Security Engineer Jobs in Vermont

**About the Role:** **Grade Level (for internal use):** 11 **The Team :** S&P Ratings Security team focuses on protecting our clients and users from all aspects of modern-day security threats. The mission of our team is to safeguard systems and data by developing innovative solutions to counter the biggest security challenges. **Responsibilities and Impact:** This technical lead position is critical in designing, developing, and implementing innovative solutions to safeguard confidential and sensitive data. Your expertise will drive alignment with corporate policies and cutting-edge cybersecurity design principles, ensuring resilience against current and emerging cyber threats. We seek a subject matter expert (SME) with a proven track record of developing and managing advanced security solutions to protect systems, design robust security architectures, and balance cybersecurity risks with evolving business and market demands Additional responsibilities include: + Evaluate data threats, identify vulnerabilities, and prioritize security risks across systems. + Create and enforce data security policies to ensure compliance with industry standards. + Review and strengthen access management controls to address security gaps. + Implement scalable data encryption techniques to protect sensitive data at rest and in transit. + Consolidate user repositories and identity providers across the organization. + Collaborate with Application teams and stakeholders to establish data classification policies and security controls for sensitive data. + Perform threat modeling, secure code reviews, and design reviews for high-risk applications. + Develop automated security testing processes using scripting and open-source tools. + Stay current with emerging technologies and trends related to security architecture. + Promote enterprise standards and best practices to ensure security compliance. + Serve as a technical security advisor for new technologies and applications. + Coach and train development teams on IAM and data security best practices. **Compensation/Benefits Information (US Applicants Only):** S&P Global states that the anticipated base salary range for this position is $127,700 - $175,000. Final base salary for this role will be based on the individual's geographic location, as well as experience level, skill set, training, licenses, and certifications. In addition to base compensation, this role is eligible for an annual incentive plan. This role is eligible to receive additional S&P Global benefits. For more information on the benefits that we provide to our employees, please click here (********************************************* . **What We're Looking For:** **Basic Required Qualifications:** + Bachelor's degree in Computer Science or related field, or relevant work experience. + 7+ years in Security engineering roles with a focus on data security and IAM. + Expertise in Data Security use cases (In Transit, At Rest, In Use) and cloud security controls. + Knowledge of identity repositories such as LDAP, Active Directory, and Entra (Azure AD). + Experience with cloud KMS (AWS KMS, Azure Key Vault, Google KMS). + Familiarity with privileged access management systems like CyberArk, SailPoint. + Strong understanding of authentication and authorization protocols (OAuth, SAML, Kerberos). + Expertise in Application Security, Web services security, and Cloud-native applications. + Knowledge of security architecture, TCP/IP, encryption, TLS, ECC, and PKI/Certificates. + Experience with IAM solutions (Okta, Entra ID, AD/LDAP). **Additional Preferred Qualifications:** + Experience with automation security. + Programming expertise - Java, Python, Agile SDLC processes. + Strong understanding of Hardware Security Modules (HSM's) and PKCS#11, JCE or HSM-vendor API's. + Experience migrating applications from On-Prem Active Directory to Entra (Azure AD). + Knowledge with AWS cloud architecture and virtualization technologies such as Containers, EKS, Kubernetes, and VMware. + Experience in defining and documenting security reference architectures and standards + Experience with automation tools associated with DevOps and CI/CD pipelines, and with security integration into CI/CD. + Database, datalake knowledge - Postgres, Oracle, Databricks, Snowflake. **Right to Work Requirements:** This role is limited to persons with indefinite right to work in the United States. **Return to Work:** Have you taken time out for caring responsibilities and are now looking to return to work? As part of our Return to Work initiative, Restart, we are encouraging enthusiastic and talented returners to apply, and will actively support your return to the workplace. **About S&P Global Ratings** At S&P Global Ratings, our analyst-driven credit ratings, research, and sustainable finance opinions provide critical insights that are essential to translating complexity into clarity so market participants can uncover opportunities and make decisions with conviction. By bringing transparency to the market through high-quality independent opinions on creditworthiness, we enable growth across a wide variety of organizations, including businesses, governments, and institutions. S&P Global Ratings is a division of S&P Global (NYSE: SPGI). S&P Global is the world's foremost provider of credit ratings, benchmarks, analytics and workflow solutions in the global capital, commodity and automotive markets. With every one of our offerings, we help many of the world's leading organizations navigate the economic landscape so they can plan for tomorrow, today. For more information, visit ************************ **What's In It For** **You?** **Our Purpose:** Progress is not a self-starter. It requires a catalyst to be set in motion. Information, imagination, people, technology-the right combination can unlock possibility and change the world. Our world is in transition and getting more complex by the day. We push past expected observations and seek out new levels of understanding so that we can help companies, governments and individuals make an impact on tomorrow. At S&P Global we transform data into Essential Intelligence , pinpointing risks and opening possibilities. We Accelerate Progress. **Our People:** We're more than 35,000 strong worldwide-so we're able to understand nuances while having a broad perspective. Our team is driven by curiosity and a shared belief that Essential Intelligence can help build a more prosperous future for us all. From finding new ways to measure sustainability to analyzing energy transition across the supply chain to building workflow solutions that make it easy to tap into insight and apply it. We are changing the way people see things and empowering them to make an impact on the world we live in. We're committed to a more equitable future and to helping our customers find new, sustainable ways of doing business. We're constantly seeking new solutions that have progress in mind. Join us and help create the critical insights that truly make a difference. **Our Values:** **Integrity, Discovery, Partnership** At S&P Global, we focus on Powering Global Markets. Throughout our history, the world's leading organizations have relied on us for the Essential Intelligence they need to make confident decisions about the road ahead. We start with a foundation of **integrity** in all we do, bring a spirit of **discovery** to our work, and collaborate in close **partnership** with each other and our customers to achieve shared goals. **Benefits:** We take care of you, so you can take care of business. We care about our people. That's why we provide everything you-and your career-need to thrive at S&P Global. Our benefits include: + Health & Wellness: Health care coverage designed for the mind and body. + Flexible Downtime: Generous time off helps keep you energized for your time on. + Continuous Learning: Access a wealth of resources to grow your career and learn valuable new skills. + Invest in Your Future: Secure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs. + Family Friendly Perks: It's not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families. + Beyond the Basics: From retail discounts to referral incentive awards-small perks can make a big difference. For more information on benefits by country visit: ***************************************** **Inclusive Hiring and Opportunity at S&P Global:** At S&P Global, we are committed to fostering an inclusive workplace where all individuals have access to opportunities based on their skills, experience, and contributions. Our hiring practices emphasize fairness, transparency, and equal opportunity, ensuring that we attract and retain top talent. By valuing different perspectives and promoting a culture of respect and collaboration, we drive innovation and power global markets. S&P Global has a Securities Disclosure and Trading Policy ("the Policy") that seeks to mitigate conflicts of interest by monitoring and placing restrictions on personal securities holding and trading. The Policy is designed to promote compliance with global regulations. In some Divisions, pursuant to the Policy's requirements, candidates at S&P Global may be asked to disclose securities holdings. Some roles may include a trading prohibition and remediation of positions when there is an effective or potential conflict of interest. Employment at S&P Global is contingent upon compliance with the Policy. ----------------------------------------------------------- **Equal Opportunity Employer** S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment. If you need an accommodation during the application process due to a disability, please send an email to: *************************** and your request will be forwarded to the appropriate person. **US Candidates Only:** The EEO is the Law Poster **************************************************************** describes discrimination protections under federal law. Pay Transparency Nondiscrimination Provision - ********************************************************************************************** ----------------------------------------------------------- 20 - Professional (EEO-2 Job Categories-United States of America), IFTECH202.2 - Middle Professional Tier II (EEO Job Group), SWP Priority - Ratings - (Strategic Workforce Planning) **Job ID:** 310774 **Posted On:** 2025-02-24 **Location:** Virtual, New York, United States

**Our Mission** As the world's number 1 job site*, our mission is to help people get jobs. We strive to cultivate an inclusive and accessible workplace where all people feel comfortable being themselves. We're looking to grow our teams with more people who share our enthusiasm for innovation and creating the best experience for job seekers. **Day to Day** As an Application Security Engineer, your role involves close collaboration with software development teams to ensure the safety of our customers during the development of innovative services. On any given day, your tasks may include code inspections to identify security issues, the development of new frameworks to enhance the speed and security of software development, and fine-tuning service designs in collaboration with software developers. As an Application Security Engineer, you'll apply your skills towards our mission of helping people find jobs and secure our global cloud-native environment which serves 200M unique visitors per month. **Responsibilities** + Creating, updating, and maintaining threat models for a wide variety of software projects + Executing Manual and Automated Secure Coding Reviews, primarily in Java, Python and Javascript + Assist in development of security processes and automated tooling that prevent classes of security issues. + Developing security training and guidance for internal development teams + Work closely with software developers to advise on secure coding practices and to establish a proactive security posture. + Partnering with engineering teams to incrementally improve their security processes, priorities, and choices on a continual basis + Support and consult with product and development teams in the area of application security, including threat modeling and AppSec reviews + Assist teams in reproducing, triaging, and addressing application security vulnerabilities. **Skills/Competencies** + Bachelor's Degree in Computer Science, Engineering, Computer Security, Information Systems, or related field + You demonstrate excellent judgment in assessing and prioritizing technical risk + You have knowledge of security best practices and standards such as OWASP Top 10 and SANS Top 25 with a focus on scalable solutions + You have excellent communication skills with the ability to articulate complex security issues to technical and non-technical collaborators, with an inclusive mindset + You work to identify and remove bottlenecks for your teammates, both in process and technology + You have familiarity with a wide variety of security tools, technologies, and methodologies. + You have some level of scripting/development experience (e.g. Python, Java, Ruby, etc.) **Education Requirement** : Bachelor's Degree in Computer Science, Engineering, Computer Security, Information Systems, or related field **Salary Range Transparency** Austin, Metro Area 110,000- 154,000 USD per year New York City, Metro Area 118,000 - 172,000 USD per year Seattle, Metro Area 134,000 - 188,000 USD per year San Francisco, Bay Area 143,000 - 200,000 USD per year Remote, US 110,000- 154,000 USD per year **Salary Range Disclaimer** The base salary range represents the low and high end of the Indeed salary range for this position in the given work location. Actual salaries will vary depending on factors including but not limited to location, experience, and performance. The range(s) listed is just one component of Indeed's total compensation package for employees. Other rewards may include quarterly bonuses, Restricted Stock Units (RSUs), a Paid Time Off policy, and many region-specific benefits. **Benefits - Health, Work/Life Harmony, & Wellbeing** We care about what you care about. We have a multitude of benefits to support Indeedians, as well as their pets, kids, and partners including medical, dental, vision, disability and life insurance. Indeedians are able to enroll in our company's 401k plan, as well as an equity-based incentive program. Indeedians will also receive open paid time off, 12 paid holidays a year and up to 26 weeks of paid parental leave. For more information, select your country and learn more about our employee benefits, program, & perks at **************************** ! **Equal Opportunities and Accommodations Statement** Indeed is deeply committed to building a workplace and global community where inclusion is not only valued, but prioritized. We're proud to be an Equal Employment and Affirmative Action employer seeking to create a welcoming and diverse environment. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity or expression, family status, marital status, sexual orientation, religious creed, national origin, genetics, neuro-diversity, disability, age, status as a protected veteran, or any other non-merit based or legally protected grounds. Indeed is dedicated to providing reasonable accommodations to qualified individuals with known disabilities to participate in the employment application process. To request an accommodation, an applicant should contact Talent Attraction Accommodations at **************, or by email at accommodations@indeed.com. In the request for an accommodation, please inform us of the nature of your request and your contact information. If you are requesting accommodation for an interview, please reach out at least one week in advance of your interview. For more information about our commitment to Equal Employment Opportunity and Affirmative Action, please review our Equal Employment Opportunity and Affirmative Action Statement of Policy (************************************************************************ **Inclusion & Belonging** Inclusion and belonging are fundamental to our hiring practices and company culture, forming an integral part of our vision for a better world of work. At Indeed, we're committed to the wellbeing of our employees and on a mission to make this the best place to work and thrive. We believe that fostering a diverse and inclusive environment where every employee feels respected and accepted benefits everyone, fueling innovation and creativity. We value diverse experiences, including those who have had prior contact with the criminal legal system. We are committed to providing individuals with criminal records, including formerly incarcerated individuals, a fair chance at employment. Those with military experience are encouraged to apply. Equivalent expertise demonstrated through a combination of work experience, training, military experience, or education is welcome. **Indeed's Employee Recruiting Privacy Policy** **Fair Chance Hiring** We value diverse experiences, including those who have had prior contact with the criminal legal system. We are committed to providing individuals with criminal records, including formerly incarcerated individuals, a fair chance at employment. **Indeed's Employee Recruiting Privacy Policy** Like other employers Indeed uses our own technologies to help us find and attract top talent from around the world. In addition to our site's user and privacy policy found at ***************************** we also want to make you aware of our recruitment specific privacy policy found at ***************************************** **Req ID:** **45401** **This position accepts applications on an ongoing basis, and there is no deadline to apply.** Reference ID: 45401

