Cyber Security Analyst Jobs in Vermont

Meta is seeking a highly skilled Security Engineer to join our Infrastructure Data Center (IDC) team as an individual contributor (IC). As a key member of our team, you will play a critical role in managing security risk to our global and rapidly scaling Data Center infrastructure footprint and innovative operational processes and services. This role will specifically focus on defining, operationalizing, and maturing a clear mid-to-long term security strategy for IDC's subsea infrastructure and operations. **Required Skills:** IDC Security Analyst Responsibilities: 1. Establish and mature a risk-informed baseline strategies and programs to secure a diverse global portfolio of mission-critical infrastructure and operations. 2. Serve as a comprehensive security expert accountable for security risk management across multiple logical and physical security domains (e.g., Data Security, Physical Security, Security Systems Architecture and Design, Governance Risk and Compliance, Incident Response, Threat Modeling, and/or Security Risk Management). 3. Assess security risk and communicate information about security threats and vulnerabilities to inform business decisions and drive strategy. 4. Assess and report on effectiveness of security controls to inform security strategy, manage security risk, and enable business operations. 5. Develop technical security guidance (e.g., standards, guidelines, playbooks) that aligns corporate policy, industry best practices, and regulatory requirements for securing IDC infrastructure. 6. Collaborate with network, software, and production engineering teams to develop security solutions that address physical and cyber/logical threats at scale. 7. Influence and align work to the overarching team and organizational vision and strategy. 8. Coach, mentor, support and care for the team to enable long-term career development, happiness, and success at scale. **Minimum Qualifications:** Minimum Qualifications: 9. Bachelors degree in Cyber Security or Computer Science or related technical field or equivalent relevant experience in information security. 10. 10+ years combined experience in physical security, logical/cyber security, risk management, compliance, and/or mission-critical infrastructure design, construction and operations 11. Technical experience across multiple security disciplines 12. Experience establishing, scaling, and maturing security services and programs 13. Experience managing, executing, and successfully delivering multiple complex projects and programs simultaneously 14. Experience identifying and communicating security roadmaps, risks, and requirements to inform leadership and drive execution-focused partners 15. Basic understanding and awareness of prevailing industry standards and guidelines **Preferred Qualifications:** Preferred Qualifications: 16. Master's degree in a related field 17. Experience securing large scale and globally dispersed mission-critical infrastructure (e.g., hyperscaler data centers, subsea and terrestrial cable, nuclear, major utilities, etc.) 18. Experience working on or managing projects that have enterprise-wide impact and/or multi-organization cross functional stakeholders 19. Experience in data analysis, visualization, and automation to streamline processes and measure security efficiency and effectiveness. 20. Experience securing physical and logical network infrastructure and operations **Public Compensation:** $167,000/year to $233,000/year + bonus + equity + benefits **Industry:** Internet **Equal Opportunity:** Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment. Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@fb.com.

We are the movers of the world and the makers of the future. We get up every day, roll up our sleeves and build a better world -- together. At Ford, we're all a part of something bigger than ourselves. Are you ready to change the way the world moves? The In-Vehicle Cybersecurity Engineer will act as a technical lead designing security into our vehicles. Engineers will evaluate, critique, and drive secure designs from concept to implementation. In-Vehicle Cybersecurity Engineers identify new methods of securing our technologies from drafting specifications to executing testing. Engineers need to be able to understand and evaluate risk for in-vehicle systems. Recognizing and accommodating the limitations of embedded in-vehicle systems is essential. Engineers are expected to take ownership of assignments including developing in-depth understanding of the technologies under review, working to close security gaps and mitigate identified vulnerabilities, and report out to security management. Over time, Engineers will grow to become subject matter experts acting to develop and mature security controls and features in the vehicle. **What you'll do...** + Own ECU and Vehicle level cyber security design and process integration + Interface with cross-functional teams on technical issues related to cyber security + Perform risk analysis (i.e. TARA) so that appropriate countermeasures can be developed + Develop and maintain security requirements and design validation methodologies (DVM) + Develop and maintain technical documentation as required + Provide training and consulting to internal Ford function teams + Support major product programs/new features with security needs + Collaborate on Advanced Engineering projects with internal and external partners + Research technologies and security benchmarking data gathering + Some traveling may be required (conferences, regional team meetings, government/academia visits, etc.) **You'll have...** + Bachelor's Degree in Electrical Engineering, Computer Engineering, Software Engineering or Computer Science OR a combination of education and experience + 5+ years of experience with embedded, IoT and/or automotive systems cyber security + Experience with security system engineering, development, and testing + Experience with networking and communication protocols (e.g. firewall config, TLS, MACsec, etc.) + Experience designing cyber security controls such as secure communication/networking, secure gateway, IDS, IPS, secure boot, etc. + Experience developing and maintaining engineering documentation including requirements, specifications, test plans, etc. + Self-starter with ability to work independently and collaboratively + Strong communication and analytical skills **Even better, you may have...** + Master's Degree in Cyber Security, Electrical Engineering, Computer Engineering, Software Engineering or Computer Science is a plus + 7+ years of experience with embedded, IoT and/or automotive systems cyber security + Experience with in-vehicle network architecture, modules, and protocols (Automotive Ethernet, CAN/CAN-FD, J1939, USB, SPI, UART, JTAG, etc.) + Experience with symmetric and asymmetric cryptography, digital signature, hash, message authentication, encryption, key exchange + Experience with HSM, SHE, TEE, SELinux, hypervisor, etc. + Experience with SecOC, AUTOSAR + Understanding of embedded RTOS and Linux based operating systems + Understanding of system level architecture, development, design principals + Experience with at least one modern software programming language (C, C++, C#, Python, Java, etc.) + CISSP, GSEC, etc. are a plus This description outlines the general nature and scope of work typically performed in this job. It is not intended to be an exhaustive list of all duties, responsibilities, knowledge, skills, work requirements, etc. It may vary slightly based on business or geographic needs and is subject to being reviewed and updated periodically. You may not check every box, or your experience may look a little different from what we've outlined, but if you think you can bring value to Ford Motor Company, we encourage you to apply! As an established global company, we offer the benefit of choice. You can choose what your Ford future will look like: will your story span the globe, or keep you close to home? Will your career be a deep dive into what you love, or a series of new teams and new skills? Will you be a leader, a changemaker, a technical expert, a culture builder...or all of the above? No matter what you choose, we offer a work life that works for you, including: - Immediate medical, dental, vision and prescription drug coverage - Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care and more - Family building benefits including adoption and surrogacy expense reimbursement, fertility treatments, and more - Vehicle discount program for employees and family members and management leases - Tuition assistance - Established and active employee resource groups - Paid time off for individual and team community service - A generous schedule of paid holidays, including the week between Christmas and New Year's Day - Paid time off and the option to purchase additional vacation time. For a detailed look at our benefits, click here: ******************************* (**************************************************************************************************************************************************************************** This position is a range of salary grades **7-8.** Visa sponsorship is not available for this position. SOUTHEAST MI RESIDENTS: Please note, this job is posted as remote unless the selected candidate lives within 50 miles of Dearborn, MI. In this case we request the candidate to be on-site 1-2 days a week. Candidates for positions with Ford Motor Company must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire. We are an Equal Opportunity Employer committed to a culturally diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status or protected veteran status. In the United States, if you need a reasonable accommodation for the online application process due to a disability, please call **************. \#LI-Remote **Requisition ID** : 41638

Description & Requirements Reporting to the Sr. Manager for the Program Security Services team (US Services), the Lead Security Analyst-ISSO is responsible for managing the overall security posture of their assigned projects. Acting as an independent contributor, the Lead Analyst-ISSO will document and validate security compliance requirements, as defined in client contracts and established regulatory frameworks (NIST 800-53, HIPAA, IRS 1075, CMS MARS-E/ARC-AMPE, PCI-DSS). This position requires broad knowledge of Information Technology, including cloud providers such as Azure and AWS. This role will also manage stakeholder relationships with both internal and external customers. US citizenship is required per contract/client, at least one of the following certifications is required: CISSP (preferred), CISA or CISM. Experience with NIST 800-53 and the ability to travel up to 10% is required. Essential Duties and Responsibilities: - Responsible for ensuring information security for an assigned area of Business/Project focusing on key areas of risk, as outlined in the Information Security policy, under the direction of the Information Security management team. - Conduct Information Security risk assessments and compliance evaluations for infrastructure and application assets within required timeframes and to industry standards and regulatory specifications. - Ensure controls are properly and fully implemented to address identified Information Security risks for assigned area of responsibility. - Define, create and maintain the documentation for certification and accreditation of each information system in accordance with regulatory requirements. - Lead and support audits and client reviews of security posture; coordinate the collection, review and submission of Information Security deliverables and track the remediation of audit findings and exceptions. - Manage expectations with multiple stakeholders on projects and programs in conjunction with the Information Security team. - Promotion of Information Security awareness through various communication channels within the organization. - Collaborate with the Information Security team members on process improvements, secure design and recertification of MAXIMUS assets. Identify potential security control gaps by reviewing evidence provided by stakeholders, system generated reports and/or control implementation statements. Perform risk assessments using vulnerability management and application security testing reports. Initiate formal security exception process, when required. Develop Plan of Action and Milestones (POA&M) as necessary. Minimum Requirements - Please refer to the additional information section of the job requisition for this opening to determine clearance eligibility required. - Bachelor's degree and 7+ years of relevant professional experience required, or equivalent combination of education and experience. US Citizenship is REQUIRED per contract/client. At least one of the following certifications is REQUIRED: CISSP (preferred), CISA or CISM Experience with NIST 800-53 is REQUIRED Ability to travel nationally up to 10% is REQUIRED HIPAA experience is preferred Experience with Cloud providers, such as Azure and AWS Knowledge of any of the following security frameworks is preferred: IRS 1075, CMS MARS-E/ARC-AMPE, PCI-DS Demonstrates excellent interpersonal, presentation and verbal/written communication skills Demonstrates strong customer service skills Ability to communicate technical information to non-technical staff Ability to work collaboratively with a broad range of staff (including analysts, engineers and leadership) Proficiency with Microsoft Office SmartSheet experience is a plus Ability to perform comfortably in a fast-paced, deadline-oriented work environment Ability to organize and execute complex tasks Ability to work as a team member as well as independently #LI-JH1 #maxcorp #LeadSecurityAnalyst #InformationSystemSecurityOfficer #HotJobs0311LI #HotJobs0311FB #HotJobs0311X #HotJobs0311TH #TrendingJobs EEO Statement Active military service members, their spouses, and veteran candidates often embody the core competencies Maximus deems essential, and bring a resiliency and dependability that greatly enhances our workforce. We recognize your unique skills and experiences, and want to provide you with a career path that allows you to continue making a difference for our country. We're proud of our connections to organizations dedicated to serving veterans and their families. If you are transitioning from military to civilian life, have prior service, are a retired veteran or a member of the National Guard or Reserves, or a spouse of an active military service member, we have challenging and rewarding career opportunities available for you. A committed and diverse workforce is our most important resource. Maximus is an Affirmative Action/Equal Opportunity Employer. Maximus provides equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status or disabled status. Pay Transparency Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances. Minimum Salary $ 111,605.00 Maximum Salary $ 145,000.00

