Auto-apply to these security jobs

THIS POSITION IS 100% ON-SITE IN GERMANTOWN, MARYLAND. Global Engineering & Technology is seeking a highly qualified Instructor to support the United States Department of Energy's Office of Classification in Germantown, Maryland. This is a highly compensated position with the work location being the Department of Energy facility in Germantown, Maryland. This is a 100% on-site position with occasional short-duration travel, estimated to be 3-4 weeks per year. Duties: This key individual develops, prepares, and executes Department of Energy (DOE) training materials in highly technical subject areas relating to nuclear weapons. Candidates should be an expert in at least one of the areas below, with some exposure to all: Nuclear weapons Safeguards and Security Nuclear weapons design and utilization Classification and declassification policy The principal policy environment and focus of this position correspond to: DOE Federal Protective Forces (FPF), Contractor Protective Forces (CPF), and the Physical Security of property and personnel under the cognizance of DOE (DOE O 473.1A and 473.2A) Protection of Unclassified Controlled Nuclear Information (10 CFR 1017), Nuclear Classification and Declassification (10 CFR 1045), Classified National Security Information (EO 13526), Department of Energy Orders relating to the Identification and Protection of Unclassified Controlled Nuclear Information (DOE Order 471.1B), and Identifying Classification Information (DOE O 475.2B) Salary Range: Compensation for this position will range from $110,000 to $125,000 per year, depending on qualifications. Requirements Security Clearance: Candidates MUST possess an active DOE Q clearance or an active DoD Top Secret clearance Experience & Skills: The ideal candidate will have established familiarity, to the point of being considered a subject matter expert within DOE, in at least one of the focus areas above. The candidate will receive on-the-job training to instruct in all three areas. Similar experience related to the safeguarding of Special Nuclear Material (SNM), nuclear weapons, and sensitive information acquired while supporting the DoD will also be considered. The individual will also have at least two (2) years of direct training experience as an instructor, ideally including experience with modern training techniques encompassing the development of course syllabuses, student evaluations, recognition of individual student requirements, and utilization of computer-based training systems. Although not mandatory for consideration as a candidate, the ideal candidate will be DOE qualified as a Derivative Classifier (DC), Derivative Declassifier (DD), and as an Unclassified Controlled Nuclear Information Reviewing Official (UCNI RO). However, absent these qualifications, the candidate must commit to obtaining these certifications (training provided) within a prescribed period following their hiring as a condition of continued employment. Education: This position requires a Bachelor’s Degree from an accredited college or university OR an equivalent combination of certified training and experience, to be determined on a case-by-case basis. A Bachelor’s Degree or a Master’s Degree from an accredited college or university in a scientific discipline (i.e., physical sciences, engineering, or mathematics) is highly desirable. Benefits We provide exceptional benefits to our full-time employees ( spouse/family coverage option available at a company-subsidized rate ). Benefits include: Medical plan options with UnitedHealthcare Dental Insurance Long-term and Short-term Disability Insurance Life Insurance AD&D Insurance Generous 401(k) match All benefits are effective on day one of employment. Global Engineering & Technology, Inc. (GET) does not discriminate on the basis of race, sex, color, religion, age, national origin, marital status, disability, veteran status, genetic information, sexual orientation, gender identity or any other reason prohibited by law in provision of employment opportunities and benefits.

Only qualified Security IT Business Analyst candidates located near Quincy, MA will be considered, as the position requires onsite presence W2 Preferred Education: Bachelor’s degree in Information Systems, Business Administration, or related field, or equivalent work experience Required Skills, Experience and Qualifications: 5–8 years of experience in information technology, with at least 3 years in a business analyst, technical writer, or related role Strong understanding of information security concepts, frameworks, and best practices (e.g., NIST CSF, CIS Controls, ISO 27001) Experience developing, documenting, and maintaining IT/security policies, standards, and procedures Experience with Microsoft 365 suite, JIRA, or other collaboration/project tracking tools Experience facilitating requirements gathering sessions, interviews, and workshops with technical and business stakeholders Strong analytical and problem-solving skills, including the ability to identify process gaps and recommend improvements Ability to manage multiple assignments simultaneously and balancing competing priorities Capable of working independently and as part of a cross-functional team Client is seeking to hire a highly motivated and detail-oriented Security IT Business Analyst to join the Client’s Chief Information Security Officer’s Office (CISO) Office. The position requires excellent writing skills, with a focus on development of policy and process documentation. Strong analytical, communication and presentation skills are critical. Additionally, the successful candidate must possess the following attributes: attention to detail; superior time management and solid multitasking skills; ability to contribute and work productively as part of a team; capacity to remain flexible and the ability to work well under pressure. The Security IT Business Analyst is expected to occasionally travel to Client’s agency area offices or group homes within the Commonwealth of Massachusetts as needed. Responsibilities: Develop and maintain relevant security documentation including policies, standards, procedures, workflows, and process guides. Analyze existing security processes to identify gaps and risks for improvements Support security compliance and audit readiness by ensuring documentation is complete, accurate, and aligned with Commonwealth and federal standards Facilitate collaboration between the CISO’s Office, IT teams, agency stakeholders, and external partners Prepare reports, presentations, and dashboards to track security initiatives and communicate progress to both stakeholders and leadership Assist in the development of security training, documentation, and communications that will promote adoption of security policies and best practices Contribute to the planning, tracking, and monitoring of security projects and initiatives to ensure timely delivery and alignment with strategic objectives Manage and document risks, issues, and decisions related to security policy and process initiatives of the Client’s CISO’s Office Participate in security reviews, assessments, and capturing findings to ensuring documentation of remediation steps • Serve as a resource for gathering, analyzing, and documenting requirements of security initiatives, tools, and processes • Provide structured and clear documentation that can be used to support decision-making, audits responses, and operational changes • Perform other related duties as assigned to support the mission of the Client’s CISO’s Office.