The Meta security organization is seeking an experienced Security Engineer who loves to build their way out of security problems. We strive to go beyond just identifying security vulnerabilities and flaws. We want to 'treat security as an engineering problem,' solving problems through clever, scalable solutions. We want to knock down whole swaths of vulnerabilities at once and eliminate classes of problems so that they never recur in the future. If you love security but also love spending tons of time coding, this might be the ideal role for you! **Required Skills:** Security Engineer (Builder) Responsibilities: 1. Work with teams of security engineers and developers to architect scalable solutions to complex problems 2. Build out proofs of concept, tools, and/or platforms to address security problems at scale 3. Lead other engineers in creating solutions 4. Partner with cross-functional teams to ensure security maturity work is being prioritized and addressed in ways both timely and durable 5. Eliminate classes of security problems by shifting the detection and preventions left into the developer workflow 6. Provide architectural, design, and threat-based guidance to software development teams to improve security maturity before code is created **Minimum Qualifications:** Minimum Qualifications: 7. BS or MS in Computer Science or a related field, or equivalent experience 8. 10+ years work experience securing enterprise-scale software and services 9. 10+ years work experience writing code in Python, PHP, Java, Ruby, Go, Rust, C/C++ (or similar languages) 10. Experience leading teams addressing security problems via building scaled engineering solutions 11. Experience in reviewing distributed systems design and conducting threat model assessment of software and services **Preferred Qualifications:** Preferred Qualifications: 12. Background in security-focused software engineering, security engineering, and/or building internal-facing security products 13. Broad knowledge of security domains 14. Contributions to the security community (eg, OSS contributions, public research, blogging, presentations, bug bounty, etc.) **Public Compensation:** $177,000/year to $251,000/year + bonus + equity + benefits **Industry:** Internet **Equal Opportunity:** Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment. Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@fb.com.

Are you someone who never rests on their laurels, always strives to go above and beyond, and is committed to keeping your PROMISES? Do you appreciate a company culture that is open, fosters work-life balance, and a dynamic team environment? Then Old Dominion is the home for you. We take pride in being the best in the industry, and from our humble beginnings we know that our People and our Family Spirit are the main ingredient in our secret sauce to success. At Old Dominion we are looking for individuals to join the OD Family that will provide innovative solutions and exceed expectations to keep OD the premier transportation solutions provider. As the Cybersecurity Architect at Old Dominion Freight Line, you will play a critical role in designing, implementing, and maintaining a comprehensive cybersecurity architecture to safeguard the integrity, confidentiality, and availability of the organization's information systems and data. You will lead the development of cybersecurity strategies, provide expert guidance on technical security solutions, and ensure the effective implementation of security controls to mitigate risks across the enterprise. This position requires a high level of technical expertise, strategic thinking, and the ability to collaborate across teams to support business continuity and protect the organization from cyber threats. Primary Responsibilities * Lead the development and implementation of a comprehensive cybersecurity architecture strategy aligned with Old Dominion's business objectives and security goals. * Design secure IT environments and systems, including network security, cloud architecture, endpoint security, identity and access management, and data protection, while ensuring compliance with regulatory requirements and industry best practices (NIST, ISO 27001, SOC 2, etc.). * Architect and implement security controls for on-premises and cloud-based infrastructure, focusing on scalability, resilience, and defense-in-depth principles. * Conduct thorough risk assessments of current and emerging technologies, systems, and software applications to ensure they meet security standards and policies. * Develop, implement, and maintain a cybersecurity governance framework, including policies, procedures, and standards to guide security practices across the organization. * Collaborate with senior leadership to define the organization's cybersecurity strategy, risk appetite, and incident response framework. * Oversee the integration of security tools and platforms (SIEM, IDS/IPS, vulnerability management, etc.) into the enterprise's existing IT architecture. * Ensure compliance with relevant security frameworks, including NIST Cybersecurity Framework, CCPA, PCI-DSS, HIPAA, and others applicable to logistics and transportation industries. * Monitor and assess emerging cybersecurity threats, vulnerabilities, and attack vectors, recommending proactive measures to mitigate risk to business-critical systems. * Lead vulnerability assessments and penetration testing efforts, working closely with internal teams and third-party security consultants to identify weaknesses and implement corrective actions. * Establish a robust vulnerability management process, ensuring timely remediation of critical security issues. * Develop and maintain incident response plans and processes to ensure quick identification, containment, and resolution of cybersecurity incidents, with a focus on minimizing business disruption. * Lead incident response efforts, providing expert guidance on detection, analysis, forensics, and post-mortem evaluations. * Work closely with legal, compliance, and communication teams to ensure incidents are managed effectively, with proper escalation, documentation, and reporting procedures in place. * Collaborate with IT infrastructure, network, and development teams to design secure solutions that align with business requirements and security best practices. * Provide cybersecurity leadership and training to staff across departments, increasing awareness of cyber risks and promoting security best practices. * Serve as a technical leader and mentor for cybersecurity engineers and analysts, fostering a collaborative environment focused on continuous improvement. * Lead the assessment and management of third-party risks, ensuring that external vendors and partners adhere to Old Dominion's cybersecurity requirements. * Conduct due diligence for third-party software and services, identifying and mitigating potential security risks associated with outsourcing and vendor relationships. Job Qualifications Education: * Bachelor's Degree in Cybersecurity, Information Technology, Computer Science, or a related field. Master's degree preferred. Experience: * Minimum of 10+ years of experience in cybersecurity, with at least 5 years in a leadership role or as a cybersecurity architect. * Extensive experience in security architecture design, particularly in enterprise environments, covering network, cloud, data, and endpoint security. * Deep understanding of cybersecurity frameworks (e.g., NIST CSF, ISO 27001, CIS) and experience applying them within a large, complex organization. * Strong knowledge of security technologies such as firewalls, intrusion detection/prevention systems (IDS/IPS), VPNs, SIEM, DLP, endpoint protection, and encryption solutions. * Proficiency in cloud security (AWS, Azure, Google Cloud), including secure cloud architecture, identity and access management, and cloud-native security services. * Experience in vulnerability management tools (e.g., Rapid7, Qualys, Nessus), penetration testing methodologies, and risk management platforms. * Familiarity with regulatory compliance requirements, such as CCPA, HIPAA, PCI-DSS, and others relevant to transportation/logistics. * Advanced knowledge of threat intelligence and incident response frameworks, including hands-on experience in threat hunting and managing real-time security incidents. * Strong understanding of the SDLC and secure development practices, with experience in DevSecOps integration. * Preferred Experience: * Professional certifications, such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), CISA (Certified Information Systems Auditor), or AWS Certified Security - Specialty. * Experience with automation and orchestration tools in a security context (e.g., SOAR, Ansible, Terraform). * Advanced knowledge of networking protocols and technologies (e.g., TCP/IP, VPNs, DNS, HTTP/HTTPS). * Experience with the logistics and transportation industry and understanding the specific security challenges and regulatory requirements in this sector. Compensation Range: The referenced salary range is based on the Company's good faith belief at the time of posting. Actual compensation may vary based on factors such as geographic location, work experience, market conditions, education/training and skill level. ($139,078-$173,826) Working Days: Shift and hours to be determined. Working Shift: Shift and hours to be determined. Work Days and Shift are estimates and are subject to change, at any given time, based on job scheduling and/or business levels. Any information listed regarding Days and Shifts shall be considered a guideline of expectations for the specific position at the time of posting. Application Window: Ongoing Candidates are encouraged to apply as soon as possible. Old Dominion plans to screen candidates, conduct interviews, and proceed with hiring candidates to meet its business needs, which may result in filling the role before the current anticipated application window closes. Join the OD Family Today! As a Full Time member of our Family, you and your family are eligible to receive: * Great Health Benefits including a Zero premium medical plan for employee only coverage * Vision & Dental * Short Term & Long Term Disability * Flex Spending Accounts * 401k Retirement plan with company match and additional company annual discretionary match opportunity * Life Insurance * Wellness Program * 12 Days Paid Time Off * 9 Paid Holidays including a birthday holiday * Training and growth opportunities to build a career * We prioritize our OD family of employees * Ability to advance through our promote from within philosophy * National Career Opportunities Available at our 260+ service centers Old Dominion Freight Line, Inc. is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, gender identity, and/or gender expression, sexual orientation, age, disability, pregnancy, genetic information, military status, Vietnam Era and/or veteran status, or any other characteristic protected by applicable law(s). If you have questions regarding this posting or require assistance with the application process, please click here for contact information.