Building Name: UVMMC - In State Remote WorkerLocation Address: 111 Colchester Ave., Burlington VermontRegularDepartment: IT Cybersecurity RiskFull TimeStandard Hours: 40Biweekly Scheduled Hours:Shift: DayPrimary Shift: 8:00 AM - 4:30 PMWeekend Needs: NoneSalary Range: Min $42.01 Mid $52.52 Max $63.02Recruiter: Chelsea Therrien JOB SUMMARY: Develops, monitors, and maintains Information Security policies, standards, and procedures. Ensures Information Security policies, plans, controls, and processes are aligned with internal and external requirements including regulatory requirements and industry best practices. Develops and executes techniques and procedures to identify and track Information Security risks, issues, and incidents. Develops and executes response and investigative procedures for Information Security risks, issues, and incidents to limit negative impact, identify root cause, and guide remediation. Coordinates with other IT Staff and representatives throughout the Health Network to ensure Information Security is engrained into all technology and business practices. May focus on a specific Information Security domain such as Cybersecurity Operations, Identity Governance, or IT Risk & Resilience where targeted skills and expertise are required for the successful deployment and operation of the Information Security Program. Focus for this position includes: IT Change Management Develop, operate and maintain UVMHN IT Change Management functions Facilitate change management processes including change control meetings, communications and workflows Operate, maintain and improve change management program scope, process, procedure and workflows Continuously improve change management functions in response to changes in IT structure, risk tolerance, operational workflows and technology IT Testing Develop and operate UVMHN's IT testing program Scope, plan and facilitate automated and manual testing processes with internal and external partners Conduct scoping, review, and onboarding of new automated testing for critical IT systems Coordinate development and maintenance of test script portfolios Maintain testing schedules and roadmaps Coordinate deployment and maintenance of testing equipment and systems IT Release Management Develop and implement release management program for IT systems in support of critical operational and clinical functions Define release scope, frequency and processes in coordination with IT and Operational stakeholders Coordinate system and application releases with IT and operational stakeholders Integrate IT Testing and Release Management programs IT Go-live governance Develop and maintain criteria for IT system and application go-live Implement go-live governance and workflows Measure and monitor go-live success Integrate go-live governance with intake, risk management, SAFe Agile and Change Management functions as needed EDUCATION: Bachelor's Degree in Information Security, Computer Science or Information Systems or commensurate experience EXPERIENCE: 3 or more years of experience in an Information Security or Information Technology role.

Building Name: UVMMC - In State Remote Worker Regular Department: IT Cybersecurity Risk Full Time Standard Hours: 40 Biweekly Scheduled Hours: Shift: Day Primary Shift: 8:00 AM - 4:30 PM Weekend Needs: None Salary Range: Min $42.01 Mid $52.52 Max $63.02 Recruiter: Chelsea Therrien JOB SUMMARY: Develops, monitors, and maintains Information Security policies, standards, and procedures. Ensures Information Security policies, plans, controls, and processes are aligned with internal and external requirements including regulatory requirements and industry best practices. Develops and executes techniques and procedures to identify and track Information Security risks, issues, and incidents. Develops and executes response and investigative procedures for Information Security risks, issues, and incidents to limit negative impact, identify root cause, and guide remediation. Coordinates with other IT Staff and representatives throughout the Health Network to ensure Information Security is engrained into all technology and business practices. May focus on a specific Information Security domain such as Cybersecurity Operations, Identity Governance, or IT Risk & Resilience where targeted skills and expertise are required for the successful deployment and operation of the Information Security Program. Focus for this position includes: IT Change Management * Develop, operate and maintain UVMHN IT Change Management functions * Facilitate change management processes including change control meetings, communications and workflows * Operate, maintain and improve change management program scope, process, procedure and workflows * Continuously improve change management functions in response to changes in IT structure, risk tolerance, operational workflows and technology IT Testing * Develop and operate UVMHN's IT testing program * Scope, plan and facilitate automated and manual testing processes with internal and external partners * Conduct scoping, review, and onboarding of new automated testing for critical IT systems * Coordinate development and maintenance of test script portfolios * Maintain testing schedules and roadmaps * Coordinate deployment and maintenance of testing equipment and systems IT Release Management * Develop and implement release management program for IT systems in support of critical operational and clinical functions * Define release scope, frequency and processes in coordination with IT and Operational stakeholders * Coordinate system and application releases with IT and operational stakeholders * Integrate IT Testing and Release Management programs IT Go-live governance * Develop and maintain criteria for IT system and application go-live * Implement go-live governance and workflows * Measure and monitor go-live success * Integrate go-live governance with intake, risk management, SAFe Agile and Change Management functions as needed EDUCATION: Bachelor's Degree in Information Security, Computer Science or Information Systems or commensurate experience EXPERIENCE: 3 or more years of experience in an Information Security or Information Technology role.

The Company Every day, NuHarbor Security improves the cybersecurity of our clients by making it stronger and easier to understand. Our comprehensive suite of security services, from strategic advising to 24-hour monitoring and management, provide an organizational view of security that is focused on results and recommendations that are valuable for both business and technical leaders. We're growing quickly because our clients, and the general market, are looking for these outcomes and for the data it gives them to explain, promote, and justify, their security investment and mission. The Role The Senior Security Operations Analyst role serves as a senior escalation point for all Analyst technical matters. The Senior Security Operations Analyst role serves within one of the NuHarbor Managed Services Pods. They are responsible for ensuring that client environments are monitored for security incidents and responding to incidents and escalating notable events to clients and/or internal crew members. What you'll do Lives by the NuHarbor Corporate Values: Help Clients Win, Always Improve, Protect the House. Responsible and accountable for analyzing security alerts, events, and trends in order to effectively communicate the value of NuHarbor services. Responsible for delivering presentations, creating shared learning opportunities, and documentation of threats and themes within and across client environments. Independently and autonomously conducts investigations to provide actionable, context relevant, escalations to clients. Ensure client facing and internal escalations are serviced in a timely fashion. Leverage their understanding of client environments to identify and communicate security gaps and potential mitigations. Identifies and scopes opportunities for improvements in efficiency, quality, maturity, and capabilities. Autonomously trains and mentors' junior analysts. Maintains current certifications and training relevant to their role as defined in the NuHarbor Career Course Toolkit. Develops, implements, and improves documentation and operational processes. Provides analysis and interpretation of vulnerability scans and assessments. Researches and remains up to date on global threat trends, vertical specific threat trends, new exploits, relevant vulnerabilities, and new zero-days. Uses an advanced understanding of, and ability to communicate, security technologies to mitigate cyber risks. Is responsible for ensuring reports are generated to standard and on-schedule. Maintains the NuHarbor Security threat intelligence platform. Performs threat hunting in client environments. Creates client facing threat intelligence reports. Proactively identifies and communicates internal and client risks. Develops recommendations and enhancements to mature a client's cybersecurity program. Performs intelligence gathering and analysis to influence technical control development, client security program maturity, and client attack surface defense. Required to participate in 24x7 rotation. Communicates and presents to executive level client stakeholders. Your foundation. The requirements for this role: Bachelor's Degree and five (5) years of experience. Experience should be in a cybersecurity field and should include relevant industry certifications. Typical Degrees: Computer Science, Information Technology, Cybersecurity, Data Analytics, Mathematics, or related field(s). In lieu of a degree, two (2) years of experience in a related technology field and relevant industry certifications are required. Demonstrated experience with SOC operations, executing security event triaging and tuning. Demonstrated experience writing runbooks and support procedures. Strong understanding of Incident Response phases and demonstrated experience responding to security incidents. Demonstrated experience with security event triaging and threat hunting executed through both a SIEM and EDR toolset. Demonstrated experience with Endpoint Detection and Response (EDR) or Security Orchestration Automation and Response solutions. Demonstrated experience with scripting in industry standard languages in a manner that supports automation solutions. Must be a citizen of the United States. Additional capabilities that will differentiate you for this role: Bachelor's Degree and seven (7) or more years in the Information Technology field. Holds at least two relevant industry certifications (GCFA, GCIH, CEH, CISSP, etc.) Excellent written and verbal communication skills. Technical writing and reporting experience. Experience executing initial triaging and response through a SOAR platform. Experience with multiple operating systems (Linux, MacOS, Windows), their command lines, processes, and file systems. Experience with memory and storage forensics. Experience with static and dynamic malware analysis. Experience providing recommendations to harden existing security controls. Experience identifying gaps within security control architecture. Talent for communicating complex topics in an easily digestible manner. Experience with data science techniques (clustering, anomaly detection, data normalization, etc. General systems administrator experience. Experience working in multiple cybersecurity disciplines (i.e. RedSec, Threat, Information Assurance, Engineering, etc.) The Rewards What you can expect: The engagement and support of company leadership who recognize the challenge of marketing a complex cybersecurity service in a chaotic market. An organization that recognizes and rewards employee commitment and contribution to our customers' satisfaction and success Growth in your career and capabilities as you help to chart a path to improving customer interactivity and service adoption. A collaborative and driven working environment in a rapidly growing company and market A fun and social working environment where you are encouraged to be your true self. You can also expect competitive salary and benefits, including paid time to give back in your community and generous PTO. We are purpose driven. We, as an organization, above anything else protect the house first and then help our customers win. If this sounds like the kind of organization you'd like to be a part of, we‘d like to hear from you AAP/EEO Statement The Equal Employment Opportunity Policy of NuHarbor Security is to provide a fair and equal employment opportunity for all associates and job applicants regardless of race, color, religion, national origin, gender, sexual orientation, age, marital status or disability. NuHarbor Security hires and promotes individuals solely based on their qualifications for the job to be filled. NuHarbor Security believes that employees should be provided with a working environment which enables each associate to be productive and to work to the best of his or her ability. We do not condone or tolerate an atmosphere of intimidation or harassment based on race, color, religion, national origin, gender, sexual orientation, age, marital status, or disability. We expect and require the cooperation of all employees in maintaining a discrimination and harassment-free atmosphere.

