabilities. * Respond to security incidents, conduct investigations, and perform root cause analysis. * Coordinate with other departments and external entities during incident response. * Maintain and update incident response plans and playbooks. * Stay up-to-date with the latest security trends, technologies, and threats. * Recommend and implement enhancements as needed to incident response procedures, tools, and controls. * Work with various stakeholders on the appropriate tactics to protect the organization. * Proactively work with partners and suppliers to achieve objectives on time and within budget. * Direct and/or take appropriate action with partners to build enterprise class solutions, respond to issues/threats, and communicate to stakeholders. * Actively engage in the greater Information Security and privacy community (e.g. peer groups, seminars, conferences, etc.) to help identify new technologies, new techniques and new partners. Key Qualifications: * 5+ years of relevant experience is required. * 3+ years of experience working in incident response roles. * Bachelor's degree in Computer Science, Management Information Systems, Information Security or equivalent is required. * Cybersecurity certifications (e.g. CISSP, GIAC certifications, etc.) are preferred. * Experience working with CIS Critical Controls, NIST CSF and ISO 27001 frameworks are preferred. Technical Skills and Abilities * Strong interpersonal, written, and verbal communication skills * Demonstrated experience working with a team to solve technical problems. * Ability to focus on and achieving results. * Demonstrated reliability and follow through on commitments and assignments. * Demonstrate professionalism and courtesy in all interactions. * Demonstrated ability to implement security best practices. * Work well under pressure (i.e., a critical system is down) * Able to work independently and as part of a team. * Working knowledge of scripting (PowerShell, Python, Perl, etc.) * Working knowledge of core network and systems administrator protocols * Working knowledge of network solutions/technologies * Experience working with Security Information and E.vent Management (SIEM) and Security Orchestration and Automation Response (SOAR) platforms. * Experience with EDR solutions. * Ability to analyze and interpret security logs and data. * Experience with and ability to implement security best practices. * Experience with security tools (vulnerability scanners, sniffers, log correlation tools) * Experience with Windows, Linux, and Mac operating systems #LI-DNI This role is based in our Columbus, OH or Washington, D.C. office. A reasonable rate of compensation for this position is between $90,000-$100,000 per year.

The Chan Zuckerberg Initiative was founded in 2015 by Priscilla Chan and Mark Zuckerberg to help solve some of society's toughest challenges - from curing or preventing disease to improving education and addressing the needs of our local communities. We provide the operational support across our areas of work. The Team Across our work in Science, Education, and within our communities, we pair technology with grantmaking, impact investing, and collaboration to help accelerate the pace of progress toward our mission. Our Operations organization provides the support needed to push this work forward. Operations consists of our Brand & Communications, Central Tech, Finance, People, Real Estate/Workplace/Events/Facilities/Security (REWFS), Strategy & Operations, and Ventures teams. These teams provide the essential operations, services, and strategies needed to support CZI's progress toward achieving its mission to build a better future for everyone. Our AI, Infrastructure and Security team provides technology and security support for CZI and our grantees. We believe that Engineering, IT and Security are most effective when in sync and learning from each other on a daily basis. Across our three pillars of Infrastructure, Security, and Grantee & Partner Support, we enable our teams to achieve their goals faster and more securely. We leverage technology to automate manual processes, constantly innovate to optimize operations, provide first-class support, and build solutions to enable the scale and execution of our business partners' strategies and initiatives. The Opportunity As a Senior Security Software Engineer on the Central Tech team, you will focus on securing systems to enable the use of AI across the organization by making it safe and easy to incorporate more data and models. You will work on a collaborative multi-disciplinary team to identify risk/reward tradeoffs and build secure AI solutions. What You'll Do * Design and implement secure-by-default infrastructure and services supporting AI/ML workloads. * Collaborate with AI/ML engineers, data engineers, and platform teams to integrate security best practices. * Develop or acquire tooling and automation to detect and mitigate vulnerabilities specific to AI environments (e.g., model poisoning, data leakage, adversarial attacks). * Stay current on AI threat landscapes, compliance standards (e.g., NIST AI RMF, GDPR), and emerging security frameworks for AI/ML systems. * Leverage and contribute to open source tools and technologies. * Monitor for and respond to emerging threats to AI/ML systems, and participate in incident response and root cause analysis. * Strong understanding of authentication, authorization, encryption, container security, and network security. What You'll Bring * 5+ years of experience in software engineering with a focus on security. * Proficiency in Python and at least one systems-level language (e.g., Go, Rust, or C++). * Experience with securing cloud-based and on-prem AI infrastructure. * A desire to automate systems to minimise human errors. * Ability to work cross functionally across the organization. * Nice to have - Background in privacy-enhancing technologies (e.g., differential privacy, federated learning, homomorphic encryption). Compensation The Redwood City, CA base pay range for a new hire in this role is $190,000-$261,000. New hires are typically hired into the lower portion of the range, enabling employee growth in the range over time. Actual placement in range is based on job-related skills and experience, as evaluated throughout the interview process. Benefits for the Whole You We're thankful to have an incredible team behind our work. To honor their commitment, we offer a wide range of benefits to support the people who make all we do possible. * CZI provides a generous employer match on employee 401(k) contributions to support planning for the future. * Annual benefit for employees that can be used most meaningfully for them and their families, such as housing, student loan repayment, childcare, commuter costs, or other life needs. * CZI Life of Service Gifts are awarded to employees to "live the mission" and support the causes closest to them. * Paid time off to volunteer at an organization of your choice. * Funding for select family-forming benefits. * Relocation support for employees who need assistance moving to the Bay Area * And more! If you're interested in a role but your previous experience doesn't perfectly align with each qualification in the job description, we still encourage you to apply as you may be the perfect fit for this or another role. Explore our work modes, benefits, and interview process at ******************************* #LI-Hybrid