We are the movers of the world and the makers of the future. We get up every day, roll up our sleeves and build a better world -- together. At Ford, we're all a part of something bigger than ourselves. Are you ready to change the way the world moves? The In-Vehicle Cybersecurity Engineer will act as a technical lead designing security into our vehicles. Engineers will evaluate, critique, and drive secure designs from concept to implementation. In-Vehicle Cybersecurity Engineers identify new methods of securing our technologies from drafting specifications to executing testing. Engineers need to be able to understand and evaluate risk for in-vehicle systems. Recognizing and accommodating the limitations of embedded in-vehicle systems is essential. Engineers are expected to take ownership of assignments including developing in-depth understanding of the technologies under review, working to close security gaps and mitigate identified vulnerabilities, and report out to security management. Over time, Engineers will grow to become subject matter experts acting to develop and mature security controls and features in the vehicle. **What you'll do...** + Own ECU and Vehicle level cyber security design and process integration + Interface with cross-functional teams on technical issues related to cyber security + Perform risk analysis (i.e. TARA) so that appropriate countermeasures can be developed + Develop and maintain security requirements and design validation methodologies (DVM) + Develop and maintain technical documentation as required + Provide training and consulting to internal Ford function teams + Support major product programs/new features with security needs + Collaborate on Advanced Engineering projects with internal and external partners + Research technologies and security benchmarking data gathering + Some traveling may be required (conferences, regional team meetings, government/academia visits, etc.) **You'll have...** + Bachelor's Degree in Electrical Engineering, Computer Engineering, Software Engineering or Computer Science OR a combination of education and experience + 5+ years of experience with embedded, IoT and/or automotive systems cyber security + Experience with security system engineering, development, and testing + Experience with networking and communication protocols (e.g. firewall config, TLS, MACsec, etc.) + Experience designing cyber security controls such as secure communication/networking, secure gateway, IDS, IPS, secure boot, etc. + Experience developing and maintaining engineering documentation including requirements, specifications, test plans, etc. + Self-starter with ability to work independently and collaboratively + Strong communication and analytical skills **Even better, you may have...** + Master's Degree in Cyber Security, Electrical Engineering, Computer Engineering, Software Engineering or Computer Science is a plus + 7+ years of experience with embedded, IoT and/or automotive systems cyber security + Experience with in-vehicle network architecture, modules, and protocols (Automotive Ethernet, CAN/CAN-FD, J1939, USB, SPI, UART, JTAG, etc.) + Experience with symmetric and asymmetric cryptography, digital signature, hash, message authentication, encryption, key exchange + Experience with HSM, SHE, TEE, SELinux, hypervisor, etc. + Experience with SecOC, AUTOSAR + Understanding of embedded RTOS and Linux based operating systems + Understanding of system level architecture, development, design principals + Experience with at least one modern software programming language (C, C++, C#, Python, Java, etc.) + CISSP, GSEC, etc. are a plus This description outlines the general nature and scope of work typically performed in this job. It is not intended to be an exhaustive list of all duties, responsibilities, knowledge, skills, work requirements, etc. It may vary slightly based on business or geographic needs and is subject to being reviewed and updated periodically. You may not check every box, or your experience may look a little different from what we've outlined, but if you think you can bring value to Ford Motor Company, we encourage you to apply! As an established global company, we offer the benefit of choice. You can choose what your Ford future will look like: will your story span the globe, or keep you close to home? Will your career be a deep dive into what you love, or a series of new teams and new skills? Will you be a leader, a changemaker, a technical expert, a culture builder...or all of the above? No matter what you choose, we offer a work life that works for you, including: - Immediate medical, dental, vision and prescription drug coverage - Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care and more - Family building benefits including adoption and surrogacy expense reimbursement, fertility treatments, and more - Vehicle discount program for employees and family members and management leases - Tuition assistance - Established and active employee resource groups - Paid time off for individual and team community service - A generous schedule of paid holidays, including the week between Christmas and New Year's Day - Paid time off and the option to purchase additional vacation time. For a detailed look at our benefits, click here: ******************************* (**************************************************************************************************************************************************************************** This position is a range of salary grades **7-8.** Visa sponsorship is not available for this position. SOUTHEAST MI RESIDENTS: Please note, this job is posted as remote unless the selected candidate lives within 50 miles of Dearborn, MI. In this case we request the candidate to be on-site 1-2 days a week. Candidates for positions with Ford Motor Company must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire. We are an Equal Opportunity Employer committed to a culturally diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status or protected veteran status. In the United States, if you need a reasonable accommodation for the online application process due to a disability, please call **************. \#LI-Remote **Requisition ID** : 41638

We specialize in Staffing, Consulting, Software Development, and Training along with IT services to small to medium size companies. AG's primary objective is to help companies maximize their IT resources and meet the ever-changing IT needs and challenges. In addition, AG offers enterprise resource planning and enterprise application integration, supply-chain management, e-commerce solutions, and B2B public exchanges and B2B process integration solutions. Our company provides application analysis, design, development and programming, software engineering, systems development, testing, integration, and implementation, and management consulting services to various clients - including governmental agencies and private companies - throughout the United States and India. We provide these services in multiple computing environments and use technologies such as client/server architecture, object-oriented programming languages and tools, distributed database management systems, state-of-the-art networking, and communications infrastructures. Our honest and realistic approach to recruiting dictates that AG does not entice or lure engineers from their employers. We represent only high caliber technical professionals who have committed to making a change required by career. Job Description Description - Manage and use security stack of tools Manage all upcoming upgrades and patches Platform Management Experience in MacAfee, Web Sense, Proof point, F-secure running on proof point, MacAfee on the exchange, Voltage. Additional Information GOOD COMMUNICATION SKILLS DURATION: 12+ Months Contract INTERVIEW: Phone & Skype

With Confluent, organizations can harness the full power of continuously flowing data to innovate and win in the modern digital world. We have a purpose that drives us to do better every day - we're creating an entirely new category within data infrastructure - data streaming. This technology will allow every organization to create experiences and use the power of data in ways that profoundly impact the way we all live. This impact is our purpose and drives us to do better every day. One Confluent. One team. One Data Streaming Platform. Data Connects Us. **About the Role:** We are looking for an experienced security engineer to join our infrastructure security engineering team with a strong focus on detection and response. You will have a unique opportunity to leverage your threat detection and response experience and build some of the foundational systems and services to keep our infrastructure free from malicious actors and threats. You will partner closely with all engineering teams, IT administrators, and compliance analysts to ensure that we maintain sufficient visibility into our environments and develop effective programs and practices to ensure that our environments are always secure. Tooling and automation will be key to success as we scale our environments to meet customer demand. We intend to be the world's best, fastest, and most complete stream processing service built by an excellent team, all while having fun - come join us on the journey! **What You Will Do:** + Collaborate with engineering teams for building and setting up pipelines needed to gather relevant security telemetry. + Build and maintain an effective and scalable security monitoring infrastructure solution. + Develop detection strategies to identify anomalous activity and ensure that our critical infrastructure and services operate in a safe environment. + Triage alerts and drive security incidents to closure while reducing its potential impact to Confluent. + Build processes and workflows to triage security alerts and respond to real incidents. + Research new threat attack vectors and ensure that our detection and response capability is in line with the current threat landscape. + Proactively improve the quality of our detection rules and strive to eliminate classes of issues by working directly with engineering teams. + Contribute to strategy, risk management and prioritization for all efforts around detection and response. **What You Will Bring:** + 5+ years of relevant industry experience. + Strong domain knowledge in security incident detection and response. + Hands-on experience in instrumenting and deploying telemetry solutions to ensure visibility in large-scale, heterogenous deployments. + Demonstrated experience with effective incident response and containment practices, preferably in a cloud-first environment. + Experience with operating open-source and/or commercial solutions for logging and security event management. + Decision-maker with the ability to operate with freedom and autonomy.Experience working with distributed teams and other cross-functional stakeholders. + Ability to manage competing priorities and workload. + Ability to script or code fluently in an interpreted language. + Experience with serverless deployments in AWS, GCP, or Azure is a plus. **Come As You Are** At Confluent, equality is a core tenet of our culture. We are committed to building an inclusive global team that represents a variety of backgrounds, perspectives, beliefs, and experiences. The more diverse we are, the richer our community and the broader our impact. Employment decisions are made on the basis of job-related criteria without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other classification protected by applicable law. At Confluent, we are committed to providing competitive pay and benefits that are in line with industry standards. We analyze and carefully consider several factors when determining compensation, including work history, education, professional experience, and location. This position has an annual estimated salary of 192,200 - 225,810 USD and a competitive equity package. The actual pay may vary depending on your skills, qualifications, experience, and work location. In addition, Confluent offers a wide range of employee benefits. To learn more about our benefits click HERE (******************************* . Click HERE (******************************************************************* to review our Candidate Privacy Notice which describes how and when Confluent, Inc., and its group companies, collects, uses, and shares certain personal information of California job applicants and prospective employees. \#LI-Remote