With Confluent, organizations can harness the full power of continuously flowing data to innovate and win in the modern digital world. We have a purpose that drives us to do better every day - we're creating an entirely new category within data infrastructure - data streaming. This technology will allow every organization to create experiences and use the power of data in ways that profoundly impact the way we all live. This impact is our purpose and drives us to do better every day. One Confluent. One team. One Data Streaming Platform. Data Connects Us. **About the Role:** We are looking for an experienced security engineer to join our infrastructure security engineering team with a strong focus on detection and response. You will have a unique opportunity to leverage your threat detection and response experience and build some of the foundational systems and services to keep our infrastructure free from malicious actors and threats. You will partner closely with all engineering teams, IT administrators, and compliance analysts to ensure that we maintain sufficient visibility into our environments and develop effective programs and practices to ensure that our environments are always secure. Tooling and automation will be key to success as we scale our environments to meet customer demand. We intend to be the world's best, fastest, and most complete stream processing service built by an excellent team, all while having fun - come join us on the journey! **What You Will Do:** + Collaborate with engineering teams for building and setting up pipelines needed to gather relevant security telemetry. + Build and maintain an effective and scalable security monitoring infrastructure solution. + Develop detection strategies to identify anomalous activity and ensure that our critical infrastructure and services operate in a safe environment. + Triage alerts and drive security incidents to closure while reducing its potential impact to Confluent. + Build processes and workflows to triage security alerts and respond to real incidents. + Research new threat attack vectors and ensure that our detection and response capability is in line with the current threat landscape. + Proactively improve the quality of our detection rules and strive to eliminate classes of issues by working directly with engineering teams. + Contribute to strategy, risk management and prioritization for all efforts around detection and response. **What You Will Bring:** + 5+ years of relevant industry experience. + Strong domain knowledge in security incident detection and response. + Hands-on experience in instrumenting and deploying telemetry solutions to ensure visibility in large-scale, heterogenous deployments. + Demonstrated experience with effective incident response and containment practices, preferably in a cloud-first environment. + Experience with operating open-source and/or commercial solutions for logging and security event management. + Decision-maker with the ability to operate with freedom and autonomy.Experience working with distributed teams and other cross-functional stakeholders. + Ability to manage competing priorities and workload. + Ability to script or code fluently in an interpreted language. + Experience with serverless deployments in AWS, GCP, or Azure is a plus. **Come As You Are** At Confluent, equality is a core tenet of our culture. We are committed to building an inclusive global team that represents a variety of backgrounds, perspectives, beliefs, and experiences. The more diverse we are, the richer our community and the broader our impact. Employment decisions are made on the basis of job-related criteria without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other classification protected by applicable law. At Confluent, we are committed to providing competitive pay and benefits that are in line with industry standards. We analyze and carefully consider several factors when determining compensation, including work history, education, professional experience, and location. This position has an annual estimated salary of 192,200 - 225,810 USD and a competitive equity package. The actual pay may vary depending on your skills, qualifications, experience, and work location. In addition, Confluent offers a wide range of employee benefits. To learn more about our benefits click HERE (******************************* . Click HERE (******************************************************************* to review our Candidate Privacy Notice which describes how and when Confluent, Inc., and its group companies, collects, uses, and shares certain personal information of California job applicants and prospective employees. \#LI-Remote

Lumen connects the world. We are igniting business growth by connecting people, data and applications - quickly, securely, and effortlessly. Together, we are building a culture and company from the people up - committed to teamwork, trust and transparency. People power progress. We're looking for top-tier talent and offer the flexibility you need to thrive and deliver lasting impact. Join us as we digitally connect the world and shape the future. **The Role** Black Lotus Labs is seeking a Principal Security Engineer on the Research & Analysis team. This team leverages Lumen's global visibility of one of the world's largest and most interconnected IP backbones and a petabyte-scale compute cluster to perform cutting edge threat research, hunting and tracking advanced persistent threat actors (APTs) and emerging criminal activity as the threat actors traverse the internet. They empower customers to stay ahead of the evolving threat landscape. **The Main Responsibilities** + Serve as Threat Research Subject Matter Expert, offering guidance and support to the Black Lotus Labs team on threat hunting activities, such as identifying knowledge gaps, troubleshooting technical challenges, developing solutions, and mentoring team members in overcoming obstacles. Set priorities for what threats to analyze to maximize team's impact. + Conduct threat research across technical data sets, fusing Black Lotus Labs telemetry with third party data sets, to automate detection of the latest threat attacker tools, techniques and procedures (TTPs) with a goal of automating detection. + Use industry-leading technical knowledge of adversary capabilities and infrastructure and define, develop, and implement techniques to lead the team in tracking sophisticated adversaries, delivering actionable threat intelligence data to Lumen customers. + Lead and enhance threat hunting operations by actively engaging with other research teams, building strong partnerships to achieve shared goals, exploring new data sources, and mentoring team members in executing workflows and solving complex challenges. + Provide expert analysis and strategic insights on emerging threats and vulnerabilities, translating + complex technical information into actionable intelligence for executive leadership and external + stakeholders. + Spearhead thought leadership initiatives by leading Black Lotus Lab's voice at security conferences and internal executive briefings. **What We Look For in a Candidate** + Proven experience in threat hunting and in-depth technical security research, demonstrating a strong track record of successfully identifying, tracking, and disrupting nation-state and cybercriminal threat actors. + Deep understanding of advanced threat hunting methodologies, attacker tactics, techniques, and procedures (TTPs), and the ability to derive actionable threat hunts from complex data sets. + Demonstrated experience building prototype threat hunting solutions and large data analysis tools with Python (or other equivalent languages). + Proven experience initiating and coordinating technical projects focused on telemetry collection, TTP based threat hunting, or developing threat hunt tool that have cross-organization impact on threat visibility, including leading private-public partnerships and multi-company collaborations. + Exceptional communication and presentation skills, including the ability to clearly and concisely convey complex technical information to both technical and non-technical audiences, ranging from executives and board members to conference attendees and internal stakeholders. + Experience presenting at industry conferences and in the media. + Highly organized with the ability to manage multiple tasks, prioritize effectively, and triage competing demands in a fast-paced environment. + Proven ability to lead and manage complex technical projects, effectively driving them to successful completion. **Preferred:** Active TS/SCI clearance with poly **Well-experienced candidates may also have the following skills:** + Proficiency in malware reverse engineering and incident response. + 5+ years of experience leading teams of technical threat discovery professionals. + Software development experience in Docker and big data technologies like Hadoop, Spark, and Tensor Flow. **Compensation** This information reflects the anticipated base salary range for this position based on current national data. Minimums and maximums may vary based on location. Individual pay is based on skills, experience and other relevant factors. Location Based Pay Ranges: $149,084 - $198,779 in these states: AL, AR, AZ, FL, GA, IA, ID, IN, KS, KY, LA, ME, MO, MS, MT, ND, NE, NM, OH, OK, PA, SC, SD, TN, UT, VT, WI, WV, and WY. $156,539 - $208,718 in these states: CO, HI, MI, MN, NC, NH, NV, OR, and RI. $163,993 - $218,657 in these states: AK, CA, CT, DC, DE, IL, MA, MD, NJ, NY, TX, VA, and WA. Lumen offers a comprehensive package featuring a broad range of Health, Life, Voluntary Lifestyle benefits and other perks that enhance your physical, mental, emotional and financial wellbeing. We're able to answer any additional questions you may have about our bonus structure (short-term incentives, long-term incentives and/or sales compensation) as you move through the selection process. Learn more about Lumen's: + Benefits (**************************************************** + Bonus Structure \#LI-MG1 Requisition #: 337413 **Background Screening** If you are selected for a position, there will be a background screen, which may include checks for criminal records and/or motor vehicle reports and/or drug screening, depending on the position requirements. For more information on these checks, please refer to the Post Offer section of our FAQ page (************************************* . Job-related concerns identified during the background screening may disqualify you from the new position or your current role. Background results will be evaluated on a case-by-case basis. Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records. **Equal Employment Opportunities** We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, gender expression, marital status, family status, pregnancy, or other legally protected status (collectively, "protected statuses"). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training. **Disclaimer** The job responsibilities described above indicate the general nature and level of work performed by employees within this classification. It is not intended to include a comprehensive inventory of all duties and responsibilities for this job. Job duties and responsibilities are subject to change based on evolving business needs and conditions. In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information. Please be advised that Lumen does not require any form of payment from job applicants during the recruitment process. All legitimate job openings will be posted on our official website or communicated through official company email addresses. If you encounter any job offers that request payment in exchange for employment at Lumen, they are not for employment with us, but may relate to another company with a similar name. **Application Deadline** 04/08/2025

Transforming the Future with the Convergence of Simulation and Data Senior Security Engineer Do you like a challenge, are you a complex thinker who likes to solve problems? If so, then you might be the new Altairian we are searching for. At Altair, your curiosity matters. We pride ourselves on a business culture that enables open, creative thinking, and we deeply value our employees and their contributions towards our clients' success, as well as our own. Job Summary: What You Will Do: * Collaborate with development teams to build, deploy, and maintain secure applications and infrastructure, ensuring security best practices are integrated throughout the software development lifecycle. * Continuously assess and enhance the cloud security environment by implementing best practices, automating security controls, and improving visibility. * Track and drive remediation efforts across developers, product owners, and business collaborators to ensure vulnerability management compliance. * Lead incident response efforts by investigating security threats, coordinating remediation, and implementing lessons learned to strengthen security defenses What You Will Need: Basics: * 4+ years professional experience in information security, with a focus on infrastructure, operating systems, and networking * Experience with cloud security controls and/or securing cloud environments Preferred: * Experience working with DevSecOps practices and tools, integrating security into CI/CD pipelines (e.g., GitHub Actions, GitLab CI/CD, Azure DevOps) * Developed secure cloud networking architectures, including VPC segmentation, cloud firewalls, private endpoints, and encrypted communications. * Standardized container security practices and serverless environments, implementing image scanning, least privilege policies, and runtime monitoring * Conducted security reviews and architecture assessments to ensure cloud deployments align with industry best practices and business objectives. * Experience with cloud configuration management and automation tools (e.g., Ansible, Terraform, AWS CloudFormation, Azure Bicep) * Python, bash, or other scripting for integration and automation * Deployment & security support of both cloud and virtual environments , * Advanced degree in computer science or related technical field or equivalent experience * Cybersecurity-related certification(s), including CCSP, CISSP, CISM, CEH, etc. How You Will Be Successful: * Envision the Future * Communicate Honestly and Broadly * Seek Technology and Business "Firsts" * Embrace Diversity and Take Risks What We Offer: * Competitive Salary * Comprehensive Retirement benefit * Outstanding Work/Life Balance * Partially Flex Time * Employee Stock Purchase Program * 25 Leave days * Collaborative environment * Partial Charitable Matching Program Why Work with Us: Altair is a global technology company providing software and cloud solutions in the areas of product development, high-performance computing (HPC) and artificial intelligence (AI). Altair enables organizations in nearly every industry to compete more effectively in a connected world, while creating a more sustainable future. With more than 3,000 engineers, scientists, and creative thinkers in 25 countries, we help solve our customer's toughest challenges and deliver unparalleled service, helping the innovators innovate, drive better decisions, and turn today's problems into tomorrow's opportunities. Our vision is to transform customer decision making with data analytics, simulation, and high-performance computing and artificial intelligence (AI). For more than 30 years, we have been helping our customers integrate electronics and controls with mechanical design to expand product value, develop AI, simulation, and data-driven digital twins to drive better decisions, and deliver advanced HPC and cloud solutions to support unlimited idea exploration. To learn more, please visit altair.com . Ready to go? #ONLYFORWARD At our core we are explorers; adventurers; pioneers. We are the brains behind some of the world's most revolutionary innovations and are not only comfortable in new and uncharted waters, we dive in headfirst. We are the original trailblazers that make the impossible possible, discovering new solutions to our customer's toughest challenges. Altair is an equal opportunity employer. Our backgrounds are diverse, and every member of our global team is critical to our success. Altair's history demonstrates a belief that empowering each individual authentic voice reinforces a culture that thrives because of the uniqueness among our team.