Lumen connects the world. We are igniting business growth by connecting people, data and applications - quickly, securely, and effortlessly. Together, we are building a culture and company from the people up - committed to teamwork, trust and transparency. People power progress. We're looking for top-tier talent and offer the flexibility you need to thrive and deliver lasting impact. Join us as we digitally connect the world and shape the future. **The Role** This position is a senior role implementing Managed Security Services (MSS) in a Federal Security Operations Center (FedSOC) environment. The SOC function is to provide customers with constant monitoring, protection, prevention, and detection services as well as reporting and incident analysis based on events collected from multiple sources. This position will be responsible for providing technical expertise to design and implement DDoS Mitigation for Lumen Federal Customers. This position will provide subject matter expertise to DoD customers on worldwide DDoS threats and issue posture and assessment reports This Lead Information Security Engineer position operates in a supportive role implementing security, technology, and innovation in the Federal Security Operation Center (FedSOC) environment. The Security Operations Center operates 24x7x365. This role performs security event management functions - monitoring, detection, triage of security events and alerts in associated monitoring systems. Facilitates the ingress, implementation, and egress of advanced client trouble / change requests for the Lumen managed DDoS product. The Lead Information Security Engineer is expected to perform as technical lead, including basic managerial duties, escalation support and on-call. Provides mentoring, training, and escalation support for Junior Engineer SOC personnel. **The Main Responsibilities** + Subject Matter Expert on DDoS attacks, mitigation and threat analysis. + DDoS worldwide intelligence collection, analysis, reporting and dissemination. + Threat Feed research, recommendation, implementation and Administration. + Interface with DDoS service vendors. + Expertise in DDoS attack tools and countermeasures. + Perform complex changes within the managed security environment. + Manage and resolve customer service faults, outage, and impairment events. + Monitor, triage, and respond to alerts for client security events. Investigation and resolution of impairment scenarios on Managed DDoS Security products. + Research and implement customer generated change requests for Managed DDoS Security products. + Generate incident cases and escalate to Operation Engineering and IPNOC teams in accordance with time and severity-based SLA's. + Performs tasks associated with the installation, turn up and maintenance of Lumen security infrastructure. + Present as technical expert delivering solutions to clients, internal business, and third-party vendors. + Develop enhancements to existing solutions, promote creation of new tools, processes, and applications + Directly support, train and mentor tier I and II colleagues + Possess exceptional customer service skills + Multi-task during events + Communicate effectively with managers, customers, and vendors + Maintain solid working relationships, including collaborative technical activities with peers + Strong written and verbal communication skills + Analytical and problem-solving skills + Attention to detail with good organizational capabilities + Prioritize with good time management skills + Demonstrate collaboration/cooperation with other Service Assurance teams outside of the SOC (IP/Ethernet, Transport, etc.) + Regularly observed communication with peers and other functional SOC teams on selected collaboration platforms (Teams, Email, phone, etc.) + Work within multiple ticketing platforms and accept/update/close tickets in order received. + If not previously approved, candidate must be willing to submit for a T/S clearance with SCI **What We Look For in a Candidate** Qualifications & Skills: + Required (education/experience/skills/competencies): + Candidate must be a US Citizen with an active TOP SECRET clearance Preferred: + 5-7 years in a Security Operations environment. + Experience with Cyber Threat Intelligence and interface with intelligence community. + Experience with writing reports and making presentations to customers. + Certifications In specific security technologies such as Fortinet, Arbor, Radware, Palo Alto, Cisco or Checkpoint. + Demonstrated understanding of Denial-of-Service concepts and attack vectors, and mitigation options. + Demonstrated proficiency in routing and networking skills, including the ability to: + Troubleshoot BGP and BGP community strings + Review and analyze packet captures + Trace customers or attack traffic through our global backbone + Understand and be able to modify policies/prefix lists on multiple router platforms + Troubleshoot GRE Tunnels issues + Stay abreast of new attack vectors and interface with customers, other SOC engineers, and Ops Engineering regarding new vectors and mitigation techniques. + Expert level knowledge and skills of at least one programming language (python preferred) + Security industry certifications (examples): + CISSP + CRISC + CISM + Security+ CCNA + ACIA + CCNA + CEH + ITIL Foundations **Compensation** This information reflects the anticipated base salary range for this position based on current national data. Minimums and maximums may vary based on location. Individual pay is based on skills, experience and other relevant factors Location Based Pay Ranges: $114,082 - $152,109 in these states: VA Lumen offers a comprehensive package featuring a broad range of Health, Life, Voluntary Lifestyle benefits and other perks that enhance your physical, mental, emotional and financial wellbeing. We're able to answer any additional questions you may have about our bonus structure (short-term incentives, long-term incentives and/or sales compensation) as you move through the selection process. Learn more about Lumen's: + Benefits (**************************************************** + Bonus Structure \#LI-FP1 Onsite **What to Expect Next** Requisition #: 340274 **Background Screening** If you are selected for a position, there will be a background screen, which may include checks for criminal records and/or motor vehicle reports and/or drug screening, depending on the position requirements. For more information on these checks, please refer to the Post Offer section of our FAQ page (************************************* . Job-related concerns identified during the background screening may disqualify you from the new position or your current role. Background results will be evaluated on a case-by-case basis. Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records. **Equal Employment Opportunities** We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, gender expression, marital status, family status, pregnancy, or other legally protected status (collectively, "protected statuses"). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training. **Disclaimer** The job responsibilities described above indicate the general nature and level of work performed by employees within this classification. It is not intended to include a comprehensive inventory of all duties and responsibilities for this job. Job duties and responsibilities are subject to change based on evolving business needs and conditions. In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information. Please be advised that Lumen does not require any form of payment from job applicants during the recruitment process. All legitimate job openings will be posted on our official website or communicated through official company email addresses. If you encounter any job offers that request payment in exchange for employment at Lumen, they are not for employment with us, but may relate to another company with a similar name.