**Title:** Infrastructure Security Engineer (US citizen) **Salary:** $120K/annually **About PSI** We are PSI Services. We power world leading tests. Delivered with trusted science and the very best test taker experience. PSI supports test-takers on their journey to pursuing dreams and gaining certifications that are important to them. They believe that their dreams are worth working for; that their dreams are worth the effort. And we believe that too. This is our core purpose, to empower people to achieve their dreams. We do this by being the best provider of workforce solutions, which foster both technology and science to deliver the best solutions for our test takers. We are searching for top talent to join our PSI team and help grow our products and services. We have a creative, supportive and inclusive culture where we empower people in their careers to be their authentic self and make the most of their great talent. At PSI, we are committed to helping people meet their potential and we believe that promoting diversity, equity and inclusion is critical to our success. That's why you'll find these ideals are intrinsic to our company culture and applied throughout the employee lifecycle. Learn more about what we do at: ************************* **About the Role** The Infrastructure Security Engineer (ISE) is responsible for ensuring that PSI systems are secure, well maintained, and appropriately monitored. They work with senior management across all business units to design security solutions and ensure that PSI environments are designed and maintained in accordance with industry standards. Infrastructure Security Engineers ensure adherence to ISO27001, SOC2, CIS, NIST and other standards. They possess a broad understanding of log aggregation solutions, server hardware, Linux and Windows operating systems, storage, networking, and load balancing. The Infrastructure Security Engineer leads projects and organizes teams to achieve technical and security objectives. Infrastructure Security Engineers work as part of a global team to design, implement, and monitor security across the organization. They engage with vendors, business and technology partners to lead projects and constantly improve security posture. **Role Responsibilities** + Lead projects to evaluate, select, and implement security technologies + Design, configure, implement, and maintain all security platforms and their associated software: firewalls, intrusion detection/intrusion prevention, antivirus/EDR, URL Filtering, email security gateway, SIEM, vulnerability assessment solutions, DLP + Respond to security events and incidents performing containment, root cause analysis, and remediation. + Maintain enterprise vulnerability scanning infrastructure, ensuring daily operation of scans and reporting are occurring as required + Coordinate and sequence external scans and penetration testing + Monitor application and system activity logs for potential threats + Keep up to date with evolving trends and changes in security models and methodologies + Threat model common attacker methods to develop appropriate mitigation techniques + Define and develop technical security standards and guidelines with business stakeholders + Participate in product security architecture planning for both on-premises and cloud-based solutions + Ensure server infrastructure is secure, patched and updated + Take proactive steps to resolve issues before they impact the business + Maintain accurate and up to date security documentation + Serve as team lead and subject matter expert for security **Knowledge, Skills and Experience Requirements** + Bachelor's degree in computer science or equivalent training/certification. + 10+ years of working experience as a Security Engineer or Systems Engineer + 5+ years of working experience with email security tools such as Proofpoint + 5+ years of working experience with CrowdStrike EDR and SIEM solutions + Ability to achieve federal security clearance, must be a US Citizen + Experience with FedRamp security controls, + In-depth knowledge and understanding of the integration of AWS with fundamental Information Security methodologies for both architectural review and implementation + Strong knowledge of Windows and Linux environments + Experience drafting and promoting security policy with all levels of business stakeholders + Experience and detailed technical knowledge of security engineering, system and network security, authentication and security protocols, cryptography, and application security + Detailed knowledge of core server technologies and domain configuration and management, including DNS, DHCP, AD and group policy + Experience in Domain Trusts, Active Directory Federation, and Entra ID + Experience managing remote infrastructure across multiple time zones + Detailed understanding of Azure, AWS, Hyper-V, VMWare and SAN technologies + Understanding of network topologies such as VLANs, IPs, subnets, and routing + Understanding of PowerShell / VB Scripting + Good written and verbal communication skills with the ability to follow a project from beginning to end while providing updates along the way, while prioritizing time and dealing with multiple projects + Experience with CIS Hardening Standards and/or DISA STIGs + Experience with load balancers (F5, Barracuda, Azure) **Benefits & Culture** At PSI, our culture is to be transparent and fair. That's why all of our roles have been benchmarked at a competitive rate against the local market they are based in. To be transparent all of our adverts now include the salary so you can see if we align with your expectations when looking for your next role. In addition to a competitive salary, we offer a comprehensive benefits package and supportive culture when you join us. This includes: + 401k/Pension/Retirement Plan - with country specific employer % + Enhanced PTO/Annual Leave + Medical insurance - country specific + Dental, Vision, Life and Short-Term Disability for US + Flexible Spending Accounts - for the US + Medical Cashback plan covering vision, dental and income protection for UK + Employee Assistance Programme + Commitment and understanding of work/life balance + Dedicated DE&I group that drive core people initiatives + A culture of embracing wellness, including regular global initiatives + Access to supportive and professional mechanisms to help you plan for your future + Volunteer Day and a culture of giving back to our community and industry through volunteering opportunities Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)

The Company Every day, NuHarbor Security improves the cybersecurity of our clients by making it stronger and easier to understand. Our comprehensive suite of security services, from strategic advising to 24-hour monitoring and management, provide an organizational view of security that is focused on results and recommendations that are valuable for both business and technical leaders. We're growing quickly because our clients, and the general market, are looking for these outcomes and for the data it gives them to explain, promote, and justify, their security investment and mission. The Role The Sentinel Security Engineer will work as part of a dynamic team to improve customer security and ensure customer satisfaction through your work to design, deploy, and manage the Microsoft security stack and the Microsoft Sentinel SIEM. Unlike traditional engineering or analyst roles, you will have the opportunity to combine your interest and experience in both developing new solutions and delivering value through one of the world's most popular software platforms. You will be receiving, investigating, and responding to security alerts while looking for opportunities to create time and effort-saving tools to improve scalability, efficiency, and consistency in security operations. What you'll do Live by the NuHarbor corporate values: Protect the House, Help Clients Win, Always Improve. Onboard clients with Sentinel and/or Microsoft Defender for Endpoint Manage and maintain data connector ingestion and functionality Monitor service health Create, monitor and update functionality of workbooks. Create and tune alerts and rules for both endpoint and SIEM purposes Create and maintain playbooks for workflow automation. Validate and tune log ingestion. Define and manage data life cycles and roll-off policies to meet client specifications. Collaborate with SOC and engineering teams to enhance our capabilities. Maintain comprehensive documentation of SIEM configurations and changes. Generate reports and dashboards for various stakeholders Regularly meet with clients to drive forward shared objectives. Your foundation. The requirements for this role: Bachelor's Degree. Typical Degrees: Computer Science, Information Technology, Cybersecurity, Data Analytics, Mathematics, or related field(s). In lieu of a degree, two (2) years of experience in a related technology field and relevant industry certifications are required. Minimum 3 years implementing and operating Microsoft security technologies, particularly Microsoft Defender for Endpoint (MDE) and Sentinel Minimum 2 years of commercial experience implementing DevOps practices and tooling, such as CI/CD pipelines and Infrastructure-as-Code Microsoft certifications in one or more of the following: Azure Security Engineer Associate: AZ-500 Microsoft Security Operations Analyst: SC-200 Microsoft Cybersecurity Architect Expert: SC-100 Microsoft Identity and Access Administrator: SC-300 Microsoft Information Protection & Compliance Administrator Associate: SC-400 Detailed practical knowledge of Internet protocols, firewalls, proxies, and intrusion detection/prevention systems. Testing and validation processes and methodologies Proven experience with scripting and automation (ex. PowerShell, Python) Demonstrated understanding of security event logging, correlation, and alerting. Excellent written and verbal communication skills. Ability to gain trust, collaborate and achieve shared objectives with both internal and external stakeholders. Must be a citizen of the United States. Additional capabilities that will differentiate you for this role: Five (5) or more years' experience in an information technology field. Experience in Azure monitoring tools & services (e.g., Azure Monitor, Azure Monitor for Containers, Application Insight, Azure Managed Grafana, Azure Advisor, Azure Cost Analysis). Experience with Docker and Containers Orchestration (Azure Kubernetes Service and/or Azure Container Apps). Proven experience in data migration projects, preferably involving Splunk and Azure. Experience with ETL processes, data mapping, and data lifecycle management. Experience with Infrastructure-as-Code (IaC) Published articles or presentations in the field of SIEM and cybersecurity. Demonstrated proactive approach to cybersecurity and customer service. Demonstrated ability to make complex subjects understandable. The Rewards What you can expect: The engagement and support of company leadership who recognize the challenge of marketing a complex cybersecurity service in a chaotic market. An organization that recognizes and rewards employee commitment and contribution to our customers' satisfaction and success Growth in your career and capabilities as you help to chart a path to improving customer interactivity and service adoption. A collaborative and driven working environment in a rapidly growing company and market A fun and social working environment where you are encouraged to be your true self. You can also expect competitive salary and benefits, including paid time to give back in your community and generous PTO. We are purpose driven. We, as an organization, above anything else protect the house first and then help our customers win. If this sounds like the kind of organization you'd like to be a part of, we‘d like to hear from you. AAP/EEO Statement The Equal Employment Opportunity Policy of NuHarbor Security is to provide a fair and equal employment opportunity for all associates and job applicants regardless of race, color, religion, national origin, gender, sexual orientation, age, marital status or disability. NuHarbor Security hires and promotes individuals solely based on their qualifications for the job to be filled. NuHarbor Security believes that employees should be provided with a working environment which enables each associate to be productive and to work to the best of his or her ability. We do not condone or tolerate an atmosphere of intimidation or harassment based on race, color, religion, national origin, gender, sexual orientation, age, marital status, or disability. We expect and require the cooperation of all employees in maintaining a discrimination and harassment-free atmosphere.