PagerDuty, Inc. (NYSE:PD) is a global leader in digital operations management. Half of the Fortune 500 and nearly 70% of the Fortune 100 trust PagerDuty as essential infrastructure. Join us. (******************************* At PagerDuty, you'll tackle complex problems, collaborate with kind and ambitious people, and help build a more equitable world-all in a flexible, award-winning workplace. PagerDuty is seeking a **Senior Security Engineer** to join our diverse, customer-focused team! As a **Senior Security Engineer** , you will be a key contributor in leading, driving and delivering security initiatives for PagerDuty's SaaS offerings, focusing on application & product security through architecture reviews, threat modeling sessions, and defining secure-by-design product standards and protections that support PagerDuty's security mission. Since we own and operate what we build, you'll collaborate closely with engineers across many product development teams. You will work closely with our internal development teams to ensure we deliver secure, highly reliable, and scalable solutions to our customers. This is an exciting opportunity to build security solutions that make developers and customers happy. The ideal candidate will have a blend of experiences across large enterprise environments and small or mid-size environments and will have focused on establishing security standards, coordinating with product development teams, developing strategies for secure-by-default architectures, and corresponding process and tooling selection and implementation. Things that make you smile: secure product architectures, providing an engaging Developer Experience for security adoption, and cute animal memes. **KEY RESPONSIBILITIES** + Embrace the role of hands-on technical lead in defining product security standards and guiding platform protections. + Establish criteria and conduct comprehensive security reviews throughout all stages of product development to identify and address security risks. + Perform regular threat assessments, coordinate with third-party testers for penetration testing, and conduct internal penetration testing to identify and mitigate security risks. + Mentor and guide team members to ensure product and business objectives are prioritized in project implementations, fostering a strong documentation culture with project charters and design documents. + Work with loosely defined requirements where you exercise your analytical skills to clarify questions, share your approach, and collaborate with the team to design and implement effective security frameworks. Maintain a strong appetite for challenging problems with a high degree of ownership. + Participate in the team's On-Call rotation, triaging and addressing security issues as they arise, and implement measures to prevent future occurrences. + Enable service team security implementations by developing security-as-code constructs, including infrastructure-as-code (IaC) modules, libraries and frontend components, while creating and maintaining developer-focused documentation to promote easy adoption. + Establish and uphold baseline standards and hardened configurations for platform components. + Continuously enhance security frameworks by focusing on product security standards and software supply chain protections, tailored for application security in cloud-native, microservices environments. **BASIC QUALIFICATIONS** + 5+ years of experience as a Security Engineer focused on product and application security in a cloud-native, microservices environment, preferably within AWS. + Demonstrated experience with security standards and patterns for APIs, microservices, and serverless architectures, including best practices for secure SDLC integration and development. + Familiarity with cloud-native product technologies including: + Vulnerability detection via multiple approaches including SAST, DAST, SCA, and runtime (e.g., Qualys/Nessus, Wiz, Snyk, etc.) + Security event collection and analysis (e.g., SIEM such as: SumoLogic, LogRythm, or Splunk, etc.) + Container Security (e.g., Kubernetes, EKS) + CI/CD technologies and integrations (e.g., CircleCI, Buildkite, Helm, Terraform, Chef) + Security Incident Response & Risk Management processes and tools + 4 years of experience and proficiency in at least one programming language and framework (e.g., Python, Bash, Phoenix/Elixir, Java, Ruby on Rails). + Exceptional written, oral communication, and interpersonal skills. + Strong organizational skills with the ability to successfully manage multiple priorities and deadlines. **PREFERRED QUALIFICATIONS** + Strong hands-on experience in deploying secure coding practices, automation, threat modeling and application security solutions. + Strong understanding of modern application architectures, including microservices, containerization, and cloud-native applications. + Experience with obtaining and maintaining FedRAMP authorization. + Experience working at a SaaS company larger than 1,000 employees and $100M in revenue. + Ability to analyze complex problems, and implement these solutions with a growing proficiency in change management. + Demonstrates a strong sense of ownership and a commitment to excellence in securing systems within a SaaS environment, with the ability to identify and implement resilient, effective product security measures. + Proven history of mentoring and coaching. The successful applicant will be performing work in FedRAMP environments, and therefore, must be a U.S. Person (i.e. U.S. citizen, U.S. national, lawful permanent resident, asylee, or refugee). **This position may also perform work that the U.S. government has specified can only be performed by a U.S. citizen on U.S. soil.** The base salary range for this position is 176,000 - 281,000 USD. This role may also be eligible for bonus, commission, equity, and/or benefits. Our base salary ranges are determined by role, level, and location. The range, which is subject to change based on primary work location, reflects the minimum and maximum base salary we expect to pay newly hired employees for the position. Within the range, we determine pay for an individual based on a number of factors including market location, job-related knowledge, skills/competencies and experience. Your recruiter can share more about the specific offerings for this role, as well as the salary range for your primary work location during the hiring process. **Hesitant to apply?** We encourage you to submit your resume even if you don't meet every requirement. We value potential and consider each candidate's full professional story. Whether you're exploring a career change or taking your next step, we look forward to reviewing your application. If this just isn't the right role or time - sign up for job alerts (**************************************** ! **Where we work** PagerDuty currently has offices (**************************************** in Atlanta, Lisbon, London, San Francisco, Santiago, Sydney, Tokyo, and Toronto. We offer a hybrid, flexible environment. We also provide ample opportunities for connection, like team offsites and volunteering events. **How we work** Our values (************************************** guide how we support customers, collaborate with colleagues, develop products, and foster a culture of belonging. They define not just our actions, but what it means to be Dutonian. **What we offer** As a global organization, our total rewards approach is competitive with industry standards and aligned with local laws and regulations. Learn more, including country-specific offerings, on our benefits site (********************************************** . **Your package may include:** - Competitive salary - Comprehensive benefits package from day one - Flexible work arrangements - Company equity* - ESPP (Employee Stock Purchase Program)* - Retirement or pension plan* - Generous paid vacation time - Paid holidays and sick leave - Dutonian Wellness Days & HibernationDuty - companywide paid days off in addition to PTO - Paid parental leave: 22 weeks for pregnant parent, 12 weeks for non-pregnant parent (some countries have longer leave standards and we comply with local laws)* - Paid volunteer time off: 20 hours per year - Company-wide hack weeks - Mental wellness programs *Eligibility may vary by role, region, and tenure **About PagerDuty** PagerDuty, Inc. (NYSE:PD) is a global leader in digital operations management, enabling customers to achieve operational efficiency at scale with the PagerDuty Operations Cloud. The PagerDuty Operations Cloud combines AIOps, Automation, Customer Service Operations and Incident Management with a powerful generative AI assistant to create a flexible, resilient and scalable platform to increase innovation velocity, grow revenue, reduce cost, and mitigate the risk of operational failure. Half of the Fortune 500 and nearly 70% of the Fortune 100 rely on PagerDuty as essential infrastructure for the modern enterprise. PagerDuty is Great Place to Work-certified, a Fortune Best Workplace for Millennials, a Fortune Best Medium Workplace, a Fortune Best Workplace in Technology, and a top rated product on TrustRadius and G2. Go behind-the-scenes on our careers site (*********************************** and @pagerduty on Instagram. **Additional Information** PagerDuty is committed to creating a diverse environment and is an equal opportunity employer. PagerDuty does not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, parental status, veteran status, or disability status. PagerDuty is committed to providing reasonable accommodations for qualified individuals with disabilities in our job application process. Should you require accommodation, please email accommodation@pagerduty.com and we will work with you to meet your accessibility needs. PagerDuty uses the E-Verify employment verification program.