Compensation: $60.00-$68.00/HR Duration: 6 month contract to hire In joining the team, you will get an exciting opportunity to work in the growing IT Security field in support of National defense. The products you will touch will be deployed into larger systems and/or deployments to facilitate secure communications for our military in the modern cyber warfare environment. Come be a part of an expanding industry that is integral in ensuring our National Security. You'll get an opportunity to learn from Industry experts work with various Commercial off the Shelf products across many technology types and be able to use your skillset in a hands-on lab environment. Job Responsibilities: + The selected candidate will work on varied FIPS 140 validation projects. + General security analysis + Design work (product architecture) + Vulnerability testing + Physical security testing + System-level logical analysis + Product evaluations against Technology Type standards (Protection Profiles) + Cryptographic and Public Key Infrastructure (PKI) testing + Cryptographic algorithm testing + Source code review activities + Technical report writing and review. + Testing automation through scripting + Develop applications to support test cases. Qualifications: + Cryptographic Validation Program (CVP) Certification + BS degree with 2 - 4 years of prior relevant experience. + Knowledge of cryptographic encryption algorithms, key exchange algorithms, hashing/message authentication algorithms, PKI, random number generators, etc. + Experience with various programming languages (C, C++, Python or Java) and development environments. + Ability to comprehend security standard requirements and apply them to products. + Experience setting up networks and familiarity with subnetting and routing concepts. + Knowledge of common security related protocols and their design (i.e. SSH, IPsec, TLS, etc.). + Experience building testing environments, performing testing and reporting results (technical writing). + Strong troubleshooting and problem-solving skills. + Strong multitasking and time management. Preferred Qualifications: + Experience with Python programming language + Experience with debugging (Android debug bridge (adb), WinDBG, Visual Studio, etc.). + Experience with statistical analysis of entropy sources. + Knowledge of OpenSSL and/or OpenPGP. + Vulnerability Analysis and/or penetration testing experience/expertise. + Strong knowledge of computer security principles and best practices. + Strong English (both oral and written) skills. + Related certifications (CCNA/CCNP/CCIE, JNCIA/JNCIS/JNCIP/JNCIE). + Knowledge of Active Directory and Linux. + Hands on experience using tools such as an oscilloscope, function generator, multi-meter, signal generator, etc + Knowledge of X.509 certificate validation. System One, and its subsidiaries including Joulé, ALTA IT Services, and Mountain Ltd., are leaders in delivering outsourced services and workforce solutions across North America. We help clients get work done more efficiently and economically, without compromising quality. System One not only serves as a valued partner for our clients, but we offer eligible employees health and welfare benefits coverage options including medical, dental, vision, spending accounts, life insurance, voluntary plans, as well as participation in a 401(k) plan. System One is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, age, national origin, disability, family care or medical leave status, genetic information, veteran status, marital status, or any other characteristic protected by applicable federal, state, or local law. #M-M2 #LI-RF1 #DI-RF1 Ref: #850-Rockville (ALTA IT) System One, and its subsidiaries including Joulé, ALTA IT Services, CM Access, TPGS, and MOUNTAIN, LTD., are leaders in delivering workforce solutions and integrated services across North America. We help clients get work done more efficiently and economically, without compromising quality. System One not only serves as a valued partner for our clients, but we offer eligible full-time employees health and welfare benefits coverage options including medical, dental, vision, spending accounts, life insurance, voluntary plans, as well as participation in a 401(k) plan. System One is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, age, national origin, disability, family care or medical leave status, genetic information, veteran status, marital status, or any other characteristic protected by applicable federal, state, or local law.

As an Infrastructure and Security Engineer, you will be responsible for the comprehensive management and protection of the FCA's critical network and infrastructure, ensuring a secure and optimized digital environment that supports seamless ministry operations worldwide. Your role will involve maintaining essential servers, databases, and firewalls, implementing robust security measures, and continuously monitoring system performance to meet the needs of a global organization. You will lead the migration of key infrastructure from on-premises to Microsoft Azure, designing and managing scalable, secure systems utilizing both hybrid and Azure-native services such as Container Apps, Azure SQL, Key Vault, Application Gateway, and Entra ID. You will own and enhance the organization's security posture through network controls, VPN and firewall management, identity and access strategies, and compliance alignment, ensuring adherence to international standards and regulations. Additionally, you will develop automation solutions for deployment, monitoring, and scaling using tools like PowerShell, Python, Bicep, Logic Apps, and Terraform. Collaboration with developers, data teams, and global program stakeholders is essential to deliver secure, reliable, and purpose-driven solutions that advance FCA's international mission, alongside documenting best practices, architecture diagrams, and incident response processes. MINISTERIAL DUTIES These responsibilities are critical to the FCA mission, and this position plays a vital role in our ministry. FCA expects all functions and responsibilities outlined below to be carried out with a heart surrendered to serving God as a form of worship. Agree with, and abide by, FCA's Christian Community Statement. Follow a spiritual rhythm including daily prayer and Bible study to seek the Lord's will for FCA. Lead, conduct and provide spiritual leadership for staff, volunteers, coaches and athletes through prayer, Bible study, worship and living by example so they are equipped to serve others. Connect to and participate in a local church through worship and weekly involvement. Conduct yourself in a manner that affirms biblical standards of conduct in accordance with FCA's Christian beliefs (see FCA's Christian Community Statement) at all times. POSITION RESPONSIBILITIES Develop, implement, and maintain FCA's infrastructure. This includes an array of workloads, network devices, and data storage systems, all of which are pivotal to the ministry's operation. Bring to fruition and manage rigorous security measures that effectively protect FCA's data. In addition, ensure these measures are in compliance with all relevant regulations and industry standards. Regularly monitor and optimize system performance, taking immediate action to troubleshoot any issues that may arise, thereby ensuring minimal disruption to business operations. Collaborate closely with the Technology team, sharing knowledge, and working together to hone both infrastructure and security protocols and processes, thereby enhancing FCA's digital environment. Prepare and consistently maintain comprehensive documentation of the network infrastructure and the implemented security measures, ensuring up-to-date records are readily available. Manage relationships and administer agreements with technology vendors and service providers. Actively contribute to the overall Technology team and, consequently FCA's ministry, by willingly helping others in their duties when the need arises and offering positive suggestions for improvement in all areas. COMPETENCIES Technical knowledge: In-depth knowledge of security and infrastructure technologies, including network architecture, identity and access management, endpoint protection, cloud security, and more. You have hands-on experience with a wide range of infrastructure, networking, and application security concepts. Risk management: Ability to identify and assess security and availability risks - develop and implement effective risk management strategies. Compliance: Understanding of relevant regulations and compliance requirements, and ability to adopt and adhere as appropriate. Communication: Excellent communication skills, including the ability to clearly communicate technical concepts to non-technical peers or stakeholders who may have little domain knowledge. Collaboration: Ability to work effectively with other teams and stakeholders, including IT, development, and organizational teams. Problem solving: Ability to analyze complex problems and develop creative and stable solutions. You're deeply knowledgeable and broadly capable - a systems thinker with the technical chops to make things happen. EXPERIENCE Bachelor's degree in Computer Science, Information Technology, or a related field preferred 5-8 years of experience in IT Security and IT Infrastructure. Excellent communication and problem-solving skills. Professional-level certifications or skill levels equivalent to CCNP, CISSP, CEH, CySA, AWS/Microsoft Solutions Architect, etc. Practical experience leading or supporting cloud migration efforts, ideally into Microsoft Azure. You understand the technical, organizational, and operational challenges of migrating from on-premises to cloud platforms, and you know what success looks like in these transformations.