Lumen connects the world. We are igniting business growth by connecting people, data and applications - quickly, securely, and effortlessly. Together, we are building a culture and company from the people up - committed to teamwork, trust and transparency. People power progress. We're looking for top-tier talent and offer the flexibility you need to thrive and deliver lasting impact. Join us as we digitally connect the world and shape the future. **The Role** The Senior Information Security Engineer is a member of the Fusion Center Corporate Firewall Operations (CNFW) team that is responsible for managing and securing the Lumen Enterprise including but not limited to maintaining Firewall and VPN Operations. In addition, CNFW Engineers are responsible to evaluate current capabilities and predict future needs, then work with internal stakeholders, vendors, and peers to anticipate, define, and pursue these capabilities. **The Main Responsibilities** + Perform as Subject Matter Expert (SME) for existing environments, mentor lower-level engineers, and assume ownership and accountability in areas of recognized technical expertise + Perform high-level trouble identification, interpretation of standards, and implement resolution for internal network security problems or issues + Develop and maintain written procedures to maintain technical accuracy + Maintain a multitude of firewall vendor hardware across various environments + Support security projects dedicated to improving Cyber Defense Team or Lumen's security posture + Verify and validate security notifications from both internal and external sources + Identify and resolve incidents that are not defined by (or deviate from) an existing incident response guide + Respond to, remediate, and document network security related alerts and issues not limited to dashboard alerts, tickets, emails, or phone calls + Participate in on-call rotation + Able to work other shifts as needed based on business requirements + Maintain security of the network by ensuring firewall rules meet company policy and configuring best practice security measures on devices **What We Look For in a Candidate** + Bachelor's degree in computer science, engineering, or related field, or equivalent experience + 5+ years of experience in Network Operations, Security Operations, Network Security, or Application Security + Knowledge of information security industry and regulatory obligations; PCI, CIS, NIST Frameworks (800-53, CSF, CMMC, etc.), HIPAA, FedRAMP, etc. + Excellent understanding of common computing platforms including Windows Client/Server, Macintosh, Linux, networking, and security appliances + Extensive hands-on experience with Next-Generation Firewalls, web-content filtering systems, IPS/IDS, and/or VPN devices + Candidate must possess, or be willing to pursue, applicable professional/technical certifications, such as CISSP, GSEC, Palo Alto, Checkpoint, Juniper, and Cisco + Strong work ethic, ability to work in a fast-paced team-oriented environment, and solid oral and written communication skills + Able to obtain a GSA Public Trust suitability **Preferred Qualifications:** + 5+ years of experience in network and/or firewall engineering, administration, design, and implementation including experience in applying methodologies and principles for all levels of security + Solid understanding of information security fundamentals, host and network security hardening and requirements; networking protocols; common risk management concepts + Knowledge of Project Management processes and practices + Solid analytical and problem-solving skills related to networking and operating systems + Development experience in scripting languages such as Python or Perl is a plus + Experience with large enterprise data centers and/or networks and applications + Advanced knowledge of cloud-based firewalls from Amazon, Google, Microsoft, or firewall vendors **Compensation** This information reflects the anticipated base salary range for this position based on current national data. Minimums and maximums may vary based on location. Individual pay is based on skills, experience and other relevant factors. Location Based Pay Ranges: $82,969 - $110,625 in these states: AL, AR, AZ, FL, GA, IA, ID, IN, KS, KY, LA, ME, MO, MS, MT, ND, NE, NM, OH, OK, PA, SC, SD, TN, UT, VT, WI, WV, and WY. $87,117 - $116,156 in these states: CO, HI, MI, MN, NC, NH, NV, OR, and RI. $91,266 - $121,688 in these states: AK, CA, CT, DC, DE, IL, MA, MD, NJ, NY, TX, VA, and WA. \#LI-MG1 Lumen offers a comprehensive package featuring a broad range of Health, Life, Voluntary Lifestyle benefits and other perks that enhance your physical, mental, emotional and financial wellbeing. We're able to answer any additional questions you may have about our bonus structure (short-term incentives, long-term incentives and/or sales compensation) as you move through the selection process. Learn more about Lumen's: + Benefits (**************************************************** + Bonus Structure **What to Expect Next** Requisition #: 337230 **Background Screening** If you are selected for a position, there will be a background screen, which may include checks for criminal records and/or motor vehicle reports and/or drug screening, depending on the position requirements. For more information on these checks, please refer to the Post Offer section of our FAQ page (************************************* . Job-related concerns identified during the background screening may disqualify you from the new position or your current role. Background results will be evaluated on a case-by-case basis. Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records. **Equal Employment Opportunities** We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, gender expression, marital status, family status, pregnancy, or other legally protected status (collectively, "protected statuses"). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training. **Disclaimer** The job responsibilities described above indicate the general nature and level of work performed by employees within this classification. It is not intended to include a comprehensive inventory of all duties and responsibilities for this job. Job duties and responsibilities are subject to change based on evolving business needs and conditions. In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information. Please be advised that Lumen does not require any form of payment from job applicants during the recruitment process. All legitimate job openings will be posted on our official website or communicated through official company email addresses. If you encounter any job offers that request payment in exchange for employment at Lumen, they are not for employment with us, but may relate to another company with a similar name. **Application Deadline** 04/05/2025

Trustmark's mission is to improve wellbeing - for everyone. It is a mission grounded in a belief in equality and born from our caring culture. It is a culture we can only realize by building trust. Trust established by ensuring associates feel respected, valued and heard. At Trustmark, you'll work collaboratively to transform lives and help people, communities and businesses thrive. Flourish in a culture of diversity and inclusion where appreciation, mutual respect and trust are constants, not just for our customers but for ourselves. At Trustmark, we have a commitment to welcoming people, no matter their background, identity or experience, to a workplace where they feel safe being their whole, authentic selves. A workplace made up of diverse, empowered individuals that allows ideas to thrive and enables us to bring the best to our colleagues, clients and communities. We are seeking a highly skilled Cyber Security Engineer to join our team and play a pivotal role in safeguarding our organization's digital assets. The ideal candidate will possess a deep understanding of cybersecurity principles, a strong technical background, and a passion for protecting sensitive information. You will be responsible for engineering, implementing and monitoring security measures for the protection of Trustmark's computer systems, networks and information. The role helps identify and define system security requirements as well as develop detailed cyber security designs. **Responsibilities:** + Design, implement, and maintain security architectures, systems, and solutions to protect critical infrastructure and data. + Conduct vulnerability assessments and penetration testing to identify and mitigate risks. + Develop and implement security policies, standards, and procedures. + Monitor security systems and respond to incidents promptly and effectively. + Stay up-to-date with the latest cybersecurity threats and trends. + Collaborate with cross-functional teams to ensure security is integrated into all aspects of the business. + Provide technical guidance and support to internal stakeholders. **Qualifications:** + Bachelor's degree in Computer Science, Information Technology, or a related field or + 3-5 Years of network engineering or cyber engineering experience + Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO 27001). + Proficiency in network security, systems security, application security, and data security. + Hands-on experience with security tools and technologies (e.g., firewalls, intrusion detection systems, encryption, SIEM). + Excellent problem-solving and analytical skills. + Strong communication and interpersonal skills. + Ability to work independently and as part of a team. **Preferred Qualifications:** + Certifications such as CISSP, CISA, or CEH. + Experience with cloud security (e.g., AWS, Azure, GCP). + Knowledge of scripting and programming languages (e.g., Python, PowerShell). Brand: Trustmark Come join a team at Trustmark that will not only utilize your current skills but will enhance them as well. Trustmark benefits include health/dental/vision, life insurance, FSA and HSA, 401(k) plan, Employee Assistant Program, Back-up Care for Children, Adults and Elders and many health and wellness initiatives. We also offer a Wellness program that enables employees to participate in health initiatives to reduce their insurance premiums. **For the fourth consecutive year we were selected as a Top Workplace by the Chicago Tribune.** The award is based exclusively on Trustmark associate responses to an anonymous survey. The survey measured 15 key drivers of engaged cultures that are critical to the success of an organization. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, sexual identity, age, veteran or disability. Join a passionate and purpose-driven team of colleagues who contribute to Trustmark's mission of helping people increase wellbeing through better health and greater financial security. At Trustmark, you'll work collaboratively to transform lives and help people, communities and businesses thrive. Flourish in a culture where appreciation, mutual respect and trust are constants, not just for our customers but for ourselves. Introduce yourself to our recruiters and we'll get in touch if there's a role that seems like a good match. When you join Trustmark, you become part of an organization that makes a positive difference in people's lives. You will play a vital role in delivering on our mission of helping people increase wellbeing through better health and greater financial security. Our customers tell us they simply appreciate the personal attention and knowledgeable service. Others tell us we've changed their lives. At Trustmark, you'll be part of a close-knit team. You'll enjoy abundant opportunities to grow your career. That's why so many of our associates stay at Trustmark and thrive. Trustmark benefits from more than 100 years of experience but pairs that rich history with a palpable sense of optimism, growth and excitement for what's ahead - and beyond. This is a place where associates bring their whole selves to work each day. A place where you can be yourself. Whatever your beyond is, you can achieve it at Trustmark.

General information Requisition # R59433 Posting Date 03/21/2025 Security Clearance Required Public Trust/Suitability Remote Type Hybrid Time Type Full time Description & Requirements Transform the future of federal services with ManTech! Join a vibrant, energetic team committed to enhancing national security and public services through innovative tech. Since 1968, we've partnered with Federal Civilian sectors to deliver impactful solutions. Engage in exciting projects in Digital Transformation, Cybersecurity, IT, Data Analytics and more. Ignite your career and drive change. Your journey starts now-innovate and excel with ManTech! ManTech seeks a motivated, career and customer-oriented Senior Network Security Architect in South Burlington, VT or Camp Springs, MD. Responsibilities include, but are not limited to: * Use Agile engineering approach to DevSecOps and solutioning with Access Identity and Directory Services to architect, engineer, and implement network security control methods in cloud, on-premise and virtual environments to support DHS directive 4300A, NIST 800-53, and industry best practices * Maintain network readiness and prepare to scale for the future through compliance with all federal requirements such as DHS 4300A, NIST 800-53, and other industry best practices. * Perform as Level 4 network / firewall escalation point for network security to effectively support security processes and procedures. Work with firewall engineers to configure and implement Next Generation Firewall and Intrusion Protection Systems. Extend into secure network solutions, Palo Alto firewall and intrusion protection devices to scale. * Continually improve on the network stability working with the performance team to establish network performance metrics for alerting and remediation automations. Architect and engineer a Network Access Control (NAC) solution. * Audit firmware versions and configuration settings for the USCIS cloud and infrastructure platforms/devices to eliminate vulnerabilities and ensure USCIS deploys and operates in accordance with vendor recommendations, industry best-practices and DHS configuration guidance. * Review existing configuration settings to identify potential security vulnerabilities and propose/implement setting or architectural changes to address these vulnerabilities. Evaluate current and future network designs to ensure that network security is incorporated as an integral consideration in all designs. * Perform securing, hardening, and rule creation for new firewalls, switches, routers, and other network equipment. This includes reviewing and re-evaluating existing configuration settings and rules to verify USCIS' security posture and eliminate unnecessary risk. Minimum Qualifications: * A minimum of ten (10) years of experience as an Enterprise Architect across large and complex network and Microsoft AD environments * Certifications: CCIE, PCNSE * Extensive security background with Palo Alto firewall systems * A minimum of four (4) years of experience in cloud technologies such as but not limited to Azure and AWS. * Experience designing and implementing enterprise solutions that increase the availability and security of the enterprise. * Extensive experience with on premise physical infrastructure and Virtualization technologies including Hyper-V, VMWare, SAN, FCoe, NFS, SMB3 Preferred Qualifications: * Familiar with tools including: ServiceNow, GitHub, Jira, Confluence * Experience with ITIL, DevSecOps and Agile concepts * Experience supporting Government contracts Clearance Requirements: * U.S. Citizen with the ability to obtain Public Trust and complete DHS Security Clearance prior to starting the position. * Current DHS EOD highly preferred Physical Requirements: * Office work, typically sedentary with some movement around the office. The projected compensation range for this position is $130,800.00-$232,100.00. There are differentiating factors that can impact a final salary/hourly rate, including, but not limited to, Contract Wage Determination, relevant work experience, skills and competencies that align to the specified role, geographic location (For Remote Opportunities), education and certifications as well as Federal Government Contract Labor categories. In addition, ManTech invests in it's employees beyond just compensation. ManTech's benefits offerings include, dependent upon position, Health Insurance, Life Insurance, Paid Time Off, Holiday Pay, Short Term and Long Term Disability, Retirement and Savings, Learning and Development opportunities, wellness programs as well as other optional benefit elections. ManTech International Corporation, as well as its subsidiaries proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. If you are a qualified individual with a disability and require a reasonable accommodation to apply for a position with ManTech through its online applicant system, please email us at ******************* and provide your name and contact information.