Offensive Security Consultant (Pen Tester) Full-Time, Exempt Location: Scottsdale, AZ preferred, remote will be considered Job Description Are you passionate about offensive security and thrive on finding the flaws before the bad actors do? Join Lumifi as a full-time Penetration Tester! You'll be a critical part of our security team, tasked with proactively identifying vulnerabilities across our customers' entire technology stack to secure their systems and protect their assets. This is a role for a self-starter who excels at simulating real-world threats, doesn’t give up at the first sign of failure, and is able to clearly relay testing results to technical and non-technical audiences. Key Roles & Responsibilities Deliver application, network, systems, and infrastructure penetration tests for customers Prepare high quality reports detailing security issues, making recommendations, and identifying solutions, contribute to presentations and discussions with customers around testing performed, key results, recommendations, and the next steps Conduct reconnaissance and gather open-source intelligence Safely deploy offensive tools and techniques against authorized targets Develop custom scripts and tools to enhance red team capabilities Communicate findings and strategies to technical and executive stakeholders Provide risk-based recommendations and support defensive teams in improving detection and response Build and promote strong, long-lasting relationships with a diverse range of customers, and identify and explore opportunities within existing and new customers Ensure that KPIs around client expectation management, delivery deadlines, quality of work and deliverables etc are met, including conducting quality management Share knowledge and support Professional Services team members to up/cross skill in hard and soft skills Assist with innovation, and practice improvement activities, under supervision Preferred Skills: Certifications such as OSCP, OSCE, OSWE, GPEN, GCIH, GWAPT, GXPN. Required Skills/Abilities Bachelor's degree in Computer Science, IT, or related field, or equivalent experience. 4+ years of hands-on experience in offensive security, including: Network and web application penetration testing Social engineering (email, phone, physical) Exploit development or tool customization Strong understanding of threat actor tactics, techniques, and procedures. Experience with red, blue, or purple team exercises. Willingness to travel for on-site assessments as needed – less than 10% travel Effective communication skills, both written and verbal skills Ability to adapt and thrive in a fast-paced, evolving technical landscape. Proven ability to problem-solve and think critically in a fast-paced environment. Benefits Include: Health Insurance 80% paid by employer Dental Insurance 80% paid by employer Vision Insurance 80% paid by employer Self-Managed vacation leave Paid sick leave Paid holiday leave Lumifi Cyber welcomes and encourages diversity in our workplace. All qualified applicants will receive consideration for employment without regard to race color, religion, sex, sexual orientation, gender identity, national origin or disability. All candidates must be eligible to work in the U.S. for any employer. Lumifi participates in E-Verify verification. Powered by JazzHR

Who We Are:  CAMBA is a community of staff, volunteers, clients, donors, neighbors and partners who work together to build an inclusive New York City, where all children and adults have access to the resources and supports, they need to thrive.  We take a comprehensive approach by offering more than 180 integrated programs in: Education & Youth Development, Family Support, Job Training & Employment Support Services, Health, Housing, and Legal Services. We reach almost 80,000 individuals and families, including almost 13,000 youth. CAMBA serves a diverse cross section of New Yorkers from new mothers in Brownsville to job seekers in the Rockaways. More than half of our clients are immigrants and refugees from around the globe. Over 85% of our families are living in poverty, reflecting the challenges faced by nearly 1.7 million New Yorkers today. CAMBA GARDENS is a 209 unit supportive/affordable housing development located in the East Flatbush section of Brooklyn.  CAMBA Housing Ventures (CHV), the housing development subsidiary of CAMBA, developed these units.  146 of these units are set aside for formerly homeless individuals and families.  117 units are for Population I individuals, chronically homeless single adults who suffer from Serious and Persistent Mental Illness or who have a co-occurring Mental Illness and Chemical Addiction (MICA). 15 units are for Population III individuals, chronically homeless single adults who have a substance abuse disorder that is the barrier to independent living and who also have a disabling clinical condition.  14 units are for Population V chronically homeless families, in which the head of household suffers from a substance abuse disorder, a disabling medical condition or HIV/AIDS.  CAMBA provides on-site case management and supportive services in addition to 24/7 security.       Position: FT Security Guard Reports To: Senior Program Director Location: 690-738 Albany Ave, Brooklyn, New York 11203           What The FT Security Guard Does: Monitor and ensure the security and fire safety of the entire facility. Employ crisis prevention/intervention and crisis management skills when conflict occurs. Patrol buildings and grounds of facilities where CAMBA programs are located. Examine doors, windows, gates and all fire exits to determine that they are secure and in accordance with all fire regulations. Observe and report irregularities such as unusual tenant behavior, trespassers, fire hazards, leaking water pipes, and security doors left unlocked. Monitor tenants and facility via security camera systems. Conduct fire safety patrol and report findings or fire safety concerns to appropriate supervisory personnel. Conduct security screenings of all tenants and visitors entering the facility. Issue commendations to support positive tenant behaviors such as peers helping peers, compliance with rules and regulations, etc. Counsel tenants that violate rules (such as loitering, smoking, or carrying forbidden articles) and complete infraction reports. Observe departing employees, visitors and/or tenants to guard against theft of CAMBA property. Document in the security log book and incident report forms property damage, unusual occurrences, and incidents with employees, visitors and tenants. Maintain assigned equipment per shift. Sign equipment in and out for each shift. May provide all required information for weekly/monthly/quarterly/annual reports. Minimum Education/Experience Required: High school diploma or G.E.D. or equivalent experience. Other Requirements: Must sign NYC DOH/MH attestation stating that candidate has not been the subject of a founded child abuse report. Must have 8 hour Pre-Assignment security guard training course certificate. Must obtain 16 hour On-the-Job security guard training course certificate within 90 days of employment. Must complete 8 Hour Annual In-Service Course each calendar year. Must have and maintain a NYS Security Guard license. Must obtain NYS Security Guard registration, and must maintain registration during employment. Must obtain Fire guard certification and maintain it throughout employment. Compensation : $33,742.80 annually When salary ranges are listed, the range would represent the low and high end for the applicable position & program. The salary offered would be based on various factors unique to each program and candidate. This includes but is not limited to experience, education, budget and/or program size, internal equity, skills and other factors that may be required for the position and organization. Status: Full-time (35 hours per week) (Thurs – Mon12AM-8AM & Wed-Sun 4PM-12AM) Benefits : CAMBA offers a comprehensive benefits package including health insurance, dental insurance, 403(b) retirement plan with employer match, paid time off (vacation, personal, and sick time), and paid holidays. CAMBA is an Equal Opportunity Employer. We value a diverse workforce and inclusive workplace. People of color, people with disabilities, and lesbian, gay, bisexual, and transgender people are encouraged to apply. We consider all applicants without regard to race, color, religion, creed, gender, gender identity, gender expression, national origin, age, disability, socio-economic status, marital or veteran status, pregnancy status or sexual orientation. Powered by JazzHR