Lumen connects the world. We are igniting business growth by connecting people, data and applications - quickly, securely, and effortlessly. Together, we are building a culture and company from the people up - committed to teamwork, trust and transparency. People power progress. We're looking for top-tier talent and offer the flexibility you need to thrive and deliver lasting impact. Join us as we digitally connect the world and shape the future. **The Role** This unique position requires technical information systems skills / system administrative as well as ability to write and present solutions to the end customer and program management under government requirements to meet risk management and Information Assurance guidelines, acting as a direct customer liaison for the program. The position must be able to provide system administrative solutions and oversight with the ability to offer hands-on support to include software and hardware updates or installation of customer required controls. Research and recommendations for old and new software and hardware secure systems a must. Additionally, this position will support corporate information system requirements in the program space as needed and be part of the overall company security team as well. Current TS/SCI clearance a must. Familiarity with DOD NISPOM Chapter 8 as well as ICD 503 preferred. **Location** This is a full-time, on-site position based in Herndon, VA. 2900 TOWERVIEW RD **The Main Responsibilities** + Install, Maintain, and Secure Microsoft Windows 2016 Hyper-V hosts and virtual servers with various roles. + Create, update and deploy Windows 10 based virtual desktops and Terminal Session Services. + Deep working knowledge of Active Directory, Group Policy, File servers (DFS), Print servers, DNS, IIS, Exchange, Database (SQL and Oracle). + Monitor & verify backup jobs using BackupExec, Disaster recovery efforts. + Antivirus - proactive measures for virus and malicious code + Configure and maintain file shares and access permissions. + Server performance Monitoring. + Maintain and secure Windows Based Thinclients. + Procure and implement new hardware, System Imaging, Create and implement group policies, Security script writing, Vulnerability assessment and mitigation. + Maintain systems in accordance w/ system security plans, implement new requirements as needed. + Troubleshoot user issues. + Maintain network printers. + Data Transfer Officer for information systems. + Support multiple networks with differing classification levels. + Crypto Custodian for government information system + Maintain PBX and Cisco Switches. **What We Look For in a Candidate** + 5+ years of relevant system administration, user support and security control implementation work experience. + Undergraduate degree in Computer Science Engineering, related field, or equivalent experience. + Considered expert in one (or more) of the following areas: Networking, Microsoft Windows Operating System, Security hardening + Self-starter with strong self-management skills, with an ability to organize and manage multiple priorities. + Ability to apply professional judgment in critical thinking and problem solving + Team oriented Preferred Qualifications: + 5+ years of dedicated system administration supporting all levels from tier 1 user desktop support to tier 3 backend server and network support + Hands on experience managing Hyper-V, Active Directory, Exchange, DNS, File servers, Print servers, Backup systems, Anti Virus system + Hands on experience using information security tools such as NESSUS, HBSS, ACAS, SCAP. + Hardware troubleshooting and repair, evaluate and recommend new product + Professional/technical certifications, such as A+, Network+, Security+, MCSA, MCSE, CCNA or equivalent IT or Information Security related certifications. **Compensation** This information reflects the anticipated base salary range for this position based on current national data. Minimums and maximums may vary based on location. Individual pay is based on skills, experience and other relevant factors Location Based Pay Ranges: $114,082 - $152,109 in these states: VA \#GSS \#LI-MG1 Lumen offers a comprehensive package featuring a broad range of Health, Life, Voluntary Lifestyle benefits and other perks that enhance your physical, mental, emotional and financial wellbeing. We're able to answer any additional questions you may have about our bonus structure (short-term incentives, long-term incentives and/or sales compensation) as you move through the selection process Learn more about Lumen's: + Benefits (**************************************************** + Bonus Structure \#LI-Onsite Requisition #: 340500 **Background Screening** If you are selected for a position, there will be a background screen, which may include checks for criminal records and/or motor vehicle reports and/or drug screening, depending on the position requirements. For more information on these checks, please refer to the Post Offer section of our FAQ page (************************************* . Job-related concerns identified during the background screening may disqualify you from the new position or your current role. Background results will be evaluated on a case-by-case basis. Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records. **Equal Employment Opportunities** We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, gender expression, marital status, family status, pregnancy, or other legally protected status (collectively, "protected statuses"). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training. **Disclaimer** The job responsibilities described above indicate the general nature and level of work performed by employees within this classification. It is not intended to include a comprehensive inventory of all duties and responsibilities for this job. Job duties and responsibilities are subject to change based on evolving business needs and conditions. In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information. Please be advised that Lumen does not require any form of payment from job applicants during the recruitment process. All legitimate job openings will be posted on our official website or communicated through official company email addresses. If you encounter any job offers that request payment in exchange for employment at Lumen, they are not for employment with us, but may relate to another company with a similar name.