**About the team:** The Information Security organization advances the overall state of security at Rubrik through purposeful initiatives and coordination of large security projects. Information Security builds technologies, tools, and processes to better enable teams at Rubrik to develop secure software and protect data and systems with appropriate security controls. Information Security also develops systems to monitor and respond to attacks against our systems, provides awareness education to teams on security best practices for data protection, and ensures data sharing relationships with third parties in order to securely protect Rubrik information. **What you'll do:** + Partner with engineering teams across Rubrik to create secure cloud infrastructure design and deployment architectures utilizing threat models and risk analysis documentation specific to a FedRAMP and IL4+ environment + Work with development teams, operations, governance, and other stakeholders to draft security standards and controls and implement monitoring, alerting and governance to adhere to those specifications + Support incident responders in analyzing applicable threats, vulnerabilities, controls and residual risks inside and out of the FedRAMP boundary + Analyze and harden existing applications, infrastructure, automation, and deployment processes partnering with multiple teams to design & implement solutions within the space + Execute Security impact Analysis reviews for all FedRAMP changes coming in to the change management process **Experience you'll need:** + Bachelor's degree required; BS or MS in Computer Science, Information Technology, or a related field + 15 years of experience including cloud technologies, technical architecture and application development + 8+ years experience in cloud security, with experience across AWS, GCP and/or Azure infrastructure design + 2+ years experience in VMWare and/or Network security modeling + Broad knowledge of private and public cloud attack vectors and exploits + Subject matter expertise in CI/CD, Cloud APIs and Identity management + Deep understanding of compute, network and storage technologies in AWS, GCP and/or Azure + Programming experience in Python, Go or Java + Deep security policy subject matter expertise in at least one major public cloud provider (AWS, GCP, Azure) + Experience with deploying and securing SaaS applications and cloud environments at scale + Working experience with CI/CD pipeline, containerization (Kubernetes, Docker, etc) and MicroServices + Knowledge of of IaC (Infrastructure as Code) concepts and implementing standards within them + Understanding of cloud security maturity model frameworks and how to apply them + Strong written and verbal communication skills **Additional Requirements:** Due to the criteria and security levels for Rubrik's FedRAMP program, this position will require the following: + U.S. citizenship at the time of hire + Residence within the contiguous United States (i.e., the lower 48 states and the District of Columbia); and + Willingness to undergo a Single Source Background Investigation if required. \#LI-Remote **Security and Privacy Responsibilities** : This position carries special Security and Privacy Responsibilities for protecting the U.S. Federal Government's interests: + Know, acknowledge, and follow system-specific security policies and procedures; + Protect data and individual privacy per requirements and regulations; + Perform ongoing activities in compliance with service and contractual obligations; + Participate in role-based training, completing assignments on a timely basis; + Report security issues promptly, and aid investigation when needed; + Support controlled changes and vulnerability remediation activities; and + Work collaboratively with Information Security in designing, implementing, assessing or enhancing system-specific security and privacy controls. **Position Risk Designation** : This position carries duties and responsibilities involving the U.S. Federal Government's interests. The selected incumbent may be subject to one or both of the additional background checks with periodic re-screening as noted below: **Position Risk Designation: Non-Sensitive, Low Risk, Tier 1** _Incumbents without access to U.S. Government data may be required to complete Standard Form 85 and undergo a Tier 1 Investigation (T1) for non-sensitive positions of Low Risk. (Baseline screening; formerly National Agency Check and Inquiries (NACI))._ **Position Risk Designation: Non-Sensitive, Moderate Risk, Tier 2 (Public Trust)** _Incumbents with access to U.S. Government data may be required to complete Standard Form 85P and undergo Tier 2 (T2) Investigation for non-sensitive positions designated Moderate Risk._ **Position Risk Designation:Moderate Risk Law Enforcement (CJIS)** _When hired for a position where access to Moderate Risk criminal justice information is required, the employee must complete a fingerprint-based national criminal history background check within 30 days after the employee's start date._ The minimum and maximum base salaries for this role are posted below; additionally, the role is eligible for bonus potential, equity and benefits. The range displayed reflects the minimum and maximum target for new hire salaries for the role based on U.S. location. Within the range, the salary offered will be determined by work location and additional factors, including job-related skills, experience, and relevant education or training. US (SF Bay Area, DC Metro, NYC) Pay Range $206,600-$310,000 USD The minimum and maximum base salaries for this role are posted below; additionally, the role is eligible for bonus potential, equity and benefits. The range displayed reflects the minimum and maximum target for new hire salaries for the role based on U.S. location. Within the range, the salary offered will be determined by work location and additional factors, including job-related skills, experience, and relevant education or training. US2 (all other US offices/remote) Pay Range $186,000-$279,000 USD **Join Us in Securing the World's Data** Rubrik (NYSE: RBRK) is on a mission to secure the world's data. With Zero Trust Data Security, we help organizations achieve business resilience against cyberattacks, malicious insiders, and operational disruptions. Rubrik Security Cloud, powered by machine learning, secures data across enterprise, cloud, and SaaS applications. We help organizations uphold data integrity, deliver data availability that withstands adverse conditions, continuously monitor data risks and threats, and restore businesses with their data when infrastructure is attacked. Linkedin (******************************************************************** | X (formerly Twitter) (****************************** | Instagram (************************************* | Rubrik.com **Inclusion @ Rubrik** At Rubrik, we are dedicated to fostering a culture where people from all backgrounds are valued, feel they belong, and believe they can succeed. Our commitment to inclusion is at the heart of our mission to secure the world's data. Our goal is to hire and promote the best talent, regardless of background. We continually review our hiring practices to ensure fairness and strive to create an environment where every employee has equal access to opportunities for growth and excellence. We believe in empowering everyone to bring their authentic selves to work and achieve their fullest potential. **Our inclusion strategy focuses on three core areas of our business and culture:** + Our Company: We are committed to building a merit-based organization that offers equal access to growth and success for all employees globally. Your potential is limitless here. + Our Culture: We strive to create an inclusive atmosphere where individuals from all backgrounds feel a strong sense of belonging, can thrive, and do their best work. Your contributions help us innovate and break boundaries. + Our Communities: We are dedicated to expanding our engagement with the communities we operate in, creating opportunities for underrepresented talent and driving greater innovation for our clients. Your impact extends beyond Rubrik, contributing to safer and stronger communities. **Equal Opportunity Employer/Veterans/Disabled** Rubrik is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability. Rubrik provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, Rubrik complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training. Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. Please contact us at ************* if you require a reasonable accommodation to apply for a job or to perform your job. Examples of reasonable accommodation include making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment. EEO IS THE LAW (*********************************************************************************************** NOTIFICATION OF EMPLOYEE RIGHTS UNDER FEDERAL LABOR LAWS

**170+ Years Strong. Industry Leader. Global Impact.** At Pinkerton, the mission is to protect our clients. To do this, we provide enterprise risk management services and programs specifically designed for each client. Pinkerton employees are one of our most important assets and critical to the delivery of world-class solutions. Bonded together, we share a commitment to integrity, vigilance, and excellence. Pinkerton is an inclusive employer who seeks candidates with diverse backgrounds, experiences, and perspectives to join our family of industry subject matter experts. The Senior Security Systems Engineer, assigned to one of Pinkerton's largest global clients, will be responsible for the design, implementation, and optimization of advanced physical security systems, with a primary focus on Genetec platforms. The Engineer ensures the seamless integration of security technologies to protect corporate offices, personnel, and assets while aligning with organizational goals and industry best practices. This role brings technical expertise, programmatic leadership, and a proactive approach to maintaining and enhancing security systems. **This position can be based anywhere (remote) within the United States.** **Responsibilities** + Represent Pinkerton's core values of integrity, vigilance, and excellence. + Design, configure, deploy and maintain Genetec security systems, including access control, video surveillance, and analytics while tailoring to corporate office environments. + Lead the integration of Genetec platforms with existing IT and physical security infrastructure while ensuring scalability and interoperability. + Develop and maintain system documentation, including configurations, diagrams, and operational procedures to ensure operational reliability. + Collaborate with cross-functional teams including IT, security operations, and external vendors to implement and optimize security solutions. + Monitor system performance, conduct regular audits, and recommend enhancements to improve efficiency, security, and compliance. + Provide technical support and training to security and operational teams while ensuring effective use of Genetec systems. + Support project management efforts, including timelines, resource allocation, and stakeholder communication for new security system deployments. + Design and implement access control and CCTV systems while recommending appropriate hardware and software solutions. + Provide technical support and training to clients and internal teams for effective system use. + Develop and maintain comprehensive documentation including programming standards and hardware configurations. + Participate in end-to-end testing efforts and knowledge transfer. + Install, program, and configure Genetec enterprise security systems such as door access control, CCTV, intrusion detection, and related components. + Design, configure, and manage virtual machines (VMs) on server infrastructures across platforms like VMware, Hyper-V, and cloud-based solutions. + Apply expertise in networking fundamentals including TCP/IP, routing protocols, VLANs, VPNs, and firewalls to design and troubleshoot complex network infrastructures. + Troubleshoot and ensure proper functioning of new security installations in compliance with relevant requirements. + Analyze and implement software and hardware enhancements to optimize existing systems while maintaining design standards and operating procedures. + Stay current with industry trends and emerging technologies to propose innovative solutions and maintain the organization's competitive edge. + All other duties, as assigned. **Qualifications** Bachelor's degree in engineering, information technology, or a related field with at least ten to twelve years of experience in physical security system design, implementation, and support and a focus on Genetec platforms. + Genetec Certified Professional or PSP, preferred. + Knowledge of network architecture and protocols related to security systems. + Proficiency in configuring and managing Genetec Security Center including access control and video management modules. + Able to analyze complex situations and recommend solutions. + Able to collaborate with cross-functional teams and manage vendor relationships. + Client orientated and results driven. + Able to understand business requirements and deliver tailored solutions. + Sound analytical and problem-solving skills. + Project management skills. + Effective communication skills including the ability to convey technical concepts to non-technical stakeholders. + Attentive to detail and accuracy. + Consistently delivers on commitments and achieves expected business results. + Computer skills; Microsoft Office. **Working Conditions:** With or without reasonable accommodation, requires the physical and mental capacity to effectively perform all essential functions; + Regular computer usage. + Occasional reaching and lifting of small objects and operating office equipment. + Frequent sitting. + Travel, as required. **Benefits** Benefit options include employer-paid life and AD&D, voluntary life and AD&D, medical, (HSA) Health Savings Account, (FSA) Flexible Savings Account, dental, vision, short-term disability, long-term disability, 401(K), paid time off (vacation, personal, sick, and holidays) and several employee assistance-related programs. This information provides a brief benefit overview. Upon the acceptance of an employment offer, the new employee will receive comprehensive plan details based on specific eligibility rules. **Posted Salary Range** USD $120,000.00 - USD $180,000.00 /Yr. Submit a Referral (****************************************************************************************************************************************** **Location** _US-_ **ID** _2025-1543_ **Category** _Security Risk Management_ **Position Type** _Full-Time_ **Min Pay Rate** _USD $120,000.00/Yr._ **Max Pay Rate** _USD $180,000.00/Yr._ **Job Type** _Remote_ Pinkerton is an equal opportunity employer to all applicants and positions without regard to race/ethnicity, color, national origin, ancestry, sex/gender, gender identity/expression, sexual orientation, marital/prenatal status, pregnancy/childbirth or related conditions, religion, creed, age, disability, genetic information, veteran status, or any protected status by local, state, federal or country-specific law.