The Senior Technician - Security ; will provide efficient and high-quality installations related to integrated security systems. This position will require a high level of project involvement, including the physical installation, testing and closing-out process. Responsibilities: Serve as the subject matter expert and mentor to assigned team of technicians Install, test, troubleshoot, repair, and maintain all Security systems at customer sites Installation will include, but not limited to: Video NVR/Servers, IP Cameras, Access Control Devices, Intrusion Devices, Head End Panel Installations, Intercoms, Wireless Devices, Switch Gear. Perform assigned projects within scope, in a timely manner, and on budget Provide customers with system operation and training Excellent attention to detail including maintaining concise daily records and following of operational standards and practices Maintain a professional appearance and attitude Adhere to all applicable safety rules and regulations Review materials options and verify count accuracy Maintain a clean and orderly jobsite Facilitate the delivery of staged materials to the jobsite Coordinate with Project Management and Field Technicians for project scheduling Work at required heights utilizing ladders, scaffolding, lifts, or other. Work in confined spaces as necessary. Required Qualifications: 5+ years of work experience as a Senior / Lead Technician with a security integrator (including current manufacturer certifications) Industry experience working with access control, video surveillance, and intrusion Valid US drivers license with acceptable record Ability to pass pre-employment screening Preferred Qualifications: Industry Experience: Healthcare, Education, Manufacturing, Utilities, Financial & Hospitality. Video Surveillance: Avigilon, Genetec, Milestone, Bosch, Axis, Hanwha, Exacq. Access Control: Lenel, Software House, Avigilon, Genetec, Identiv, Honeywell, Open Path, RS2, S2, AMAG, Gallagher, Open Options. Intrusion: DMP, DSC, Honeywell, Bosch. Locking Hardware: Maglocks, Strikes, Mortise, Cylindrical, ADA applications. Data Terminations. Field engineering or estimating skills. Updating blueprints on Bluebeam. Experience with Procore, Fieldwire, Smartsheets, etc. Experience with programing, testing and training end users on various security systems. Out of town travel work if required. Vaccinations may be required by our customers, specifically related to any worksite location in the health care industry Demonstrated Professional Competencies: Ability to troubleshoot electronic systems and find solutions Ability to use sound judgment and perform under pressure Ability to operate as part of a team Great written and verbal communication Good troubleshooting skills, exceptional customer service Positive attitude PHYSICAL DEMANDS: In general, the following physical demands are representative of those that must be met by an employee to successfully perform the essential functions of the job. While performing the duties of this job, the employee is regularly required to stand, climb, walk, sit, push, pull, squat, crawl, and stoop. The employee is regularly required to use hands to finger, handle, feel objects, and type on keyboard; reach with hands and arms; talk and hear. Specific vision abilities required by the job include close vision, distance vision, depth perception, and the ability to adjust focus. The use of power tools will be required to effectively perform this position. The employee must occasionally lift and/or move up to 50 pounds and may be required to work at heights over 1.8m. Working Conditions In general, the following conditions of the work environment are representative of those that an employee encounters while performing the essential functions of this job. While performing the duties of this job, the employee will be exposed to outdoor weather conditions, work on job sites, may be required to travel to and from job site locations, may work in a typical office environment, and is occasionally exposed to construction equipment. The noise level in the work environment is usually moderate. Confined space entry may be required. High work may be required. PAY RANGE: $34.00ph - $42.00ph DOE BENEFITS: Colleagues and their families are covered by medical, dental, vision, company provided basic life insurance and AD&D and short-term disability, telemedicine & virtual counseling. Voluntary insurances offered include life insurance and AD&D, short-term disability (buy-up option), long-term disability, accident, critical illness, and hospital indemnity insurance, and HSA & FSA accounts. Colleagues may also enroll in the company’s 401(k) plan. Colleagues will also receive PTO (paid time off), sick leave, and 7 paid holidays. Company Info: Paladin Technologies is a premier North American complex systems integrator for building technology solutions, including IP security, alarms & monitoring, audio visual, low-voltage infrastructure, and networking. As a leader in the design, deployment, optimization, management, and maintenance of communication and digital networks, Paladin can meet the needs of clients on a national scale, while providing local support. Our team is the best in the industry, with manufacturer trained technicians, PMP-certified project managers, CTS- and RCDD-certified design engineers, coordinators, and administrative resources. Paladin has offices coast to coast across the United States and Canada, and nearly 1,700 talented and committed professionals dedicated to custom-crafting and installing technology solutions for clients requiring Integrated Security, Network Infrastructure, Audio Visual, Fiber Optics/OSP, Structured Cabling, and more. We are always at the forefront of the changing technology landscape, and through continued training, complex client projects, and company support, we provide our colleagues with exciting challenges and a rewarding career as Paladin continues to grow. This company considers candidates regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status . Equal Opportunity Employer, including disability & veterans, or any other characteristic protected by law. If you need accommodation for any part of the application process, please send an email or call 1-855-296-3199 to speak with Human Resources and let us know the nature of your request. We thank you for your application, however only those selected for an interview will be contacted. Powered by JazzHR