We specialize in Staffing, Consulting, Software Development, and Training along with IT services to small to medium size companies. AG's primary objective is to help companies maximize their IT resources and meet the ever-changing IT needs and challenges. In addition, AG offers enterprise resource planning and enterprise application integration, supply-chain management, e-commerce solutions, and B2B public exchanges and B2B process integration solutions. Our company provides application analysis, design, development and programming, software engineering, systems development, testing, integration, and implementation, and management consulting services to various clients - including governmental agencies and private companies - throughout the United States and India. We provide these services in multiple computing environments and use technologies such as client/server architecture, object-oriented programming languages and tools, distributed database management systems, state-of-the-art networking, and communications infrastructures. Our honest and realistic approach to recruiting dictates that AG does not entice or lure engineers from their employers. We represent only high caliber technical professionals who have committed to making a change required by career. Job Description Description - Manage and use security stack of tools Manage all upcoming upgrades and patches Platform Management Experience in MacAfee, Web Sense, Proof point, F-secure running on proof point, MacAfee on the exchange, Voltage. Additional Information GOOD COMMUNICATION SKILLS DURATION: 12+ Months Contract INTERVIEW: Phone & Skype

Trustmark's mission is to improve wellbeing - for everyone. It is a mission grounded in a belief in equality and born from our caring culture. It is a culture we can only realize by building trust. Trust established by ensuring associates feel respected, valued and heard. At Trustmark, you'll work collaboratively to transform lives and help people, communities and businesses thrive. Flourish in a culture of diversity and inclusion where appreciation, mutual respect and trust are constants, not just for our customers but for ourselves. At Trustmark, we have a commitment to welcoming people, no matter their background, identity or experience, to a workplace where they feel safe being their whole, authentic selves. A workplace made up of diverse, empowered individuals that allows ideas to thrive and enables us to bring the best to our colleagues, clients and communities. We are seeking a highly skilled Cyber Security Engineer to join our team and play a pivotal role in safeguarding our organization's digital assets. The ideal candidate will possess a deep understanding of cybersecurity principles, a strong technical background, and a passion for protecting sensitive information. You will be responsible for engineering, implementing and monitoring security measures for the protection of Trustmark's computer systems, networks and information. The role helps identify and define system security requirements as well as develop detailed cyber security designs. **Responsibilities:** + Design, implement, and maintain security architectures, systems, and solutions to protect critical infrastructure and data. + Conduct vulnerability assessments and penetration testing to identify and mitigate risks. + Develop and implement security policies, standards, and procedures. + Monitor security systems and respond to incidents promptly and effectively. + Stay up-to-date with the latest cybersecurity threats and trends. + Collaborate with cross-functional teams to ensure security is integrated into all aspects of the business. + Provide technical guidance and support to internal stakeholders. **Qualifications:** + Bachelor's degree in Computer Science, Information Technology, or a related field or + 3-5 Years of network engineering or cyber engineering experience + Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO 27001). + Proficiency in network security, systems security, application security, and data security. + Hands-on experience with security tools and technologies (e.g., firewalls, intrusion detection systems, encryption, SIEM). + Excellent problem-solving and analytical skills. + Strong communication and interpersonal skills. + Ability to work independently and as part of a team. **Preferred Qualifications:** + Certifications such as CISSP, CISA, or CEH. + Experience with cloud security (e.g., AWS, Azure, GCP). + Knowledge of scripting and programming languages (e.g., Python, PowerShell). Brand: Trustmark Come join a team at Trustmark that will not only utilize your current skills but will enhance them as well. Trustmark benefits include health/dental/vision, life insurance, FSA and HSA, 401(k) plan, Employee Assistant Program, Back-up Care for Children, Adults and Elders and many health and wellness initiatives. We also offer a Wellness program that enables employees to participate in health initiatives to reduce their insurance premiums. **For the fourth consecutive year we were selected as a Top Workplace by the Chicago Tribune.** The award is based exclusively on Trustmark associate responses to an anonymous survey. The survey measured 15 key drivers of engaged cultures that are critical to the success of an organization. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, sexual identity, age, veteran or disability. Join a passionate and purpose-driven team of colleagues who contribute to Trustmark's mission of helping people increase wellbeing through better health and greater financial security. At Trustmark, you'll work collaboratively to transform lives and help people, communities and businesses thrive. Flourish in a culture where appreciation, mutual respect and trust are constants, not just for our customers but for ourselves. Introduce yourself to our recruiters and we'll get in touch if there's a role that seems like a good match. When you join Trustmark, you become part of an organization that makes a positive difference in people's lives. You will play a vital role in delivering on our mission of helping people increase wellbeing through better health and greater financial security. Our customers tell us they simply appreciate the personal attention and knowledgeable service. Others tell us we've changed their lives. At Trustmark, you'll be part of a close-knit team. You'll enjoy abundant opportunities to grow your career. That's why so many of our associates stay at Trustmark and thrive. Trustmark benefits from more than 100 years of experience but pairs that rich history with a palpable sense of optimism, growth and excitement for what's ahead - and beyond. This is a place where associates bring their whole selves to work each day. A place where you can be yourself. Whatever your beyond is, you can achieve it at Trustmark.

**Assurance Operations - Security Analyst** Do you have a passion for high-scale services and working with some of Oracle's most critical customers? We are looking for a technical analyst who has a critical eye for detail and enjoys collaborating within a global organization with a diverse set of technical disciplined teams such as site reliability engineering, development, security analysis and security research. You are someone who enjoys learning diverse technologies and keeping current with evolving best practices. You foster and contribute to a creative and collaborative culture which embraces ambiguity to deliver results. **Who are we?** We are a world class team of high calibre technical analysts operating critical security support operations. We are an inclusive and diverse team with a full spectrum of experience distributed globally. We have the resources of a large enterprise and the energy of a start-up, working on a critical greenfield software assurance project collaboratively with our cloud and mobile engineering teams. The Software Assurance organisation has the mission to make application security and software assurance, at scale, a reality. We are a dedicated team, leveraging each other's insights and abilities to produce cutting edge solutions to difficult problems through cutting-edge technology. Join us to grow your career and create the future of software assurance at scale together. **Work You'll Do:** + Monitor incoming event queues using security management tools. + Identify, categorize, prioritize, and investigate correlated events. + Perform investigation and triage of events and incidents and escalate according to SOPs. + Communicate and coordinate with multiple teams on security and operational incidents within a globally distributed team. + Develop reports, dashboards, real-time rules, and filters on a large scale system. + Develop/iterate on event/incident procedures, long-term analysis, investigation processes and reporting. + Document investigation results and provide relevant details for final analysis + Identify improvements in event generation and monitoring platforms and work with engineering teams to have these implemented. + Pursue events and incidents investigation and response automation opportunities. **What You'll Bring:** + BS degree in Computer Science, Cybersecurity, related technical education or equivalent practical experience. + 3 or more years of experience in Cybersecurity Operations. + SIEM experience. + Experience working on a cloud-based environment, preferably OCI. + Experience with Linux operating systems. + Strong written and verbal communication (English). + A keen interest in learning and practicing cybersecurity. + A critical and considerate eye for detail with the ability to proactively identifying effective and efficient solutions to real problems. + Ability to learn new technologies quickly. + Knowledge of network security fundamentals. + Knowledge of cloud security fundamentals. + Eligibility to work in US without sponsorship is essential. **Nice to Have:** + Have experience with reporting tools such as Grafana and/or OCI analytics. + Experience scripting in regular expression for SIEM signatures. + Experience in SOAR / XSOAR automation. + Network monitoring or detection experience. + Knowledge or experience of mobile apps design, architecture and networking would be an advantage, but not mandated. + Ability to drive, follow, and evangelize cross-team processes. **What We'll Give You:** + Exposure to mind blowing large-scale cutting-edge systems. + The resources of a large, global operation while still having the small, start-up feel of a smaller team day to day. + Exposure to multiple disciplines and teams through close collaboration, ongoing encouragement to development skills to further your career aspirations. + Multiple pathways into exciting careers. + An organisation filled with smart, enthusiastic, and motivated colleagues. + The opportunity to impact and improve our systems and delight our customers. + Incredible benefits and company perks. Career Level - IC3 Disclaimer: **Certain US customer or client-facing roles may be required to comply with applicable requirements, such as immunization and occupational health mandates.** **Range and benefit information provided in this posting are specific to the stated locations only** US: Hiring Range in USD from $41.83 to $85.63 per hour; from: $87,000 to $178,100 per annum. May be eligible for equity. Oracle maintains broad salary ranges for its roles in order to account for variations in knowledge, skills, experience, market conditions and locations, as well as reflect Oracle's differing products, industries and lines of business. Candidates are typically placed into the range based on the preceding factors as well as internal peer equity. Oracle US offers a comprehensive benefits package which includes the following: 1. Medical, dental, and vision insurance, including expert medical opinion 2. Short term disability and long term disability 3. Life insurance and AD&D 4. Supplemental life insurance (Employee/Spouse/Child) 5. Health care and dependent care Flexible Spending Accounts 6. Pre-tax commuter and parking benefits 7. 401(k) Savings and Investment Plan with company match 8. Paid time off: Flexible Vacation is provided to all eligible employees assigned to a salaried (non-overtime eligible) position. Accrued Vacation is provided to all other employees eligible for vacation benefits. For employees working at least 35 hours per week, the vacation accrual rate is 13 days annually for the first three years of employment and 18 days annually for subsequent years of employment. Vacation accrual is prorated for employees working between 20 and 34 hours per week. Employees working fewer than 20 hours per week are not eligible for vacation. 9. 11 paid holidays 10. Paid sick leave: 72 hours of paid sick leave upon date of hire. Refreshes each calendar year. Unused balance will carry over each year up to a maximum cap of 112 hours. 11. Paid parental leave 12. Adoption assistance 13. Employee Stock Purchase Plan 14. Financial planning and group legal 15. Voluntary benefits including auto, homeowner and pet insurance The role will generally accept applications for at least three calendar days from the posting date or as long as the job remains posted. **About Us** As a world leader in cloud solutions, Oracle uses tomorrow's technology to tackle today's challenges. We've partnered with industry-leaders in almost every sector-and continue to thrive after 40+ years of change by operating with integrity. We know that true innovation starts when everyone is empowered to contribute. That's why we're committed to growing an inclusive workforce that promotes opportunities for all. Oracle careers open the door to global opportunities where work-life balance flourishes. We offer competitive benefits based on parity and consistency and support our people with flexible medical, life insurance, and retirement options. We also encourage employees to give back to their communities through our volunteer programs. We're committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by emailing accommodation-request_************* or by calling *************** in the United States. Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans' status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.

The Meta security organization is seeking an experienced Security Engineer who loves to build their way out of security problems. We strive to go beyond just identifying security vulnerabilities and flaws. We want to 'treat security as an engineering problem,' solving problems through clever, scalable solutions. We want to knock down whole swaths of vulnerabilities at once and eliminate classes of problems so that they never recur in the future. If you love security but also love spending tons of time coding, this might be the ideal role for you! **Required Skills:** Security Engineer (Builder) Responsibilities: 1. Work with teams of security engineers and developers to architect scalable solutions to complex problems 2. Build out proofs of concept, tools, and/or platforms to address security problems at scale 3. Lead other engineers in creating solutions 4. Partner with cross-functional teams to ensure security maturity work is being prioritized and addressed in ways both timely and durable 5. Eliminate classes of security problems by shifting the detection and preventions left into the developer workflow 6. Provide architectural, design, and threat-based guidance to software development teams to improve security maturity before code is created **Minimum Qualifications:** Minimum Qualifications: 7. BS or MS in Computer Science or a related field, or equivalent experience 8. 10+ years work experience securing enterprise-scale software and services 9. 10+ years work experience writing code in Python, PHP, Java, Ruby, Go, Rust, C/C++ (or similar languages) 10. Experience leading teams addressing security problems via building scaled engineering solutions 11. Experience in reviewing distributed systems design and conducting threat model assessment of software and services **Preferred Qualifications:** Preferred Qualifications: 12. Background in security-focused software engineering, security engineering, and/or building internal-facing security products 13. Broad knowledge of security domains 14. Contributions to the security community (eg, OSS contributions, public research, blogging, presentations, bug bounty, etc.) **Public Compensation:** $177,000/year to $251,000/year + bonus + equity + benefits **Industry:** Internet **Equal Opportunity:** Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment. Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@fb.com.