Identity & Security Engineer - Browser Security Second preference is other tech hubs Dallas TX, Columbus OH, Cleveland OH , Pheonix AZ and Birmingham AL Shift Times/Preferred Time Zone: M-F 9-4 EST but also night and weekend work (flex schedule) network configuration adjustments after hours and weekends Length of Assignment: 12 months Organizational Structure And Impact: Impact/Function this role has within the bank/LOB i.e., mitigating risk, cost reduction, revenue, etc.: Mitigating Risk/ fraud and security operations Team Background and Preferred Candidate History: Security engineering team, mitigating risks, fraud and security operations Key responsibilities: Deploying Island.io Browser to PNC Must have technical skills/experience (ask for alternative/tool/version): + Island.io Browser exp + Security browser exp + Browser extensions Flex Skills: Azure or AWS Cloud exp Education: No Bachelor's needed, Exp more important Screening Questions: + Describe your experience in detail with Island.io Browser or other security browsers? + Describe your experience with OS deployment of Island.io Browser or other security browser? Logistics (Interviews) : 2 step, 1 hr first 2nd 30 mins + 1st round: Hm and a few Sr engineers (used to narrow down to 2nd round) + 2nd round: HM and Mgr Skills: + Browser extensions + Island.io Browser + Security browser exp Share your resume with ***********************. Also connect me at LinkedIn : (16) Ariz J. Khan | LinkedIn (************************************************** Ref: #404-IT Pittsburgh System One, and its subsidiaries including Joulé, ALTA IT Services, CM Access, TPGS, and MOUNTAIN, LTD., are leaders in delivering workforce solutions and integrated services across North America. We help clients get work done more efficiently and economically, without compromising quality. System One not only serves as a valued partner for our clients, but we offer eligible full-time employees health and welfare benefits coverage options including medical, dental, vision, spending accounts, life insurance, voluntary plans, as well as participation in a 401(k) plan. System One is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, age, national origin, disability, family care or medical leave status, genetic information, veteran status, marital status, or any other characteristic protected by applicable federal, state, or local law.

About Splash Our mission is to bring the joy of music making to everyone, and we've been pioneering the intersection of artificial intelligence and music since 2017. We've made significant strides in connecting artists and fans, particularly through our engaging experiences on Roblox, which have captivated millions of young users. By leveraging the power of AI, we're reshaping the way people interact with and create music. With the support of renowned investors including Amazon's Alexa Fund and Khosla Ventures, Splash is poised for rapid growth. We're actively expanding our diverse team of talented musicians, engineers, and creatives who share our passion for pushing the boundaries of what's possible in music and AI. The RoleWe're looking for a contractor who lives at the intersection of growth marketing and community obsession. This isn't a “post on IG and vibe” kind of gig. It's a go-where-the-fans-are, experiment fast, and drive real results position. As our Digital Growth & Community Hacker, you'll be responsible for fueling discovery, listens, and engagement with Splash's music and creator experiences. Our community doesn't need to be taught how to be creative-they already are. Your job is to get more people discovering the music, sharing their mixes, and falling in love with the experience. From Reddit to Discord, SoundCloud to TikTok, you'll find the places where music lovers and creators hang-and give them a reason to check us out. You're smart about attention. You know how to earn it, buy it, and build it. One day, you might run a scrappy paid campaign; the next, you're DMing a micro-influencer or launching a meme-worthy remix challenge. You're not just tending to our garden-you're out planting new ones. The goal? Wild growth in play counts, driven by community connection, creativity, and cultural fire. We are open to part time contractors with the potential to consider full time contractors for the role. The initial engagement will be 3 months with the opportunity to extend or grow in our team. We're a remote-first team working across time zones, with many teammates based in Australia-so some overlap with Australian business hours is essential. What You'll Do- Drive discovery and listens for Splash mixes and music experiences across platforms- Execute creative, high-impact digital marketing experiments and campaigns- Find and engage in communities across Reddit, Discord, YouTube, TikTok, and more- Partner with creators, influencers, and tastemakers to amplify our presence- Help run or support paid media efforts (e.g. TikTok, Meta) to boost traction- Craft content and engagement loops that draw users in and keep them hooked- Revitalize existing social media platforms and build out new growth paths- Collaborate cross-functionally to plan and execute strategic growth sprints- Set goals, track performance, and apply learnings in real-time- Play an integral role in shaping our brand presence and cultural visibility About You- Deeply fluent in music culture, internet fandom, and creative communities- Proven experience growing digital communities and audiences-especially Gen Z/Gen Alpha- Creative, scrappy, and experimental-you move fast and think outside the box- Not afraid to talk to strangers on the internet; love being where the buzz is- Strong writing chops and meme fluency-you understand voice, timing, and tone- Adept with platforms like TikTok, Discord, YouTube, Reddit, and Instagram- Able to independently ideate, plan, and execute marketing and engagement initiatives- Curious and data-minded-you seek out insights to improve what you're building- Experience in managing digital campaigns, content calendars, and creator partnerships- High accountability and adaptability; thrives in a remote, fast-moving team Nice to Have- Experience in or passion working with digital experiences- Prior work with direct-to-consumer tech, games, or music products- Familiarity with paid digital marketing (Meta Ads, TikTok Ads, etc.)- Experience building or managing youth-centric gaming or music communities What to Expect- Our team is remote-first; you will be working with colleagues on Australian timezone and some degree of overlap with this team is expected.- Work alongside our senior executives, who bring a wealth of knowledge from previous roles at SoundCloud, Spotify, Twitch, and YouTube.- Work within a small, dynamic team backed by leading investors including Amazon's Alexa Fund, Khosla Ventures, BITKRAFT Ventures, and King River Capital.- Be part of a talented group of creatives, musicians, engineers that value initiative and imagination - we also love music and gaming. Diversity, Equity, and InclusionMusic has the incredible ability to bridge divides and bring people together, regardless of their background or identity. Like the industry we work within, diversity, equity, and inclusion are at the heart of everything we do. We are committed to creating an inclusive environment where everyone feels valued, respected, and empowered. We actively seek out and welcome voices from all backgrounds and believe that diverse perspectives fuel our creativity and drive success. Application ProcessPlease provide your application directly by hitting Apply. We receive large numbers of applications, to stand out please address the selection criteria in the application questions. We are not currently working with recruiters on this role. For more info, visit splashmusic.com.PDF preferred