About Fullscript Founded in 2011, Fullscript started by solving one problem: helping practitioners access and prescribe the products they trust to deliver integrative care. What began as a simple solution has evolved into a health intelligence platform that powers every part of care. Today, 125,000 practitioners rely on Fullscript for clinical insights, lab interpretations, patient analytics, education, and access to high-quality supplements. They support over 10 million patients who use Fullscript to stay connected to their care plans, making it easier to stay engaged and follow through on treatment. We build tools that make care smarter and more human. Tools that save time, simplify decisions, and strengthen the connection between practitioner and patient. When everything practitioners need is in one place, they can focus on what matters most: helping people get better. 🎟️ This is your invitation. Bring your ideas. Bring your grit. Bring your care for people. Join us and shape the future of care. Fullscript is seeking a seasoned Staff Security Engineer to join our security team as a senior technical leader. In this role, you’ll shape the technical vision for product and AI security across the organization, mentoring teammates and driving impact through deep technical expertise and cross-functional collaboration. What you'll do Lead the design and implementation of robust security architectures for Fullscript’s applications, and AI initiatives. Collaborate closely with engineering teams to embed security into the development lifecycle, including threat modeling, security coding practices, and design reviews. Drive AI security best practices, ensuring responsible deployment, and mitigation of risks such as data poisoning, prompt injection, or model exploitation. Mentor engineers and other security team members, fostering a culture of security awareness and technical excellence across the organization. Conduct technical risk assessments, security research, and code reviews to proactively identify and remediate vulnerabilities. Influence cross-functional teams through technical leadership, helping define security standards and strategies that scale across Fullscript’s products and AI ecosystem. Stay ahead of emerging threats, attack vectors, and AI-specific security challenges to guide strategic decisions for the organization’s security posture. What you bring to the table: Deep technical expertise in application security, and secure software development. Experience with AI/ML security. Strong understanding of modern software architectures, cloud environments, and APIs. Proven ability to influence and mentor engineers across teams, fostering security-first thinking and best practices. Hands-on experience with security tooling and automation, including static/dynamic analysis, monitoring, and observability systems. Strong problem solving skills, able to balance security rigor with product velocity. Excellent communication and collaboration skills, able to translate complex security concepts to technical and non-technical stakeholders. Additional experience we value: Experience with protecting / hardening of health data. Experience securing Ruby on Rails, Javascript, GraphQL applications. Familiarity with regulatory and compliance frameworks relevant to software and AI security is a plus (e.g. SOC 2, NIST). What we can offer you: Generous PTO and competitive pay. Fullscript’s RRSP match program for financial health. Flexible benefits package and workplace wellness program. Training budget and company-wide learning initiatives. Discount on Fullscript catalog of products. Ability to work Wherever You Work Well* Why Fullscript Great work happens when people feel supported, trusted, and inspired. You’ll join a team that: ⬦ Values innovation. We stay curious and keep finding smarter ways to make care better. ⬦ Supports growth. We learn together and take on new challenges that drive impact. ⬦ Puts people first. We win as a team and leave egos at the door. 📌 Apply now. Let’s build the future of healthcare together. A Few Things to Know We’re grateful for the high level of interest in joining Fullscript. Because of the number of messages we receive, we’re not able to review or respond to individual inquiries about open roles via email, LinkedIn, or other social platforms. Please apply directly through our careers page to ensure your application reaches our hiring team. Fullscript is an equal opportunity employer committed to creating an inclusive workplace. Accommodations are available upon request. Email accommodations@fullscript.com for support. All employment offers are contingent upon the successful completion of background checks, conducted in compliance with applicable federal, state, and provincial laws. We also use AI tools to support parts of our hiring process, like screening and reviewing responses. Final decisions are always made by people. This process complies with privacy and employment laws across Canada and the U.S. Learn More About Fullscript 🌐 www.fullscript.com 💬 @fullscriptHQ on instagram 📺 Let’s make healthcare whole

We believe that the way people interact with their finances will drastically improve in the next few years. We’re dedicated to empowering this transformation by building the tools and experiences that thousands of developers use to create their own products. Plaid powers the tools millions of people rely on to live a healthier financial life. We work with thousands of companies like Venmo, SoFi, several of the Fortune 500, and many of the largest banks to make it easy for people to connect their financial accounts to the apps and services they want to use. Plaid’s network covers 12,000 financial institutions across the US, Canada, UK and Europe. Founded in 2013, the company is headquartered in San Francisco with offices in New York, Washington D.C., London and Amsterdam. This team is the Engineering function within Plaid's security organization and is dedicated to developing industry-leading security systems and infrastructure. This team is responsible for critical services such as secure data storage, key management systems, and internal platforms for identity, authentication, permissions, and authorization. We focus on developing solutions for data encryption, key management, access control, and data loss prevention to safeguard sensitive consumer data. Embracing a Zero Trust security model, the team continuously seeks to enhance Plaid's authentication and access control platforms. In this role, you'll be responsible for developing security capabilities for both Plaid's infrastructure and sensitive data access. You'll own, maintain, and build essential security infrastructure and services, including the Key Management System and Secure Token Service. A key part of your work will involve consulting with product engineers to ensure all Plaid services adhere to security standards. You'll also educate and support other engineering teams, helping them improve security within their own products and services, and contribute to Plaid's incident response and security awareness programs. Finally, you'll collaborate closely with other security platform members to develop necessary engineering solutions that meet their specific needs. Responsibilities Develop maintainable and secure software to enhance Plaid's infrastructure and protect sensitive data. Communicate effectively with managers and team members regarding project deliverables and progress. Design and implement technical solutions that align with the evolving needs of the business. Proactively identify and address security vulnerabilities in products and services. Actively participate in incident response and security awareness initiatives. Qualifications Experience building scalable systems and services. Ability architecting software systems to meet security, privacy, usability, scalability and cost requirements. While these experience and characteristics are not prerequisites, candidates who possess them would be well-suited for the role: Experience building systems or services related to data encryption, key management, secret management, certificate management, transport security, user authentication, device authentication, service authentication, permission management, authorization systems, and security policy enforcement. Experience with securing critical and sensitive information assets. Experience with data platforms and data infrastructure. Experience with threat modeling, security architecture reviews, or incident response. Passionate about educating others on security and privacy. The target base salary for this position ranges from $207,600/year to $310,800/year. Additional compensation in the form(s) of equity and/or commission are dependent on the position offered. Plaid provides a comprehensive benefit plan, including medical, dental, vision, and 401(k). Pay is based on factors such as (but not limited to) scope and responsibilities of the position, candidate's work experience and skillset, and location. Pay and benefits are subject to change at any time, consistent with the terms of any applicable compensation or benefit plans. Our mission at Plaid is to unlock financial freedom for everyone. To support that mission, we seek to build a diverse team of driven individuals who care deeply about making the financial ecosystem more equitable. We recognize that strong qualifications can come from both prior work experiences and lived experiences. We encourage you to apply to a role even if your experience doesn't fully match the job description. We are always looking for team members that will bring something unique to Plaid! Plaid is proud to be an equal opportunity employer and values diversity at our company. We do not discriminate based on race, color, national origin, ethnicity, religion or religious belief, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, military or veteran status, disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state, and local laws. Plaid is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance with your application or interviews due to a disability, please let us know at accommodations@plaid.com. Please review our Candidate Privacy Notice here .