PagerDuty, Inc. (NYSE:PD) is a global leader in digital operations management. Half of the Fortune 500 and nearly 70% of the Fortune 100 trust PagerDuty as essential infrastructure. Join us. (******************************* At PagerDuty, you'll tackle complex problems, collaborate with kind and ambitious people, and help build a more equitable world-all in a flexible, award-winning workplace. PagerDuty is seeking a **Senior Security Engineer (Infrastructure & Identity Security)** to join our diverse, customer-focused team! As a Senior Security Engineer, you will be a key technical leader driving security initiatives across PagerDuty's SaaS offerings, with deep expertise in Identity and Access Management. While you'll spearhead our IAM modernization efforts and implement robust authentication patterns, you'll also be instrumental in maintaining our overall security posture through architecture reviews, threat modeling, and automated security solutions. We're looking for a security generalist who excels in IAM - someone who can tackle diverse security challenges across our infrastructure while bringing specialized knowledge in identity and access patterns. Since we own and operate what we build, you'll collaborate with 30+ engineering teams to implement secure, scalable solutions that enhance security while maintaining developer productivity. This is an exciting opportunity to not only revolutionize our IAM strategy but also contribute to the broader security landscape of our SaaS platform. **KEY RESPONSIBILITIES** + Lead and implement comprehensive IAM strategy across cloud infrastructure + Work closely with Product Engineering teams and conduct architecture reviews and threat modeling sessions focusing on but not limited to identity and access patterns + Design and implement modern service-to-service authentication patterns using technologies such as IRSA (IAM Roles for Service Accounts) and pod identity + Develop and maintain a robust secrets management framework and strategy + Drive adoption of principle of least privilege across all services and applications + Design and implement automated workflows for access reviews and certification + Design and implement security controls for AWS cloud infrastructure and containerized environments + Develop metrics and monitoring for IAM-related security events and access patterns + Monitor and maintain security tooling supporting infrastructure security controls + Design and implement security automations and tool integrations + Develop automated vulnerability management workflows to drive timely remediation + Implement automated incident response playbooks **Additional Responsibilities:** + Mentor and guide team members on security best practices and implementation approaches + Participate in our team's on-call rotation, triaging and addressing security issues as they arise. + Contribute to roadmap and annual planning discussions **BASIC QUALIFICATIONS** + 5+ years of experience as a full-stack Security Engineer in an AWS native, micro-service SaaS environment with focus on IAM. + Deep expertise in cloud security, particularly AWS services including but not limited to: + GuardDuty, CloudTrail, Config + IAM family, Secrets Manager, KMS + EKS, Service Mesh architectures + Strong expertise and experience implementing and managing identity providers, specifically Okta and/or Microsoft Entra at scale (1000+ users). + Strong understanding of zero trust principles and modern authentication patterns + Experience working with multiple development teams and technology stacks + 5+ years experience leading technical security initiatives, with proven ability to scope ambiguous projects, break down complex work into actionable items, and successfully delegate responsibilities while maintaining project momentum + Proficiency with security tools: + Vulnerability Management & EDR: Wiz, Snyk, Qualys/Nessus, Crowdstrike + SIEM: SumoLogic or Splunk + Experience with Infrastructure as Code and CI/CD: + Terraform, Helm, Chef, Ansible, Buildkite, Jenkins, ArgoCD + 4+ years of experience and proficiency in at least one programming language and framework (Python, Java, or similar) + Strong understanding of Threat Modeling principles + Experience with Security Incident Response & Risk Management + High appetite for challenging problems with a high degree of ownership. **PREFERRED QUALIFICATIONS** + Hands-on experience implementing IAM solutions at scale + Experience working at a SaaS company larger than 1000 employees and 100M in revenue + Current or past experience with obtaining and maintaining FedRAMP authorization and other compliance frameworks (SOC 2, ISO 27001) + Strong problem-solving abilities with effective change management skills + Possesses a strong sense of ownership and a keen discernment for excellence in security systems within a SaaS environment, demonstrating the ability to distinguish what constitutes a truly robust and effective safeguarding infrastructure. + Demonstrated history of mentoring and coaching + Strong written and verbal communication skills + Working knowledge and experience with PagerDuty Incident Management and Process Automation products. + Familiarity with Corporate security needs and solutions, and ability to provide oversight and mentorship to the Corporate Security team to ensure alignment with CISO strategic initiatives and mandates. The base salary range for this position is 176,000 - 281,000 USD. This role may also be eligible for bonus, commission, equity, and/or benefits. Our base salary ranges are determined by role, level, and location. The range, which is subject to change based on primary work location, reflects the minimum and maximum base salary we expect to pay newly hired employees for the position. Within the range, we determine pay for an individual based on a number of factors including market location, job-related knowledge, skills/competencies and experience. Your recruiter can share more about the specific offerings for this role, as well as the salary range for your primary work location during the hiring process. The successful applicant will be performing work in FedRAMP environments, and therefore, must be a U.S. Person (i.e. U.S. citizen, U.S. national, lawful permanent resident, asylee, or refugee). **This position may also perform work that the U.S. government has specified can only be performed by a U.S. citizen on U.S. soil.** **Hesitant to apply?** We encourage you to submit your resume even if you don't meet every requirement. We value potential and consider each candidate's full professional story. Whether you're exploring a career change or taking your next step, we look forward to reviewing your application. If this just isn't the right role or time - sign up for job alerts (**************************************** ! **Where we work** PagerDuty currently has offices (**************************************** in Atlanta, Lisbon, London, San Francisco, Santiago, Sydney, Tokyo, and Toronto. We offer a hybrid, flexible environment. We also provide ample opportunities for connection, like team offsites and volunteering events. **How we work** Our values (************************************** guide how we support customers, collaborate with colleagues, develop products, and foster a culture of belonging. They define not just our actions, but what it means to be Dutonian. **What we offer** As a global organization, our total rewards approach is competitive with industry standards and aligned with local laws and regulations. Learn more, including country-specific offerings, on our benefits site (********************************************** . **Your package may include:** - Competitive salary - Comprehensive benefits package from day one - Flexible work arrangements - Company equity* - ESPP (Employee Stock Purchase Program)* - Retirement or pension plan* - Generous paid vacation time - Paid holidays and sick leave - Dutonian Wellness Days & HibernationDuty - companywide paid days off in addition to PTO - Paid parental leave: 22 weeks for pregnant parent, 12 weeks for non-pregnant parent (some countries have longer leave standards and we comply with local laws)* - Paid volunteer time off: 20 hours per year - Company-wide hack weeks - Mental wellness programs *Eligibility may vary by role, region, and tenure **About PagerDuty** PagerDuty, Inc. (NYSE:PD) is a global leader in digital operations management, enabling customers to achieve operational efficiency at scale with the PagerDuty Operations Cloud. The PagerDuty Operations Cloud combines AIOps, Automation, Customer Service Operations and Incident Management with a powerful generative AI assistant to create a flexible, resilient and scalable platform to increase innovation velocity, grow revenue, reduce cost, and mitigate the risk of operational failure. Half of the Fortune 500 and nearly 70% of the Fortune 100 rely on PagerDuty as essential infrastructure for the modern enterprise. PagerDuty is Great Place to Work-certified, a Fortune Best Workplace for Millennials, a Fortune Best Medium Workplace, a Fortune Best Workplace in Technology, and a top rated product on TrustRadius and G2. Go behind-the-scenes on our careers site (*********************************** and @pagerduty on Instagram. **Additional Information** PagerDuty is committed to creating a diverse environment and is an equal opportunity employer. PagerDuty does not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, parental status, veteran status, or disability status. PagerDuty is committed to providing reasonable accommodations for qualified individuals with disabilities in our job application process. Should you require accommodation, please email accommodation@pagerduty.com and we will work with you to meet your accessibility needs. PagerDuty uses the E-Verify employment verification program.