CFA Institute is seeking a hands-on Senior Security Engineer to design, build, and harden the systems that protect our global enterprise. In this role, you'll partner with Site Reliability Engineering, IT, and business teams to embed security into our platforms and products-improving detection, prevention, and response while ensuring compliance with industry standards. This position sits within Strategic Operations (reporting to the Senior Director, Global Support Services and aligned to the CISO organization) and may be based in approved U.S. jurisdictions with flexible work arrangements. Please note: CFA Institute will not provide work authorization or visa sponsorship for this position (including student or temporary worker visas). What You'll Do * Engineer & Architect Defenses: Design, implement, and maintain secure infrastructure, applications, and services; automate controls to strengthen detection, prevention, and response. * Advance Cyber Hygiene: Lead system hardening, identity management, and patch governance; build guardrails with SRE across CI/CD pipelines, cloud platforms, and enterprise systems; ensure adherence to internal policies and external frameworks. * Respond & Evolve: Support proactive monitoring, logging, and threat detection; participate in incident response, root-cause analysis, forensics, and corrective actions; evaluate and implement emerging technologies to boost threat intelligence and detection capabilities. * Advise & Enable: Serve as a trusted SME to cross-functional partners; guide secure design during tech adoption and transformation; contribute to training and awareness that fosters a culture of resilience. What You'll Bring Minimum Qualifications * Bachelor's degree in Computer Science, Information Security, or related field (or equivalent combination of education and experience). * 5-7+ years in security engineering, infrastructure security, or related roles. * Depth in at least two areas such as cloud security (AWS/Azure/GCP), application security, network security, endpoint protection, or identity and access management. * Hands-on experience with SIEM, IDS/IPS, vulnerability management, and security automation tools. * Scripting proficiency (Python, PowerShell, Bash, etc.). * Working knowledge of NIST, ISO 27001, CIS Benchmarks, and OWASP. Preferred Qualifications * Professional certifications such as CISSP, OSCP, GIAC, or CCSP. Why Join Us? * Impact that matters: Your engineering decisions directly protect the integrity of our systems and the trust of a global community. * Collaborative culture: Work closely with SRE, IT, and product partners to embed security at every layer-while mentoring others and elevating cyber hygiene across the enterprise. * Growth mindset: Bring curiosity and courage to experiment, learn, and continuously improve in a supportive environment aligned to our leadership capabilities of being strategic, authentic, accountable, agile, and growth-oriented. At CFA Institute, we are committed to transparency and equity in our hiring process. In compliance with wage transparency laws in many of the jurisdictions in which we recruit, we provide the following information regarding compensation for this position: Expected salary range: $135,000 - $155,000 Other benefits include eligibility for annual incentives, 12% retirement employer contribution, and competitive medical benefits. All salary ranges are subject to adjustment based on experience, education, and other factors relevant to the position. CFA Institute is an equal opportunity employer and encourages applications from all qualified individuals. #LI-ML1 About CFA Institute CFA Institute are the global leader in investment excellence and ethics. With nearly 200,000 charterholders across 160 markets, we drive professional growth, ethical behavior, and better markets. We care about our employees' well-being, offering industry-leading benefits like: * Comprehensive health coverage for you and your family * Generous leave and time off * Competitive retirement plans * Flexible work options * Wellness, education, and support programs If you feel this opportunity could be the next step in your career, we encourage you to click "Apply" and complete our three-minute application. Be part of a team committed to putting investors first and growing economies. Follow us @CFAInstitute on LinkedIn and X. Important Message: Your application must clearly demonstrate how you meet the requirements as CFA Institute cannot make assumptions about your education, experience, or location. We thank all those who apply. Only those selected for further consideration will be contacted. We are an Equal Opportunity Employer. CFA Institute prohibits both discrimination and harassment with regard to all identifying characteristics: any individual employee, group of employees, or prospective employee on the basis of race, color, national origin, citizenship or immigration status, religion, creed or belief, age, marital or partnership status, marital or family status, care giver status, pregnancy and maternity, sexual and other reproductive health decisions, physical abilities/qualities, disability, sexual orientation, gender, gender identity or expression, predisposing genetic characteristic, military or veteran status, status as a victim or witness of domestic violence or sex offense or stalking, unemployment status, infectious disease carrier status, migrant worker status, educational background, socio-economic status, geographic location and culture or any other basis protected by applicable law. This policy impacts all aspects of employment, including but not limited to, recruitment, hiring, compensation, training, development, promotion, demotion, layoff, recall, furlough, transfer, leave of absence, and dismissal. This is a global policy that applies to all CFA Institute employees, regardless of location. If, due to a disability or current medical condition, you need an accommodation or assistance to complete a job application, you can request one at any stage of the recruitment process. Please send an email to ******************************* noting the accommodations or assistance you are requesting. Please do not include any medical or health information in this email. We will review your request and contact you to discuss the possible options and arrangements. We will try our best to provide you with an accommodation or assistance that meets your needs and respects your preferences. Our application is not compatible with Internet Explorer (IE). We recommend using Chrome.