Please note:  This is a hybrid role requiring 3 days in office at our Philadelphia HQ - 1818 Market Street. We are seeking a skilled and detail-oriented Security Compliance Program Manager with a strong focus on compliance and FedRAMP (Federal Risk and Authorization Management Program) to join HealthVerity’s Security team. In this role, you will be responsible for ensuring that our organization’s information systems meet the security and compliance requirements mandated by FedRAMP, HIPAA, and other relevant healthcare industry regulations. You will work closely with members of the Security team as well as cross-functional teams to implement security controls with a risk-based and cost effective approach, as well as monitor and regularly assess these controls.   What you will do: Develop, document, and maintain FedRAMP-specific policies, procedures, and controls. Support efforts to maintain FedRAMP compliance, including the creation of System Security Plan (SSP), gathering evidence, and preparing reports. Collaborate with team members to manage the continuous monitoring (ConMon) program, including internal and external reporting on vulnerabilities, tracking POA&Ms, and developing ConMon artifacts. Coordinate with internal teams to develop and implement policies to meet compliance requirements. Collaborate with third-party assessors to complete security assessments and audits. Conduct third party risk assessments. Drive security training and phishing campaigns. Conduct periodic risk assessments and audits to ensure compliance with applicable regulatory frameworks.   About You You make security a priority in everything you do. You enjoy leading with empathy and simplifying security for non-security audiences. You have strong communication, interpersonal, and leadership skills. You have a good understanding of HIPAA, NIST 800-53 and/or other security compliance frameworks. You have experience leading portions of information security audits. You prioritize keeping yourself abreast with the security trends and threats, and can explain these issues in a simple way to a non-security audience. You have experience with cloud security architectures and best practices for AWS (or equivalent for GCP/Azure). You have experience with scripts (Shell, Python) and you prefer the use of automation for gathering evidence.   Desired Skills and Experience: 3-5 years information security experience with a focus on compliance, FedRAMP, NIST 800-53, HIPAA, SOC 2, ISO 27001. CISSP, CISM, AWS Certified Security or similar security certifications; Working knowledge of tools such as Qualys, Datadog, and AWS Security services for vulnerability management, SIEM, and scanning.  Working knowledge of AWS Audit Manager, AWS Artifact, Drata, or Vanta. Experience with automating the gathering of evidence for information security audits. Comfortable with scripting in Python and Bash.   Base salary for the role is commensurate with experience and can range between $80,000 - 130,000 + annual bonus opportunity.     Hiring Locations Our main office is located in Center City, Philadelphia, where we operate on a hybrid model with in-office work required three days a week for local employees. We believe collaboration is most effective when teams come together, which is why we prioritize hiring in the Philadelphia area. For certain roles, we also hire from hub locations —regions where we have an established presence with multiple team members working remotely. While these employees primarily work from home, we bring them together in person at lease once a year for team-building, collaboration, and strategic planning. Due to tax and labor regulations, we can only hire from specific states. Remote work is supported in the following key hub locations and approved states: Hub Locations: Philadelphia, Pennsylvania Boston, Massachusetts New York City, New York Baltimore, Maryland Washington, D.C. Charlotte, North Carolina Raleigh-Durham, North Carolina Atlanta, Georgia Chicago, Illinois Approved States for Remote Work: CT, DE, FL, GA, IL, IN, MA, MD, MI, NC, NJ, NY, OH, PA, TN, and VA. About HealthVerity HealthVerity is the leader in privacy-protected real-world data exchange, transforming how healthcare and life sciences organizations connect and analyze disparate h ealthcare and consumer  data.  We continue to innovate HealthVerity  Marketplace,  the n ation's   first and  largest r eal-world data  ecosystem   comprising more than 75 leading data providers and over 340 million US patients.  Combined with Identity Manager, the industry's most accurate and efficient solution for patient identity, privacy and governance, we  support critical applications in clinical development, commercial strategy,   regulatory decision-making , population health,  underwriting and more.  HealthVerity has raised more than $140 million to date and works closely with its data providers, partners and clients to Synchronize the Science.   To learn more about HealthVerity, visit  healthverity.com .   Why you'll love working here We are making a difference – Our technology is at the forefront of some of the biggest healthcare challenges in the world.  We are one team  – Our people define our culture and always will. We take time out to celebrate each other, and acknowledge the value that each of us adds towards our greater mission. Come share all you have to offer with our 200-person team. We are learners – Every team member is continually learning, no matter if we've been in a role for one year or much longer. We are committed to learning and implementing what is best for our clients, partners, and each other.   Benefits & Perks Our benefits package is thoughtfully designed to support and enrich the experience of our full-time employees, with eligibility limited to those in permanent positions. Compensation: competitive base salary & annual bonus opportunity (for non-commissioned roles) Benefits: We offer a 401(k) plan and stock options. Health, dental, and vision coverage start on day 1, while 401(k) eligibility and stock options follow soon after. Flexible location: Remote workdays and 3 days a week of in-office collaboration for team members in the Philadelphia area. Check location requirements with the recruiting team. Generous PTO: Take time off as needed, targeted at 4 weeks per year, including vacation, personal and sick time, plus paid parental leave. Parental Leave: 12 weeks paid leave for childbearing, surrogacy, and adoption; 6 weeks for non-childbearing parents. Comprehensive and individualized onboarding: mentorship program, departmental talks, and a library of resources are available beginning day 1 for each new team member to minimize the stress of starting a new job Professional development: biweekly 1:1s, hands-on leadership that is goal-and growth-oriented for each team member, and an annual budget to support professional development pursuits We believe incorporating different ideas, perspectives and backgrounds make us stronger and encourages an environment where ageism, racism, sexism, ableism, homophobia, transphobia or any other form of discrimination are not tolerated. All qualified job applicants will be given consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability. At HealthVerity, we’re working towards an innovative and connected future for healthcare data and believe the future is better together. We can only do that if everyone has a seat at the table.  If you require a reasonable accommodation in completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please direct your inquiries to careers@healthverity.com   Remote opportunities are not available in all areas and require team members to work from a fixed location due to tax and labor law implications - specific questions about remote positions can be discussed during the interview process with your recruiter.