The Company Every day, NuHarbor Security improves the cybersecurity of our clients by making it stronger and easier to understand. Our comprehensive suite of security services, from strategic advising to 24-hour monitoring and management, provide an organizational view of security that is focused on results and recommendations that are valuable for both business and technical leaders. We're growing quickly because our clients, and the general market, are looking for these outcomes and for the data it gives them to explain, promote, and justify, their security investment and mission. The Role The Senior Security Engineer role serves as the senior level technical engineer within the NuHarbor Engineering team. They are responsible for ensuring that client environments are maintained and developed according to NuHarbor standards and in alignment with both client and NuHarbor expectations. The Senior Security Engineer will be a technical resource for other engineers and is responsible for further development of engineering environments, processes, and training. What you'll do Lives by the NuHarbor corporate values: Help Clients Win, Always Improve, Protect the House. Responsible for advisory and technical support efforts in Splunk, Tenable, and Security orchestration. Performs engineering and architecting tasks required to onboard new Managed Services clients. Responsible for supporting the transition related to onboarding of Managed Services Clients. Performs engineering and architect tasks required to sustain existing Managed Services clients. Install, configure, troubleshoot, and optimize Splunk Enterprise Core and Splunk Enterprise Security. Develop Splunk searches, reports, alerts, and dashboards. Supports development of advanced security use cases in Splunk Enterprise. Troubleshoot SOAR architecture and playbook configurations. Develop SOAR playbooks and content. Administer and develop client Tenable environments. Create and run Tenable scans, reports, and dashboards. Perform basic vulnerability analysis and develop recommendations for clients. Performs weekly health checks on client environments. Develops, implements, and improves upon onboarding and operational processes. Works to develop processes to support technologies at the direction of the MS Engineering Management team. Supports other service and analyst teams as needed. Regularly meet with clients to drive forward engineering objectives. Proactively addresses and manages customer issues to help clients win. Provides technical direction, leadership and mentoring to junior MS Security Engineers in support of day-to-day operation. Provides architectural review and oversight for client operational projects. Maintains industry and vendor certifications required to support the Managed Services catalog. Works with the Engineering Leadership team to develop new service offerings. Performs evaluation of new technologies and develops operational processes to support these technologies at the direction of the MS Operational Engineering Manager. Assists in interviewing job candidates applying to the MS Security Engineering team. Remains up to date on global threat trends, vertical specific threat trends, new exploits, relevant vulnerabilities, and new zero-days. Use your advanced understanding of, and ability to communicate, security technologies to mitigate cyber risks. Develops recommendations and enhancements to mature a client's cybersecurity program. Communicates and presents to executive level client stakeholders. Required to participate in 24x7 rotation. Other duties and responsibilities as assigned by Engineering Leadership. Your foundation. The requirements for this role: Bachelor's Degree and five (5) or more years in the Information Technology field. Typical Degrees: Computer Science, Information Technology, Cybersecurity, Data Analytics, Mathematics, or related field(s). In lieu of a degree, two (2) years of experience in a related technology field and relevant industry certifications are Three (3) or more years of experience should have been directly administering Splunk environments. Strong Linux and Windows proficiency. Strong understanding of security concepts and operations. Strong understanding of networking concepts and architecture. Experience with data visualization tools and strong analytical skills. Experience with Splunk Enterprise Security for 3 or more years. Experience with SOAR technologies. Experience with vulnerability management technologies. Experience PowerShell and Bash scripting. Experience with Python Scripting. Splunk Enterprise Certified Architect, and/or Consultant. Must be a citizen of the United States. Additional capabilities that will differentiate you for this role: Bachelor's Degree and seven (7) or more years in the Information Technology field. Experience supporting security operations. Passion for security and customer service. Excellent written and verbal communication skills. The ability to make complex subjects understandable. Demonstrated ability to gain trust, collaborate and achieve shared objective. The drive to be successful and perform well in all aspects of your operational and strategic work. Has the flexibility to manage several projects and balance and prioritize work. A conversational understanding of security operations and cybersecurity. Exhibits an understanding of how business work and the impact of decisions on business results. The Rewards What you can expect: The engagement and support of company leadership who recognize the challenge of marketing a complex cybersecurity service in a chaotic market. An organization that recognizes and rewards employee commitment and contribution to our customers' satisfaction and success Growth in your career and capabilities as you help to chart a path to improving customer interactivity and service adoption. A collaborative and driven working environment in a rapidly growing company and market A fun and social working environment where you are encouraged to be your true self. You can also expect competitive salary and benefits, including paid time to give back in your community and generous PTO. We are purpose driven. We, as an organization, above anything else protect the house first and then help our customers win. If this sounds like the kind of organization you'd like to be a part of, we‘d like to hear from you. AAP/EEO Statement The Equal Employment Opportunity Policy of NuHarbor Security is to provide a fair and equal employment opportunity for all associates and job applicants regardless of race, color, religion, national origin, gender, sexual orientation, age, marital status or disability. NuHarbor Security hires and promotes individuals solely based on their qualifications for the job to be filled. NuHarbor Security believes that employees should be provided with a working environment which enables each associate to be productive and to work to the best of his or her ability. We do not condone or tolerate an atmosphere of intimidation or harassment based on race, color, religion, national origin, gender, sexual orientation, age, marital status, or disability. We expect and require the cooperation of all employees in maintaining a discrimination and harassment-free atmosphere.

At Oracle Cloud Infrastructure (OCI) we build the future of the cloud for Enterprises. We act with the speed and attitude of a start-up along with the scale and customer focus of the leading enterprise software company in the world. **About the team:** The Enterprise Engineering SRE team is tasked with ensuring the security and compliance of internal systems by conducting regular audits, identifying potential gaps in existing standards and proactively improving the organization's overall security posture. The team plays a critical role in safeguarding the integrity, confidentiality and availability of all systems while driving risk management initiatives across departments including disaster recovery planning and execution. We are also responsible for liaising with various internal teams during audits, ensuring data sharing is concise, accurate and aligned for successful audit outcomes. **Ideally, the candidate will possess several of the following skills:** Supports the strengthening of Oracle's security posture, focusing on one or more of the following: regulatory compliance; risk management; incident management and response; security policy development and enforcement; Threat and Vulnerability Management; Incident Management and response and similar focus areas. + **Regulatory Compliance:** Brings advanced level skills to manage programs to establish, document and track compliance to industry and government standards and regulations, e.g. ISO-27001, PCI-DSS, HIPAA, FedRAMP, CMMC, GDPR, etc. Researches and interprets current and pending governmental laws and regulations, industry standards and customer and vendor contracts to communicate compliance requirements to the business. Participates in industry forums monitoring developments in regulatory compliance + **Risk Management:** Brings advanced level skills to assess the information security risk associated with existing and proposed business operational programs, systems, applications, practices and procedures in very complex, business-critical environments. Conduct and document very complex information security risk assessments and assist in the creation and implementation of security solutions and programs + **Cloud Security:** In-dept knowledge of cloud security principles and best practices, including securing cloud infrastructure, services, and applications in platforms, OCI experience is a plus + **Threat and Vulnerability Management:** Brings advanced level skills to research, evaluate, track, and manage information security threats and vulnerabilities in situations where in-depth analysis of ambiguous information is required + **Incident Management and response:** Brings advanced level skills to respond to security events and responding in line with Oracle incident response playbooks to mitigate vulnerabilities + Mentors and trains other team members + Compiles information and reports for management **Qualifications:** + Bachelor's degree in computer science, Information Security, or a related field. Master's degree preferred + 10+ years of experience in cybersecurity, security architecture, or a related technical security role securing cloud environments and developing automation workflows, incident detection, response, and vulnerability remediation + Industry certifications such as CISSP, OSCP, CISM, GIAC, or OCI/AWS/Azure Security Specialty highly preferred. + Proven experience in security architecture, threat modeling, and risk management at an enterprise level. + Expertise in network security, cloud security (OCI, AWS, Azure, GCP), endpoint security, Operating systems (Linux, Windows), MiddleTier, Database and identity management. + Develop and enforce security policies, governance frameworks, and compliance controls (NIST, ISO 27001, SOC 2, GDPR, HIPAA, etc.). + Hands-on experience with firewalls, SIEM tools, IDS/IPS, EDR solutions, and security automation. + Oversee security incident response, forensic analysis, red/blue teaming experience, containment, and remediation of cyber threats + Strong knowledge of cryptography, secure coding practices, zero-trust architecture, and IAM. + Scripting experience with one or more scripting languages: bash, python, perl, YAML or infrastructure as code tools such as Terraform or Cloudformation. + Familiarly with container orchestration technologies such as Kubernetes, Openshift, EKS, AKS, container image scanning and vulnerability management + Excellent communication skills with the ability to effectively communicate technical concepts to both technical and non-technical stakeholders. Exhibits excellent written and verbal communication skills Career Level - IC4 **Responsibilities** + Develop and manage information security governance, including creating policies, procedures, standards, baselines, and guidelines to ensure the secure operation of information systems. + Collaborate with cross-functional teams to establish and maintain robust security policies and procedures, ensuring alignment with industry best practices + Build application security frameworks review process (e.g., OWASP Top 10) to identify vulnerabilities such as SQL injection, XSS, and insecure APIs. + Designing secure system architectures, both on-premise and in the cloud, with knowledge of zero-trust security models, segmentation, and access control models + Evaluate and implement encryption at rest and in transit to secure sensitive data using encryption algorithms (e.g., AES, RSA), public key infrastructure (PKI), SSL/TLS, secrets in vault and key management practices. + Build security patterns for hosting platforms (compute, OKE, containers, cloud native services), SaaS, and PaaS services, conduct security architecture and design review + Perform code reviews, security testing (e.g., SAST, DAST), and the implementation of secure coding practices within SDLC pipeline, and utilizing CI/CD tools (Jenkins, Git, GitHub Actions, Artifactory, sonarqube), as well as managing secrets, SCA, and open-source tools + Build, develop and monitor systems configuration management automation and infrastructure as code (IaC) strategies to achieve secure by design framework + Monitors information systems for security incidents and vulnerabilities; develops monitoring and visibility capabilities; reports on incidents, vulnerabilities, and trends to IT or executive management. + Proven leadership abilities with experience leading security projects and initiatives independently with Agile or Waterfall methodologies + Architects, designs, implements, maintains and operates information system security controls and countermeasures; supervises and trains operators in the administration of these systems; documents the operation, use, and expected outputs of these systems + Develop and maintain cybersecurity documentation such as the System Security Plan (SSP), Privacy Impact Assessment (PIA), Configuration Management Plan (CMP), Plan of Action and Milestones (POA&M), and Standard Operating Procedures (SOP) as necessary + Write stakeholder reports to explain the assessment, audit results, and recommendations. Create and provide metrics for cybersecurity leadership. Brief executive leadership on compliance matters + Participate in internal and external audit and provide executive leadership with briefings on compliance issues, assessment findings, audit results, and recommended actions. Disclaimer: **Certain US customer or client-facing roles may be required to comply with applicable requirements, such as immunization and occupational health mandates.** **Range and benefit information provided in this posting are specific to the stated locations only** US: Hiring Range in USD from: $109,200 to $223,400 per annum. May be eligible for bonus and equity. Oracle maintains broad salary ranges for its roles in order to account for variations in knowledge, skills, experience, market conditions and locations, as well as reflect Oracle's differing products, industries and lines of business. Candidates are typically placed into the range based on the preceding factors as well as internal peer equity. Oracle US offers a comprehensive benefits package which includes the following: 1. Medical, dental, and vision insurance, including expert medical opinion 2. Short term disability and long term disability 3. Life insurance and AD&D 4. Supplemental life insurance (Employee/Spouse/Child) 5. Health care and dependent care Flexible Spending Accounts 6. Pre-tax commuter and parking benefits 7. 401(k) Savings and Investment Plan with company match 8. Paid time off: Flexible Vacation is provided to all eligible employees assigned to a salaried (non-overtime eligible) position. Accrued Vacation is provided to all other employees eligible for vacation benefits. For employees working at least 35 hours per week, the vacation accrual rate is 13 days annually for the first three years of employment and 18 days annually for subsequent years of employment. Vacation accrual is prorated for employees working between 20 and 34 hours per week. Employees working fewer than 20 hours per week are not eligible for vacation. 9. 11 paid holidays 10. Paid sick leave: 72 hours of paid sick leave upon date of hire. Refreshes each calendar year. Unused balance will carry over each year up to a maximum cap of 112 hours. 11. Paid parental leave 12. Adoption assistance 13. Employee Stock Purchase Plan 14. Financial planning and group legal 15. Voluntary benefits including auto, homeowner and pet insurance The role will generally accept applications for at least three calendar days from the posting date or as long as the job remains posted. **About Us** As a world leader in cloud solutions, Oracle uses tomorrow's technology to tackle today's challenges. We've partnered with industry-leaders in almost every sector-and continue to thrive after 40+ years of change by operating with integrity. We know that true innovation starts when everyone is empowered to contribute. That's why we're committed to growing an inclusive workforce that promotes opportunities for all. Oracle careers open the door to global opportunities where work-life balance flourishes. We offer competitive benefits based on parity and consistency and support our people with flexible medical, life insurance, and retirement options. We also encourage employees to give back to their communities through our volunteer programs. We're committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by emailing accommodation-request_************* or by calling *************** in the United States. Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans' status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.