Headquartered in Dublin, Ohio, Cardinal Health, Inc. (NYSE: CAH) is a global, integrated healthcare services and products company, providing customized solutions for hospitals, health systems, pharmacies, ambulatory surgery centers, clinical laboratories and physician offices worldwide. The company provides clinically-proven medical products and pharmaceuticals and cost-effective solutions that enhance supply chain efficiency from hospital to home. Cardinal Health connects patients, providers, payers, pharmacists and manufacturers for integrated care coordination and better patient management. Backed by nearly 100 years of experience, with approximately 50,000 employees in 46 countries, Cardinal Health ranks among the top 20 on the Fortune 500. We currently have a full-time career opening within Information Security to support the growth of our Navista Application Suite and the Integrated Oncology Network (IoN). **Department overview** The Information Security department at Cardinal Health enables Cardinal Health to securely deliver healthcare products and solutions that improve the lives of people every day by ensuring security practices and controls are embedded into Cardinal Health's people, process and technology. We are a remote-first team and are excited to offer full-time remote opportunities. **Functional Overview** The Senior Information Security & Risk Engineer is a new capability for Cardinal Health and will be executed by the Product Security team. The primary goal of this position is to ensure delivery of best-in-class cybersecurity, risk management, and compliance for Navista, an oncology Managed Service Offering hosted by Cardinal Health. **Job Overview** The Information Security & Risk Engineer will be responsible for day-to-day activities in implementing the corporate information security and compliance program. The individual will be a front-line partner to technical teams and work across the organization to deliver security and compliance initiatives aligning to corporate policies, standards, procedures and audit activities. Success in the role will be measured by the effectiveness of the implementation of information security, risk management and compliance directives. This role will work with various IT and business teams to drive both information security and compliance initiatives. The individual will assist with internal and external security compliance monitoring activities, review client audits, IT control audits, architecture reviews, threat modeling and security risk assessments. Good interpersonal and relationship building skills are essential for success. **Job Responsibilities Include:** + Maintain governance program that ensures that the security policies, standards and process are in place + Serve as liaison to other Cardinal Health teams to ensure knowledge share and best practices + Partner with the engineering, architecture and operations teams to ensure delivery of infrastructure design and threat models which prove security requirements + Monitor security trends and drive security best practices throughout the organization via threat models and risk analysis + Evaluate, design, test, and recommend new or improved controls + Work with third party firms and consultants to conduct independent security audits, vulnerability scans, and penetration tests + Partner with developers to mentor and advise on secure coding and SDLC practices, define test cases and ensure appropriate testing, remediations, and mitigations + Investigate, drive resolution and document security incidents + Travel to various Integrated Oncology Network (IoN) sites may be required **Qualifications** + Bachelors Degree in related field, or equivalent work experience leading cybersecurity or information security initiatives + Have 5+ years information security related work experience, preferably within the healthcare industry + Extensive experience with network and infrastructure design and security, ideally within the Azure cloud + Experience in vulnerability management programs, vulnerability assessments and advanced understanding of risk management + Familiarity with at least one common programming language, software development pipelines, and system lifecycles + Familiarity with standards such as HIPAA/HITECH, ISO, ITIL, NIST, PCI DSS, & SOX, CCPA, OWASP + Professional security certification (CISSP or CISM preferred) + Experience advising and mentoring diverse teams where you do not have direct authority + Strong written and verbal communication skills **Anticipated salary range:** $121,600 - $182,385 **Bonus eligible:** Yes **Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being. + Medical, dental and vision coverage + Paid time off plan + Health savings account (HSA) + 401k savings plan + Access to wages before pay day with my FlexPay + Flexible spending accounts (FSAs) + Short- and long-term disability coverage + Work-Life resources + Paid parental leave + Healthy lifestyle programs **Application window anticipated to close:** 4/7/2025 *if interested in opportunity, please submit application as soon as possible. The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity. _Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._ _Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._ _To read and review this privacy notice click_ here (***************************************************************************************************************************

PagerDuty, Inc. (NYSE:PD) is a global leader in digital operations management. Half of the Fortune 500 and nearly 70% of the Fortune 100 trust PagerDuty as essential infrastructure. Join us. (******************************* At PagerDuty, you'll tackle complex problems, collaborate with kind and ambitious people, and help build a more equitable world-all in a flexible, award-winning workplace. PagerDuty is seeking a **Security Engineer 4 - FedRAMP Compliance Architect** to join our diverse, customer-focused team! This **Security Engineer 4 - FedRAMP Compliance Architect** will design, implement, and maintain secure architectures that meet FedRAMP requirements in a multi-tenant cloud environment. This role combines deep technical expertise with FedRAMP compliance knowledge to create scalable, secure solutions. You'll be the glue between security compliance requirements and technical implementation, ensuring our cloud infrastructure meets federal security standards while enabling business objectives. **Key Responsibilities:** + Design, implement, and maintain system architectures to align with FedRAMP requirements. + Serve as the subject matter expert (SME) on FedRAMP, advising internal teams on security best practices, control implementations, and risk mitigation strategies. + Collaborate with engineering, operations, product, and corporate IT teams to develop secure cloud-based architectures that meet federal compliance mandates. + Implement governance strategy on technical security controls, including access management, configuration, encryption, logging, monitoring, and vulnerability management. + Support annual assessments, security control reviews, and audits, coordinating with third-party assessors (3PAO) and government sponsors. + Technical support for external stakeholders on customer responsibilities. + Key contributor to the development and maintenance of the System Security Plan (SSP), Policies and Procedures, Configuration Management Plan, Secure System Development Life Cycle, and other FedRAMP documentation + Partner with the GRC (Governance, Risk, and Compliance) team to efficiently track and resolve security findings. **Basic Qualifications:** + 5+ years of experience in cloud security architecture, compliance, or cybersecurity engineering, with at least 3 years of experience supporting FedRAMP Moderate or High authorization. + Deep expertise in FedRAMP, NIST 800-53, FISMA, and cloud security best practices. + Strong ability to assess security risks and recommend technical and procedural mitigations. + Experience working with AWS GovCloud, Azure Government, or other federal cloud environments. + Experience with audit preparation, risk assessments, and working with third-party assessors (3PAOs). + Exceptional written and verbal communication skills for creating and managing FedRAMP documentation. **Preferred Qualifications:** + Experience supporting DoD IL 4 or 5 environments. + Experience with data governance frameworks, secure data storage, and data lifecycle management in multi-tenant cloud environments. + Understanding of NIST AI Risk Management Framework (AI RMF) and its implications for secure AI adoption in government environments. + Familiar with SaaS security tools (such as Sumo Logic, Datadog, Crowdstrike, Wiz, Lucidchart, Snyk, and Qualys). + Familiarity with Cloud Native and SaaS constructs, including architectures, DevOps, CI/CD, and SecOps disciplines. + Relevant certifications, such as: + Certified Information Systems Security Professional (CISSP) + AWS Security Specialty, or equivalent + CompTIA Advanced Security Practitioner (CASP+) + Certificate of Cloud Security Knowledge (CCSK)]] The successful applicant will be performing work in FedRAMP environments, and therefore, must be a U.S. Person (i.e. U.S. citizen, U.S. national, lawful permanent resident, asylee, or refugee). **This position may also perform work that the U.S. government has specified can only be performed by a U.S. citizen on U.S. soil.** The base salary range for this position is 176,000 - 281,000 USD. This role may also be eligible for bonus, commission, equity, and/or benefits. Our base salary ranges are determined by role, level, and location. The range, which is subject to change based on primary work location, reflects the minimum and maximum base salary we expect to pay newly hired employees for the position. Within the range, we determine pay for an individual based on a number of factors including market location, job-related knowledge, skills/competencies and experience. Your recruiter can share more about the specific offerings for this role, as well as the salary range for your primary work location during the hiring process. **Hesitant to apply?** We encourage you to submit your resume even if you don't meet every requirement. We value potential and consider each candidate's full professional story. Whether you're exploring a career change or taking your next step, we look forward to reviewing your application. If this just isn't the right role or time - sign up for job alerts (**************************************** ! **Where we work** PagerDuty currently has offices (**************************************** in Atlanta, Lisbon, London, San Francisco, Santiago, Sydney, Tokyo, and Toronto. We offer a hybrid, flexible environment. We also provide ample opportunities for connection, like team offsites and volunteering events. **How we work** Our values (************************************** guide how we support customers, collaborate with colleagues, develop products, and foster a culture of belonging. They define not just our actions, but what it means to be Dutonian. **What we offer** As a global organization, our total rewards approach is competitive with industry standards and aligned with local laws and regulations. Learn more, including country-specific offerings, on our benefits site (********************************************** . **Your package may include:** - Competitive salary - Comprehensive benefits package from day one - Flexible work arrangements - Company equity* - ESPP (Employee Stock Purchase Program)* - Retirement or pension plan* - Generous paid vacation time - Paid holidays and sick leave - Dutonian Wellness Days & HibernationDuty - companywide paid days off in addition to PTO - Paid parental leave: 22 weeks for pregnant parent, 12 weeks for non-pregnant parent (some countries have longer leave standards and we comply with local laws)* - Paid volunteer time off: 20 hours per year - Company-wide hack weeks - Mental wellness programs *Eligibility may vary by role, region, and tenure **About PagerDuty** PagerDuty, Inc. (NYSE:PD) is a global leader in digital operations management, enabling customers to achieve operational efficiency at scale with the PagerDuty Operations Cloud. The PagerDuty Operations Cloud combines AIOps, Automation, Customer Service Operations and Incident Management with a powerful generative AI assistant to create a flexible, resilient and scalable platform to increase innovation velocity, grow revenue, reduce cost, and mitigate the risk of operational failure. Half of the Fortune 500 and nearly 70% of the Fortune 100 rely on PagerDuty as essential infrastructure for the modern enterprise. PagerDuty is Great Place to Work-certified, a Fortune Best Workplace for Millennials, a Fortune Best Medium Workplace, a Fortune Best Workplace in Technology, and a top rated product on TrustRadius and G2. Go behind-the-scenes on our careers site (*********************************** and @pagerduty on Instagram. **Additional Information** PagerDuty is committed to creating a diverse environment and is an equal opportunity employer. PagerDuty does not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, parental status, veteran status, or disability status. PagerDuty is committed to providing reasonable accommodations for qualified individuals with disabilities in our job application process. Should you require accommodation, please email accommodation@pagerduty.com and we will work with you to meet your accessibility needs. PagerDuty uses the E-Verify employment verification program.