CFA Institute is seeking a hands-on Senior Security Engineer to design, build, and harden the systems that protect our global enterprise. In this role, you'll partner with Site Reliability Engineering, IT, and business teams to embed security into our platforms and products-improving detection, prevention, and response while ensuring compliance with industry standards. This position sits within Strategic Operations (reporting to the Senior Director, Global Support Services and aligned to the CISO organization) and may be based in approved U.S. jurisdictions with flexible work arrangements. Please note: CFA Institute will not provide work authorization or visa sponsorship for this position (including student or temporary worker visas). What You'll Do Engineer & Architect Defenses: Design, implement, and maintain secure infrastructure, applications, and services; automate controls to strengthen detection, prevention, and response. Advance Cyber Hygiene: Lead system hardening, identity management, and patch governance; build guardrails with SRE across CI/CD pipelines, cloud platforms, and enterprise systems; ensure adherence to internal policies and external frameworks. Respond & Evolve: Support proactive monitoring, logging, and threat detection; participate in incident response, root-cause analysis, forensics, and corrective actions; evaluate and implement emerging technologies to boost threat intelligence and detection capabilities. Advise & Enable: Serve as a trusted SME to cross-functional partners; guide secure design during tech adoption and transformation; contribute to training and awareness that fosters a culture of resilience. What You'll BringMinimum Qualifications Bachelor's degree in Computer Science, Information Security, or related field (or equivalent combination of education and experience). 5-7+ years in security engineering, infrastructure security, or related roles. Depth in at least two areas such as cloud security (AWS/Azure/GCP), application security, network security, endpoint protection, or identity and access management. Hands-on experience with SIEM, IDS/IPS, vulnerability management, and security automation tools. Scripting proficiency (Python, PowerShell, Bash, etc.). Working knowledge of NIST, ISO 27001, CIS Benchmarks, and OWASP. Preferred Qualifications Professional certifications such as CISSP, OSCP, GIAC, or CCSP. Why Join Us? Impact that matters: Your engineering decisions directly protect the integrity of our systems and the trust of a global community. Collaborative culture: Work closely with SRE, IT, and product partners to embed security at every layer-while mentoring others and elevating cyber hygiene across the enterprise. Growth mindset: Bring curiosity and courage to experiment, learn, and continuously improve in a supportive environment aligned to our leadership capabilities of being strategic, authentic, accountable, agile, and growth-oriented. At CFA Institute, we are committed to transparency and equity in our hiring process. In compliance with wage transparency laws in many of the jurisdictions in which we recruit, we provide the following information regarding compensation for this position: Expected salary range: $135,000 - $155,000 Other benefits include eligibility for annual incentives, 12% retirement employer contribution, and competitive medical benefits. All salary ranges are subject to adjustment based on experience, education, and other factors relevant to the position. CFA Institute is an equal opportunity employer and encourages applications from all qualified individuals. #LI-ML1 About CFA Institute CFA Institute are the global leader in investment excellence and ethics. With nearly 200,000 charterholders across 160 markets, we drive professional growth, ethical behavior, and better markets. We care about our employees' well-being, offering industry-leading benefits like: Comprehensive health coverage for you and your family Generous leave and time off Competitive retirement plans Flexible work options Wellness, education, and support programs If you feel this opportunity could be the next step in your career, we encourage you to click “Apply” and complete our three-minute application. Be part of a team committed to putting investors first and growing economies. Follow us @CFAInstitute on LinkedIn and X. Important Message: Your application must clearly demonstrate how you meet the requirements as CFA Institute cannot make assumptions about your education, experience, or location. We thank all those who apply. Only those selected for further consideration will be contacted. We are an Equal Opportunity Employer. CFA Institute prohibits both discrimination and harassment with regard to all identifying characteristics: any individual employee, group of employees, or prospective employee on the basis of race, color, national origin, citizenship or immigration status, religion, creed or belief, age, marital or partnership status, marital or family status, care giver status, pregnancy and maternity, sexual and other reproductive health decisions, physical abilities/qualities, disability, sexual orientation, gender, gender identity or expression, predisposing genetic characteristic, military or veteran status, status as a victim or witness of domestic violence or sex offense or stalking, unemployment status, infectious disease carrier status, migrant worker status, educational background, socio-economic status, geographic location and culture or any other basis protected by applicable law. This policy impacts all aspects of employment, including but not limited to, recruitment, hiring, compensation, training, development, promotion, demotion, layoff, recall, furlough, transfer, leave of absence, and dismissal. This is a global policy that applies to all CFA Institute employees, regardless of location. If, due to a disability or current medical condition, you need an accommodation or assistance to complete a job application, you can request one at any stage of the recruitment process. Please send an email to ******************************* noting the accommodations or assistance you are requesting. Please do not include any medical or health information in this email. We will review your request and contact you to discuss the possible options and arrangements. We will try our best to provide you with an accommodation or assistance that meets your needs and respects your preferences. Our application is not compatible with Internet Explorer (IE). We recommend using Chrome.