Meta Security is looking for an Incident Response Engineer with experience coordinating, investigating and responding to internal and external threats. You will help the team establish, lead and execute multi-year roadmaps to mature investigative and response services, drawing upon automation and cross functional partnerships to create scalable and resilient operational capabilities. **Required Skills:** Security Engineer, Incident Response Responsibilities: 1. Conduct security investigations and lead security incident response in a cross-functional environment and drive incident resolution. 2. Develop Incident Response initiatives that improve our capabilities to effectively respond and remediate security incidents. 3. Refine operational metrics, key performance indicators, and service level objectives to measure Security Operations and Incident Response services. 4. Influence and align the team's vision and strategy. Collaboratively prioritize and deliver specific multi-year roadmaps and projects. 5. Build, cultivate, and maintain positive relationships with internal customers to identify and facilitate solutions to increase the impact of the team's work. 6. Partner with cross-functional teams to solve challenges related to a broad spectrum of detection and response initiatives. 7. Collaborate with software and production engineering teams to develop scalable and flexible Incident Response and Investigative solutions. 8. Focus on ruthlessly prioritizing, automating and scaling every aspect of our detection and response capabilities. 9. Coach, mentor, support and care for the team in a way that enables long-term career development, happiness and success at scale. **Minimum Qualifications:** Minimum Qualifications: 10. B.S. or M.S. in Computer Science or related field, or equivalent experience 11. 10+ years of work experience in Security Incident Response and Detection & Response Engineering in a large, regulated organization. 12. Be a technical and process subject matter expert regarding Security Operations and Incident Response services. 13. Experience developing and delivering information on incident and program status for leadership. 14. Experience leading and managing complex cross-functional programs. 15. Experience responding to both external and insider threats. 16. Experience analyzing network and host-based security events. 17. Knowledge of networking technologies, specifically TCP/IP and the related protocols. 18. Knowledge of operating systems, file systems, and memory structures on Windows, MacOS and Linux. 19. Coding/scripting experience in one or more general purpose languages. 20. Experience with attacker tactics, techniques, and procedures. **Preferred Qualifications:** Preferred Qualifications: 21. Background in malware analysis, digital forensics, intrusion detection, and/or threat intelligence. 22. Experience in threat hunting including leveraging intelligence data to proactively identify and iteratively investigate suspicious behavior across networks and systems. 23. Broad knowledge across the Security domain, as well as demonstrated experience in one (or more) areas such as Logs and events processing, Incident Management, Digital Forensics, Detection and/or response tool development. 24. Experience recruiting, building, and leading technical teams, including performance management. **Public Compensation:** $177,000/year to $251,000/year + bonus + equity + benefits **Industry:** Internet **Equal Opportunity:** Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment. Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@fb.com.

PagerDuty, Inc. (NYSE:PD) is a global leader in digital operations management. Half of the Fortune 500 and nearly 70% of the Fortune 100 trust PagerDuty as essential infrastructure. Join us. (******************************* At PagerDuty, you'll tackle complex problems, collaborate with kind and ambitious people, and help build a more equitable world-all in a flexible, award-winning workplace. PagerDuty is seeking a **Senior Security Engineer** to join our diverse, customer-focused team! As a **Senior Security Engineer** , you will be a key contributor in leading, driving and delivering security initiatives for PagerDuty's SaaS offerings, focusing on application & product security through architecture reviews, threat modeling sessions, and defining secure-by-design product standards and protections that support PagerDuty's security mission. Since we own and operate what we build, you'll collaborate closely with engineers across many product development teams. You will work closely with our internal development teams to ensure we deliver secure, highly reliable, and scalable solutions to our customers. This is an exciting opportunity to build security solutions that make developers and customers happy. The ideal candidate will have a blend of experiences across large enterprise environments and small or mid-size environments and will have focused on establishing security standards, coordinating with product development teams, developing strategies for secure-by-default architectures, and corresponding process and tooling selection and implementation. Things that make you smile: secure product architectures, providing an engaging Developer Experience for security adoption, and cute animal memes. **KEY RESPONSIBILITIES** + Embrace the role of hands-on technical lead in defining product security standards and guiding platform protections. + Establish criteria and conduct comprehensive security reviews throughout all stages of product development to identify and address security risks. + Perform regular threat assessments, coordinate with third-party testers for penetration testing, and conduct internal penetration testing to identify and mitigate security risks. + Mentor and guide team members to ensure product and business objectives are prioritized in project implementations, fostering a strong documentation culture with project charters and design documents. + Work with loosely defined requirements where you exercise your analytical skills to clarify questions, share your approach, and collaborate with the team to design and implement effective security frameworks. Maintain a strong appetite for challenging problems with a high degree of ownership. + Participate in the team's On-Call rotation, triaging and addressing security issues as they arise, and implement measures to prevent future occurrences. + Enable service team security implementations by developing security-as-code constructs, including infrastructure-as-code (IaC) modules, libraries and frontend components, while creating and maintaining developer-focused documentation to promote easy adoption. + Establish and uphold baseline standards and hardened configurations for platform components. + Continuously enhance security frameworks by focusing on product security standards and software supply chain protections, tailored for application security in cloud-native, microservices environments. **BASIC QUALIFICATIONS** + Proficiency with Application & Product Security typically associated with 4 - 5 years of experience in a Security Engineering role working with a cloud-native, microservices environment, preferably AWS. + Familiarity with cloud-native product technologies including: + Vulnerability detection via multiple approaches including SAST, DAST, SCA, and runtime (e.g., Qualys/Nessus, Wiz, Snyk, GHAS, Semgrep, etc.) + CI/CD technologies and integrations (e.g., CircleCI, Buildkite, Helm, Terraform, Chef) + Product security event logging standards and analysis tools (e.g., SIEM such as: SumoLogic, LogRythm, or Splunk, etc.) + Security Incident Response & Risk Management processes and tools + Proficiency in at least one programming language and framework (e.g. Python, Bash, Phoenix/Elixir, Java, Ruby on Rails), typically associated with 3 - 4 years of experience with the language/framework. + Have exceptional written, oral communication, and interpersonal skills. + Organizational skills with the ability to successfully manage multiple priorities and deadlines. **PREFERRED QUALIFICATIONS** + Ability to analyze complex problems, develop solutions under guidance, and assist in implementing these solutions with a growing set of change management skills. + Possesses a strong sense of ownership and a keen discernment for excellence in securing systems within a SaaS environment, demonstrating the ability to distinguish what constitutes truly robust and effective product security. + Current or past experience with obtaining and maintaining FedRAMP authorization. + Experience working at a SaaS company larger than 1000 employees and $100M in revenue. + Familiarity with Cloud Infrastructure security (such as AWS GuardDuty, AWS CloudTrail, AWS Secrets Manager, AWS IAM & Identity Center, AWS Control Tower, Azure Security Center, Microsoft Defender for Cloud, etc.) + Familiarity with Container Security (e.g., Kubernetes, EKS, AKS, service mesh, baseline/benchmark hardening, identity and secrets orchestration, etc.) + Demonstrated history of mentoring and coaching. The successful applicant will be performing work in FedRAMP environments, and therefore, must be a U.S. Person (i.e. U.S. citizen, U.S. national, lawful permanent resident, asylee, or refugee). **This position may also perform work that the U.S. government has specified can only be performed by a U.S. citizen on U.S. soil.** The base salary range for this position is 152,000 - 248,000 USD. This role may also be eligible for bonus, commission, equity, and/or benefits. Our base salary ranges are determined by role, level, and location. The range, which is subject to change based on primary work location, reflects the minimum and maximum base salary we expect to pay newly hired employees for the position. Within the range, we determine pay for an individual based on a number of factors including market location, job-related knowledge, skills/competencies and experience. Your recruiter can share more about the specific offerings for this role, as well as the salary range for your primary work location during the hiring process. **Hesitant to apply?** We encourage you to submit your resume even if you don't meet every requirement. We value potential and consider each candidate's full professional story. Whether you're exploring a career change or taking your next step, we look forward to reviewing your application. If this just isn't the right role or time - sign up for job alerts (**************************************** ! **Where we work** PagerDuty currently has offices (**************************************** in Atlanta, Lisbon, London, San Francisco, Santiago, Sydney, Tokyo, and Toronto. We offer a hybrid, flexible environment. We also provide ample opportunities for connection, like team offsites and volunteering events. **How we work** Our values (************************************** guide how we support customers, collaborate with colleagues, develop products, and foster a culture of belonging. They define not just our actions, but what it means to be Dutonian. **What we offer** As a global organization, our total rewards approach is competitive with industry standards and aligned with local laws and regulations. Learn more, including country-specific offerings, on our benefits site (********************************************** . **Your package may include:** - Competitive salary - Comprehensive benefits package from day one - Flexible work arrangements - Company equity* - ESPP (Employee Stock Purchase Program)* - Retirement or pension plan* - Generous paid vacation time - Paid holidays and sick leave - Dutonian Wellness Days & HibernationDuty - companywide paid days off in addition to PTO - Paid parental leave: 22 weeks for pregnant parent, 12 weeks for non-pregnant parent (some countries have longer leave standards and we comply with local laws)* - Paid volunteer time off: 20 hours per year - Company-wide hack weeks - Mental wellness programs *Eligibility may vary by role, region, and tenure **About PagerDuty** PagerDuty, Inc. (NYSE:PD) is a global leader in digital operations management, enabling customers to achieve operational efficiency at scale with the PagerDuty Operations Cloud. The PagerDuty Operations Cloud combines AIOps, Automation, Customer Service Operations and Incident Management with a powerful generative AI assistant to create a flexible, resilient and scalable platform to increase innovation velocity, grow revenue, reduce cost, and mitigate the risk of operational failure. Half of the Fortune 500 and nearly 70% of the Fortune 100 rely on PagerDuty as essential infrastructure for the modern enterprise. PagerDuty is Great Place to Work-certified, a Fortune Best Workplace for Millennials, a Fortune Best Medium Workplace, a Fortune Best Workplace in Technology, and a top rated product on TrustRadius and G2. Go behind-the-scenes on our careers site (*********************************** and @pagerduty on Instagram. **Additional Information** PagerDuty is committed to creating a diverse environment and is an equal opportunity employer. PagerDuty does not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, parental status, veteran status, or disability status. PagerDuty is committed to providing reasonable accommodations for qualified individuals with disabilities in our job application process. Should you require accommodation, please email accommodation@pagerduty.com and we will work with you to meet your accessibility needs. PagerDuty uses the E-Verify employment verification program.