Building Name: UVMMC - In State Remote WorkerLocation Address: 111 Colchester Ave., Burlington VermontRegularDepartment: IT Cybersecurity RiskFull TimeStandard Hours: 40Biweekly Scheduled Hours:Shift: DayPrimary Shift: 8:00 AM - 4:30 PMWeekend Needs: NoneSalary Range: Min $42.01 Mid $52.52 Max $63.02Recruiter: Chelsea Therrien JOB SUMMARY: Develops, monitors, and maintains Information Security policies, standards, and procedures. Ensures Information Security policies, plans, controls, and processes are aligned with internal and external requirements including regulatory requirements and industry best practices. Develops and executes techniques and procedures to identify and track Information Security risks, issues, and incidents. Develops and executes response and investigative procedures for Information Security risks, issues, and incidents to limit negative impact, identify root cause, and guide remediation. Coordinates with other IT Staff and representatives throughout the Health Network to ensure Information Security is engrained into all technology and business practices. May focus on a specific Information Security domain such as Cybersecurity Operations, Identity Governance, or IT Risk & Resilience where targeted skills and expertise are required for the successful deployment and operation of the Information Security Program. Focus for this position includes: IT Change Management Develop, operate and maintain UVMHN IT Change Management functions Facilitate change management processes including change control meetings, communications and workflows Operate, maintain and improve change management program scope, process, procedure and workflows Continuously improve change management functions in response to changes in IT structure, risk tolerance, operational workflows and technology IT Testing Develop and operate UVMHN's IT testing program Scope, plan and facilitate automated and manual testing processes with internal and external partners Conduct scoping, review, and onboarding of new automated testing for critical IT systems Coordinate development and maintenance of test script portfolios Maintain testing schedules and roadmaps Coordinate deployment and maintenance of testing equipment and systems IT Release Management Develop and implement release management program for IT systems in support of critical operational and clinical functions Define release scope, frequency and processes in coordination with IT and Operational stakeholders Coordinate system and application releases with IT and operational stakeholders Integrate IT Testing and Release Management programs IT Go-live governance Develop and maintain criteria for IT system and application go-live Implement go-live governance and workflows Measure and monitor go-live success Integrate go-live governance with intake, risk management, SAFe Agile and Change Management functions as needed EDUCATION: Bachelor's Degree in Information Security, Computer Science or Information Systems or commensurate experience EXPERIENCE: 3 or more years of experience in an Information Security or Information Technology role.

Transforming the Future with the Convergence of Simulation and Data Senior Security Engineer Do you like a challenge, are you a complex thinker who likes to solve problems? If so, then you might be the new Altairian we are searching for. At Altair, your curiosity matters. We pride ourselves on a business culture that enables open, creative thinking, and we deeply value our employees and their contributions towards our clients' success, as well as our own. Job Summary: What You Will Do: * Collaborate with development teams to build, deploy, and maintain secure applications and infrastructure, ensuring security best practices are integrated throughout the software development lifecycle. * Continuously assess and enhance the cloud security environment by implementing best practices, automating security controls, and improving visibility. * Track and drive remediation efforts across developers, product owners, and business collaborators to ensure vulnerability management compliance. * Lead incident response efforts by investigating security threats, coordinating remediation, and implementing lessons learned to strengthen security defenses What You Will Need: Basics: * 4+ years professional experience in information security, with a focus on infrastructure, operating systems, and networking * Experience with cloud security controls and/or securing cloud environments Preferred: * Experience working with DevSecOps practices and tools, integrating security into CI/CD pipelines (e.g., GitHub Actions, GitLab CI/CD, Azure DevOps) * Developed secure cloud networking architectures, including VPC segmentation, cloud firewalls, private endpoints, and encrypted communications. * Standardized container security practices and serverless environments, implementing image scanning, least privilege policies, and runtime monitoring * Conducted security reviews and architecture assessments to ensure cloud deployments align with industry best practices and business objectives. * Experience with cloud configuration management and automation tools (e.g., Ansible, Terraform, AWS CloudFormation, Azure Bicep) * Python, bash, or other scripting for integration and automation * Deployment & security support of both cloud and virtual environments , * Advanced degree in computer science or related technical field or equivalent experience * Cybersecurity-related certification(s), including CCSP, CISSP, CISM, CEH, etc. How You Will Be Successful: * Envision the Future * Communicate Honestly and Broadly * Seek Technology and Business "Firsts" * Embrace Diversity and Take Risks What We Offer: * Competitive Salary * Comprehensive Retirement benefit * Outstanding Work/Life Balance * Partially Flex Time * Employee Stock Purchase Program * 25 Leave days * Collaborative environment * Partial Charitable Matching Program Why Work with Us: Altair is a global technology company providing software and cloud solutions in the areas of product development, high-performance computing (HPC) and artificial intelligence (AI). Altair enables organizations in nearly every industry to compete more effectively in a connected world, while creating a more sustainable future. With more than 3,000 engineers, scientists, and creative thinkers in 25 countries, we help solve our customer's toughest challenges and deliver unparalleled service, helping the innovators innovate, drive better decisions, and turn today's problems into tomorrow's opportunities. Our vision is to transform customer decision making with data analytics, simulation, and high-performance computing and artificial intelligence (AI). For more than 30 years, we have been helping our customers integrate electronics and controls with mechanical design to expand product value, develop AI, simulation, and data-driven digital twins to drive better decisions, and deliver advanced HPC and cloud solutions to support unlimited idea exploration. To learn more, please visit altair.com . Ready to go? #ONLYFORWARD At our core we are explorers; adventurers; pioneers. We are the brains behind some of the world's most revolutionary innovations and are not only comfortable in new and uncharted waters, we dive in headfirst. We are the original trailblazers that make the impossible possible, discovering new solutions to our customer's toughest challenges. Altair is an equal opportunity employer. Our backgrounds are diverse, and every member of our global team is critical to our success. Altair's history demonstrates a belief that empowering each individual authentic voice reinforces a culture that thrives because of the uniqueness among our team.

Description & Requirements Reporting to the Sr. Manager for the Program Security Services team (US Services), the Lead Security Analyst-ISSO is responsible for managing the overall security posture of their assigned projects. Acting as an independent contributor, the Lead Analyst-ISSO will document and validate security compliance requirements, as defined in client contracts and established regulatory frameworks (NIST 800-53, HIPAA, IRS 1075, CMS MARS-E/ARC-AMPE, PCI-DSS). This position requires broad knowledge of Information Technology, including cloud providers such as Azure and AWS. This role will also manage stakeholder relationships with both internal and external customers. US citizenship is required per contract/client, at least one of the following certifications is required: CISSP (preferred), CISA or CISM. Experience with NIST 800-53 and the ability to travel up to 10% is required. Essential Duties and Responsibilities: - Responsible for ensuring information security for an assigned area of Business/Project focusing on key areas of risk, as outlined in the Information Security policy, under the direction of the Information Security management team. - Conduct Information Security risk assessments and compliance evaluations for infrastructure and application assets within required timeframes and to industry standards and regulatory specifications. - Ensure controls are properly and fully implemented to address identified Information Security risks for assigned area of responsibility. - Define, create and maintain the documentation for certification and accreditation of each information system in accordance with regulatory requirements. - Lead and support audits and client reviews of security posture; coordinate the collection, review and submission of Information Security deliverables and track the remediation of audit findings and exceptions. - Manage expectations with multiple stakeholders on projects and programs in conjunction with the Information Security team. - Promotion of Information Security awareness through various communication channels within the organization. - Collaborate with the Information Security team members on process improvements, secure design and recertification of MAXIMUS assets. Identify potential security control gaps by reviewing evidence provided by stakeholders, system generated reports and/or control implementation statements. Perform risk assessments using vulnerability management and application security testing reports. Initiate formal security exception process, when required. Develop Plan of Action and Milestones (POA&M) as necessary. Minimum Requirements - Please refer to the additional information section of the job requisition for this opening to determine clearance eligibility required. - Bachelor's degree and 7+ years of relevant professional experience required, or equivalent combination of education and experience. US Citizenship is REQUIRED per contract/client. At least one of the following certifications is REQUIRED: CISSP (preferred), CISA or CISM Experience with NIST 800-53 is REQUIRED Ability to travel nationally up to 10% is REQUIRED HIPAA experience is preferred Experience with Cloud providers, such as Azure and AWS Knowledge of any of the following security frameworks is preferred: IRS 1075, CMS MARS-E/ARC-AMPE, PCI-DS Demonstrates excellent interpersonal, presentation and verbal/written communication skills Demonstrates strong customer service skills Ability to communicate technical information to non-technical staff Ability to work collaboratively with a broad range of staff (including analysts, engineers and leadership) Proficiency with Microsoft Office SmartSheet experience is a plus Ability to perform comfortably in a fast-paced, deadline-oriented work environment Ability to organize and execute complex tasks Ability to work as a team member as well as independently #LI-JH1 #maxcorp #LeadSecurityAnalyst #InformationSystemSecurityOfficer #HotJobs0311LI #HotJobs0311FB #HotJobs0311X #HotJobs0311TH #TrendingJobs EEO Statement Active military service members, their spouses, and veteran candidates often embody the core competencies Maximus deems essential, and bring a resiliency and dependability that greatly enhances our workforce. We recognize your unique skills and experiences, and want to provide you with a career path that allows you to continue making a difference for our country. We're proud of our connections to organizations dedicated to serving veterans and their families. If you are transitioning from military to civilian life, have prior service, are a retired veteran or a member of the National Guard or Reserves, or a spouse of an active military service member, we have challenging and rewarding career opportunities available for you. A committed and diverse workforce is our most important resource. Maximus is an Affirmative Action/Equal Opportunity Employer. Maximus provides equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status or disabled status. Pay Transparency Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances. Minimum Salary $ 111,605.00 Maximum Salary $ 145,000.00