For more than 40 years, Aspira has been the market-leading provider of software and services that help public agencies protect natural and cultural resources while making them accessible for all. Our platform supports everything from campground reservations to hunting licenses, helping millions of people discover, enjoy, and care for the outdoors. We share our client partners' mission: to steward resources for future generations, create opportunities for genuine enjoyment of the outdoors today, and expand access so more people can experience its benefits. Aspira is transforming its technology and service model to give agencies more capacity and insight-streamlined tools, smarter automation, and better connections with their communities. Our goal is simple: make it easier for our clients to conserve what matters most and for their customers to enjoy it to the fullest. The Ideal Candidate The Security Analyst is a proactive, detail-oriented professional with strong hands-on experience in cloud security monitoring, incident response, and log analysis. This individual will leverage Aspira's AWS-native tools and industry SIEM platforms to detect, analyze, and respond to threats while continuously improving security controls. The ideal candidate thrives in fast-paced environments, is curious and analytical, and collaborates closely with IT, DevOps, and Network Engineering teams. Key Responsibilities Monitoring & Threat Detection Monitor and correlate events across AWS CloudWatch, CloudTrail, GuardDuty, and Security Hub. Configure and maintain Rapid7, LogRhythm, and related monitoring tools for ingestion of logs from servers, PCs, and laptops. Develop detection rules, alerts, and dashboards for real-time visibility into threats and anomalies. Conduct continuous log analysis, identifying suspicious activity, compromised accounts, or policy violations. Monitor logs and events across AWS and on-premises environments (Dallas and China offices), ensuring consistent visibility into threats. Incident Response & Investigation Perform Tier 1/Tier 2 triage of alerts and escalate to senior security/engineering staff as appropriate. Support incident response exercises, playbook development, and forensic analysis. Lead investigations of security events: review indicators of compromise, assess impact, and recommend containment/remediation actions. Collaborate with IT Operations, Network Engineering, and DevOps to remediate vulnerabilities and harden systems. Escalate incidents and findings to the Senior Cloud Network Engineer or Senior Security System & Network Engineer as appropriate, with oversight from the Director of Information Security. Compliance & Governance Support compliance initiatives (PCI, SOC, NIST, CIS) by maintaining monitoring evidence, documenting incidents, and assisting with audit requests under the guidance of the Director of Information Security. Document incidents, vulnerabilities, and remediation efforts for audit and reporting purposes. Assist in the rollout and implementation of zero-trust controls (MFA, IAM policies, endpoint protection) as directed by the Director of Information Security." Automation & Continuous Improvement Create and maintain scripts and automation (Python, PowerShell, Terraform) for log ingestion, enrichment, and reporting. Develop runbooks for common security incidents and monitoring alerts. Recommend enhancements to SIEM rules, AWS GuardDuty findings, and log retention strategies. Identify and implement emerging security best practices to keep pace with evolving threats. Contribute to security KPIs, including SIEM coverage across assets, incident response times, and patch/vulnerability remediation metrics, by providing accurate monitoring and escalation Qualifications 5+ years of experience in Security Operations, Threat Monitoring, or Incident Response. Strong familiarity with AWS-native security/monitoring tools (CloudWatch, CloudTrail, Security Hub, GuardDuty). Hands-on experience with SIEM platforms, preferably Rapid7 InsightIDR, LogRhythm, or Splunk. Knowledge of security frameworks (NIST 800-53, CIS Benchmarks, PCI DSS). Understanding of networking (TCP/IP, firewalls, VPNs) and operating system hardening (Windows, Linux). Strong analytical skills with experience conducting log analysis, packet captures, and event correlation. Practical scripting/automation knowledge (Python, PowerShell, Bash). Relevant certifications a plus (CompTIA Security+, GSEC, AWS Security Specialty, CEH, or similar).

An Information Security Analyst is responsible for protecting an organization's systems and data by identifying risks, implementing security controls, and ensuring compliance with policies and regulations. They monitor for threats, investigate incidents, and collaborate with IT and development teams to embed security into technology operations, maintaining a strong and proactive security posture across the organization. Principle Responsibilities Monitor, analyze, and respond to security alerts and incidents to protect sensitive member and staff information. Conduct regular risk assessments across ministry and operational systems, recommending practical steps to strengthen security. Develop and maintain security policies, standards, and procedures that reflect organizational values of stewardship and integrity. Partner with IT, development, and ministry teams to ensure security is embedded into systems, applications, and digital tools used across campuses. Manage and optimize core security platforms (e.g., endpoint protection, identity access, email security, SIEM, MFA) to safeguard all environments. Support compliance with applicable data protection standards and nonprofit regulations, ensuring responsible handling of personal and financial data. Perform periodic access reviews and internal audits to confirm appropriate data access and adherence to policy. Lead or assist in incident response efforts, including investigation, documentation, and recovery. Provide training and guidance to staff and volunteers to promote a culture of cybersecurity awareness and safe technology use. Collaborate with vendors and external partners to align solutions with organizational needs, budget constraints, and mission objectives. Required Skills and Job Complexity a) Unique Skills and Knowledge Excellent communication skills, with the ability to convey complex security concepts clearly. Personable and outgoing, with a friendly demeanor. Technically savvy and comfortable using various security and compliance software platforms. Eagerness to learn and adapt to new technologies and security practices. Passionate about customer support and the role it plays in creating a secure, customer-centric team. Strong problem-solving skills with the ability to prioritize and manage multiple tasks. Flexibility and adaptability to evolving security threats and technologies. Proactive and mission-driven, dedicated to seeing tasks through to completion. b) Problem Solving and Decision Making High level of resourcefulness, knowing when and where to seek information or ask for help Solution-oriented approach to security challenges. Excellent listening skills with the ability to ask probing questions, understand concerns, and resolve issues. c) Relational Connections Gateway Staff (all locations) Part-time staff and high-capacity volunteers. Maintain vendor relationships d) Physical Capabilities Able to pick up and carry large items such as monitors and desktop computers, cameras, servers and uninterruptible power supplies. Competencies Critical to this Position Core Competencies Punctual and reliable Customer service-centered Proactive Team player Teachable Technical Competencies 5+ years of experience in IT security and compliance Identity & Access Management (IAM): Administer and secure user access across systems using tools like Microsoft Entra ID, Okta, and MFA enforcement. Threat Monitoring & Incident Response: Detect, investigate, and respond to security events using SIEM tools such as Microsoft Sentinel. Endpoint & Network Protection: Manage and maintain defenses like Microsoft Defender, firewalls, and secure configurations for on-prem and cloud environments. Risk & Vulnerability Management: Identify, assess, and remediate security risks through regular vulnerability scans, audits, and patching processes. Compliance & Data Protection: Ensure alignment with data privacy standards (e.g., NIST, CIS Controls, GDPR, HIPAA) and safeguard sensitive member and staff information. Key Performance Measurements Timely completion of assigned tasks and projects. Ability to give and receive feedback to the Technology Team as well as end users. Contribution to knowledge base articles and security documentation. Ability to quickly understand, maintain, and implement new security technologies. *This description is not all inclusive, and other duties may be assigned as necessary. Gateway Church does not discriminate in employment opportunities or practices on the basis of race, color, sex, national origin, age, disability, or any other characteristic protected by law as it applies to churches. However, Gateway Church does discriminate on the basis of religion. Requirement: All Staff must be a member or become a member of Gateway Church upon employment