Who is Sonar? Sonar helps prevent code quality and code security issues from reaching production, amplifies developers' productivity in concert with AI assistants, and improves the developer experience with streamlined workflows. Sonar analyzes all code, regardless of who writes it — your internal team, genAI, or third parties — resulting in more secure, reliable, and maintainable applications. Rooted in the open source community, Sonar’s solutions support over 30 programming languages, frameworks, and infrastructure technologies. Today, Sonar is used by +7M developers and 400K organizations worldwide, including the DoD, Microsoft, NASA, MasterCard, Siemens, and T-Mobile. We believe in developing great products that are supported by great internal teams and a strong culture. We are highly committed to and obsessed with the company, users, each other, and our open source community. We have high standards and hold each other accountable for acting with positivity, dedication, thoughtfulness, empathy, and passion daily. We are deliberate with our decisions with high clarity of intention. At the same time, we feel extreme urgency and move forward quickly. And lastly, we are highly effective and operationally efficient . We operate collectively as One Team to accomplish our goals. At Sonar, CODE is more than just an acronym – it's a mindset that defines daily operations. Why You Should Apply: At Sonar, we’re a group of brilliant, motivated, and driven professionals working hard to help supercharge developers to build better, faster. Sonar helps to continuously improve code quality and code security while reducing developer toil. This means that developers can focus on doing more of what they love and less of what they don’t. Our solutions don’t just solve symptoms of problems – we help fix issues at the source – for all code, whether it's developer-written, AI-generated, or from third parties. We have a dynamic culture with employees worldwide and hub offices in the USA, Switzerland, the UK, Singapore, and Germany. Team members should be able to come to work every day, work on a product they are proud of, love what they do, and feel energized by their peers. With our roots deep in the open source community, we’re all about the mission: supercharge developers to build better, faster. The Impact You Will Have: The primary goal of the Information Security team is to build trust with our rapidly growing customer base by ensuring the security of our products and platform, while demonstrating that our organization meets stringent security standards. As a member of the team, you will work with engineering teams to ensure products and cloud platforms are designed, built, and maintained to Sonar’s high security standards and assist them through constant improvement. You will also ensure endpoints are fully secure and meet our engineers' needs while procuring and deploying new solutions. You will also investigate and resolve security issues raised with our team. As part of a team-based organization, your contributions will significantly impact the growth of our business through Sonar’s “collective intelligence” mindset. What You Will Do Daily: Collaborate with product engineering teams to design and implement secure solutions. Review product architectures and solutions to ensure integration of security requirements. Review cloud configuration and perform code reviews. Develop and implement security initiatives delivered through the strategic security plan. Procure, design, and implement new security tools or features. Conduct internal and external security reviews, pen testing, and red team exercises. Investigate and resolve security issues detected in products and internal systems. Investigate and manage customer security concerns. Act as a security SME for security incidents Review threat intelligence findings and analyse threat landscapes. The Experience You Will Need: Extensive experience with cloud architectures, primarily AWS. Extensive experience with application security assessments including authN and authZ. Extensive experience with pen testing, red team engagements and bug bounty programs. Experience with vulnerability investigation and management. Experience with AI Security. Experience with threat modeling using frameworks like STRIDE. Experience with cloud network and firewall policy management. Experience with coding and scripting such as python, bash. Familiarity with Azure and GCP platforms, and Google Workspace are a plus. Why You Will Love It Here: Our culture and mission set us apart. We have a dynamic work culture that values respect and kindness and embraces the right to fail (and get right back up again!). Great people make a great company. We value people skills as much as technical skills and strive to keep things friendly while still being passionate leaders in our domains. We have a flexible work policy that includes 3 days in-office and 2 days work-from-home each week for those located near our office locations; some locations such as Dubai, India, Japan and Australia operate fully remotely. We have a growth mindset. We love learning and believe continuous education is critical to our success. In an ever-changing industry, new skills are necessary, and we're happy to help our team acquire them. As the leader in our field, our products and services are as strong as our internal team members. We embrace transparency with regular meetings, cascading messages and updates on the growth and success of our organization. Benefits of Working with Sonar: Flexible comprehensive employee benefit package. We encourage usage of our robust time-off allocations. You will receive 23 days of PTO per calendar year (on a pro-rated basis depending on your employment start date), with additional time provided for sickness, life events and holidays. We offer an exciting 401(k) plan that has a 4% match, fully vested on day one of participation. Generous discretionary Company Growth Bonus, paid annually. Fully paid parking in the heart of downtown Austin, Texas. Global workforce with employees in 20+ countries representing 35+ unique nationalities. We have an annual kick-off somewhere in the world where we meet to build relationships and goals for the company. Monthly catered events, and team events. We Value Diversity, Equity, and Inclusion: At Sonar, we believe that our diversity is our strength. We are a global company that values and respects different backgrounds, perspectives, and cultures. We are committed to fostering a diverse and inclusive work environment where everyone feels valued and empowered to contribute their best. We are proud to be an equal opportunity employer and welcome all qualified applicants, regardless of race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. All offers of employment at Sonar are contingent upon the precise results of a comprehensive background check and reference verification conducted before the start date. We do not currently support visa candidates in the US. Applications that are submitted through agencies or third party recruiters will not be considered.

Be Challenged and Make a Difference In a world of technology, people make the difference. We believe if we invest in great people, then great things will happen. At AnaVation, we provide unmatched value to our customers and employees through innovative solutions and an engaging culture. Description of Task to be Performed: Come join our growing team and make a difference every day! AnaVation is seeking a highly skilled Senior Security Engineer to provide expertise, guidance, recommendations and document security configurations for the implementation of security tools and processes for government networks. The Senior Security Engineer shall include the installation, analysis, and troubleshooting of data/security networks and devices to include network and software system. Key responsibilities include: · Develop technical solutions and new security tools to help mitigate security vulnerability and automate repeatable tasks; · Assist security personnel with responding to incidents across a wide array of technologies, mitigate and contain impacts, coordinate remediation efforts, and summarize recommendations for improvements; · Provide up-to-date reports on security incidents and task process; and · Maintain documentation to support security strategies by outlining the requirements and benefits of specific security tools and/or solutions. This position is on-site in Quantico, VA with hybrid telework possible, and requires a Top Secret clearance and the ability to obtain a CI clearance with a polygraph. Required Qualifications: At least six (6) years of experience as Security Analyst in a corporation, government, or service firm. Experience using and administering SIEM and analytics solutions (Splunk, Elastic Stack (Elasticsearch, Logstash, Kibana - ELK), or similar) required. Experience conducting security assessments, penetration testing and/or ethical hacking, and identifying and mitigating vulnerabilities required. Ability to engineer and deploy critical security analytic services including, but not limited to, IPS/IDS, EDR, and SIEM solutions to secure the enterprise. Industry security certification such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CSIM), Security+, or similar certification is required. Education: Bachelor of Science Degree in Computer Science, Computer Engineering, Cybersecurity or related field of study; or in lieu of education, five additional years of relevant experience. Preferred Qualifications: Architect and operate a hybrid SIEM stack spanning Microsoft Sentinel and Splunk Enterprise across on-prem, Azure, AWS; design ingestion pipelines (DCR/AMA, Splunk UF/HF/HEC), normalization with ASIM/CIM, and cross-workspace/cross-tenant event sharing. Lead security architecture reviews and reference designs aligned to Zero Trust, NIST 800-53/207, CNSSI 1253; deliver threat models, control mappings, and security data flow diagrams for collection networks. Build and maintain detections-as-code: author and version KQL/SPL analytics, watchlists, and entity behavior rules with MITRE ATT&CK coverage. Administer a proactive threat-hunting program using KQL/SPL, Jupyter notebooks (MSTICPy), Sigma conversion, and purple-team ATT&CK emulations; convert hunt findings into resilient analytics and anomaly baselines. Optimize telemetry governance and cost: table/namespace policies, retention tiers/archival, Splunk license & index strategy, Sentinel ingestion caps and data filters, plus egress controls for FOUO/SCI data. Establish incident response operations and SLOs: unify case management (Sentinel Incidents, Splunk ES Notables), evidence handling, post-incident reviews, and executive dashboards/metrics for readiness and dwell time. Provide tiered platform support and enablement: backlog grooming, rule/playbook QA, change control, analyst/admin training, and ATO/RMF continuous monitoring package updates as required. Benefits · Generous cost sharing for medical insurance for the employee and dependents · 100% company paid dental insurance for employees and dependents · 100% company paid long-term and short term disability insurance · 100% company paid vision insurance for employees and dependents · 401k plan with generous match and 100% immediate vesting · Competitive Pay · Generous paid leave and holiday package · Tuition and training reimbursement · Life and AD&D Insurance About AnaVation AnaVation is the leader in solving the most complex technical challenges for collection and processing in the U.S. Federal Intelligence Community. We are a US owned company headquartered in Chantilly, Virginia. We deliver groundbreaking research with advanced software and systems engineering that provides an information advantage to contribute to the mission and operational success of our customers. We offer complex challenges, a top-notch work environment, and a world-class, collaborative team. If you want to grow your career and make a difference while doing it, AnaVation is the perfect fit for you! AnaVation is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to sex, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by law.

Be Challenged and Make a Difference In a world of technology, people make the difference. We believe if we invest in great people, then great things will happen. At AnaVation, we provide unmatched value to our customers and employees through innovative solutions and an engaging culture. The job duties of the ISSO are as follows: • Responsibilities are full time on customer’s onsite and will cover classified programs and Special Access Programs (SAP). No Telework. • Provide subject matter expertise and consulting on security related matters for enterprise information system and network architectures, access problems, and implementation of security policies and procedures. • Assist in overseeing and managing day-to-day operation of SAP Information Systems. • Optimize system operation and resource utilization and performs system capacity planning/analysis while maintaining the security posture. • Assist team in DIA’s Authorization and Accreditation (A&A) process using RMF across the design lifecycle for classified systems obtaining and maintaining Interim Authority to Operate (ATO), ATO and Authority to Connect (ATC). • Create and process RMF authorization SAP packages from submission to approval/disapproval • Develop and maintain IT security documents, including system security plans, risk assessments, Plan of Action and Milestones (POA&M), contingency plans, incident response plans, IT security policies and procedures. • Provide recommendations regarding remediation and mitigation of identified vulnerabilities by developing plan of action and milestones (POA&Ms). • Advise developers on integrating security requirements • Demonstrate a strong understanding of Networks, Cloud, and IT system security authorization procedures. Required Qualifications: Demonstrates strong experience with IC/DoD customer's Assessment and Authorization (A&A) process (e.g., RMF, NIST800-53, ICD503). Experience in developing and implementing DoD/DIA approved information security controls, procedures and documentation for the operation of standalone classified systems. A Bachelor’s Degree from an accredited institute in an area applicable to this position and eight (8) years of relevant experience An additional four (4) years of relevant experience may be substituted for the bachelor’s degree Must presently be 8570 compliant (IAT Level 2 preferred); must be 8570 compliant (IAT Level 2) Experience with one or more commercial government cloud service provider’s system accreditation processes Experience with the Xacta Experience as a Cybersecurity Control Assessor for SAP Experience with Ongoing Authorizations and Assessments Experience with C2S Cloud, or DevOpsSec) Active TS/SCI with CI Poly Benefits · Generous cost sharing for medical insurance for the employee and dependents · 100% company paid dental insurance for employees and dependents · 100% company paid long-term and short term disability insurance · 100% company paid vision insurance for employees and dependents · 401k plan with generous match and 100% immediate vesting · Competitive Pay · Generous paid leave and holiday package · Tuition and training reimbursement · Life and AD&D Insurance About AnaVation AnaVation is the leader in solving the most complex technical challenges for collection and processing in the U.S. Federal Intelligence Community. We are a US owned company headquartered in Chantilly, Virginia. We deliver groundbreaking research with advanced software and systems engineering that provides an information advantage to contribute to the mission and operational success of our customers. We offer complex challenges, a top-notch work environment, and a world-class, collaborative team. If you want to grow your career and make a difference while doing it, AnaVation is the perfect fit for you! AnaVation is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to sex, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by law.

Who We’re Looking For (Position Overview): Spry Methods is on the search for a Security Assessor to join our team in DC. What Your Day-To-Day Looks Like (Position Responsibilities): Strong working knowledge of IT Security requirements, technical security countermeasures, risk managements processes, contingency planning, and secure data communications Experience conducting full cycle Security Assessments & Authorizations (SA&A) Testing will include network, system, application and NIST control testing from administrative and technical perspectives Experience analyzing vulnerability scans and interpreting risks and employing manual checks to validate vulnerability data Be able to assist the customer with understanding risk and providing risk mitigation Will create Security Assessments Plans, Reports, and POA&Ms The security assessment team conducts documentation reviews, inspections, and interviews with key personnel knowledgeable/ responsible for the various controls Personnel interviewed are asked to show evidence of compliance, demonstration security features, provide access to (or screenshots of) configuration files and system logs, and perform tests The determination of compliance will be based upon responses to questions and analysis of supporting evidence.. Knowledge of CSAM is a plus What You Need to Succeed (Minimum Requirements): At least 5 years experience Bachelor's Degree or 4 years of specialized experience Strong security assessor background Must understand the Risk Management Framework (RMF) process

SECURITY OFFICERS NEEDED San Francisco Full-Time, Part-Time, and Flex Positions We're always hiring friendly people with security and customer service experience.  HOW TO APPLY You can apply by responding to this ad. Any offer of employment will be contingent on verification of job history. The initial interview will be by video. REQUIREMENTS Candidates must: Have a current California guard card Have experience in customer service and security Be available on holidays Be willing to work occasional, unscheduled overtime Be able to pass a background check and drug screening Have reliable transportation to and from work Be able to stand for long periods and do walking patrols of buildings and stairwells Be able to regularly lift packages up to 30 lbs. BENEFITS Employer-assisted healthcare and dental plans PTO starting the first year of employment Holiday pay, overtime pay, and PTO WHY NOB HILL SECURITY? Develop interpersonal skills in a professional sphere Work within a high-quality, small team leading to more personal recognition and room for career growth Make a difference in the safety and security of a community Have the opportunity to work luxury and high-end security ABOUT US We're a security company serving San Francisco and the upper peninsula. We specialize in luxury and high-end events and properties. We only hire applicants with both security and customer service experience. Current and past clients have included art galleries, museums, office buildings, condos, private events, retail stores, and more. If you're looking for personalized involvement working in a company with room for growth, you've found the right place. Nob Hill Security 100 Pine St. #1250 San Francisco, CA 94111 PPO #119829

Company Summary Arlo Solutions (Arlo) is an information technology consulting services company that specializes in delivering technology solutions. Our reputation reflects the high quality of the talented Arlo Solutions team and the consultants working in partnership with our customers. Our mission is to understand and meet the needs of both our customers and consultants by delivering quality, value-added solutions. Our solutions are designed and managed to not only reduce costs, but to improve business processes, accelerate response time, improve services to end-users, and give our customers a competitive edge, now and into the future. Position Description: The Information Security Specialist III supports the National Oceanic and Atmospheric Administration (NOAA) Internal Risk Management Program (IRMP), providing advanced technical, analytical, and programmatic expertise in the prevention, detection, and mitigation of insider threats. This key personnel position executes and advances NOAA’s IRMP objectives in compliance with federal security regulations, most notably Executive Order 13587, National Insider Threat Policy, NIST, FISMA, NSPM-33, and agency-specific guidance. The Information Security Specialist III collaborates with OCIO leadership, the Internal Risk Office, NOAA research teams, and interagency insider threat task forces to strengthen the security posture of NOAA’s classified and unclassified environments. Location: Hybrid (Silver Spring, MD) Clearance: Active TS/SCI Responsibilities and/or Success Factors: Information Security Program Development and Implementation Lead the development and implementation of comprehensive information security policies, procedures, and protocols for insider threat detection and mitigation Design and establish security frameworks that integrate physical security, personnel security, cybersecurity, and information assurance functions Develop research security protocols in compliance with NSPM-33 to protect sensitive NOAA research activities from internal and external threats Create and maintain security guidelines for handling classified national security information (CNSI) and controlled unclassified information (CUI) Risk Assessment and Analysis Conduct comprehensive risk assessments of NOAA's information systems, networks, and data repositories Analyze security vulnerabilities and develop mitigation strategies for identified risks Evaluate and assess compliance with federal security standards including FISMA, NIST frameworks, and DoD cybersecurity requirements Perform security impact assessments for new systems, applications, and processes Security Data Integration and Monitoring Consolidate and analyze security data from multiple internal and external sources to identify potential insider threats Design and implement data integration systems that provide real-time monitoring and actionable insights to leadership Develop and maintain insider threat detection systems and behavioral monitoring capabilities Ensure ethical data collection and analysis practices that comply with privacy regulations and civil liberties requirements Incident Response and Investigation Coordinate incident response activities for suspected insider threat cases and security breaches Conduct thorough investigations of security incidents involving classified systems and sensitive information Document incident response actions and develop lessons learned for continuous program improvement Collaborate with law enforcement agencies and external partners on complex security investigations Compliance and Audit Management Ensure compliance with federal security regulations including Executive Order 13587, NSPM-33, FISMA, and NIST standards Conduct regular security compliance audits and assessments Prepare detailed compliance reports and corrective action plans for identified gaps Maintain documentation for security authorization and accreditation processes Training and Awareness Program Support Develop technical training materials and awareness programs focused on insider threat identification and mitigation Provide expert consultation on security best practices and threat scenarios Support the delivery of security training sessions for NOAA personnel, contractors, and uniformed services Create technical resources and job aids for security awareness initiatives Stakeholder Collaboration and Communication Serve as technical liaison with internal NOAA teams including the Cybersecurity Division and Human Resources Communicate complex technical security concepts to non-technical stakeholders Provide expert technical guidance to program leadership and government officials Policy Development and Documentation Develop and maintain comprehensive security policies and standard operating procedures (SOPs) Create technical documentation for security systems, processes, and procedures Review and update security policies to ensure alignment with evolving threats and regulatory requirements Contribute to the development of security guidelines and best practice documentation Minimum Qualifications Including Certificates: Must be a U.S. Citizen Active Top Secret security clearance with SCI eligibility (required before contract start) Bachelor's degree in Cybersecurity, Information Security, Computer Science, Information Technology, or related STEM field from an accredited college or university Five (5) years of experience in information security, cybersecurity, or related field Five (5) years of experience in insider threat detection, behavioral analysis, or risk management Experience with federal compliance frameworks including FISMA, NIST Cybersecurity Framework, and Risk Management Framework (RMF) Knowledge of classified information handling procedures and National Industrial Security Program Operating Manual (NISPOM) requirements Experience with security incident response and investigation methodologies Demonstrated experience with security data analysis and threat intelligence platforms Strong analytical and problem-solving skills with attention to detail Excellent written and verbal communication skills Desired Qualifications: Experience with NOAA or other federal agency cybersecurity programs Professional security certifications (CISSP, CISM, GIAC, or equivalent) Experience with behavioral analytics and insider threat detection tools Knowledge of NSPM-33 research security requirements Familiarity with NIST Special Publications (SP 800 series) and federal cybersecurity guidance Experience with Security Information and Event Management (SIEM) systems Knowledge of machine learning and artificial intelligence applications in cybersecurity Experience with cloud security frameworks and technologies Understanding of privacy protection principles and compliance requirements AAP Statement We are proud to be an Affirmative Action and Equal Opportunity Employer and as such, we evaluate qualified candidates in full consideration without regard to race, color, religion, sex, sexual orientation, gender identity, marital status, national origin, age, disability status, protected veteran status, and any other protected status.

Company Summary Arlo Solutions (Arlo) is an information technology consulting services company that specializes in delivering technology solutions. Our reputation reflects the high quality of the talented Arlo Solutions team and the consultants working in partnership with our customers. Our mission is to understand and meet the needs of both our customers and consultants by delivering quality, value-added solutions. Our solutions are designed and managed to not only reduce costs, but to improve business processes, accelerate response time, improve services to end-users, and give our customers a competitive edge, now and into the future. Position Overview: Arlo Solutions is seeking a Physical and Personnel Security Specialis t to support the Office of the Under Secretary of Defense for Intelligence & Security (OUSD(I&S)) in managing the physical and personnel security for approximately forty-five Sensitive Compartmented Information Facilities (SCIF) throughout the National Capital Region (NCR). The successful candidate will assist with security procedures, facility accreditation, personnel security processing, and maintaining security databases and documentation to ensure compliance with Department of Defense (DoD) regulations. Work Location Location TBD; either Pentagon or Mark Center Clearance: TS/SCI Job Responsibilities and/or Success Factors Physical Security Management: Assist with the physical security oversight of approximately 45 SCIFs located at DoD installations, leased spaces, and residences. Responsibilities include: Conducting facility accreditations, reaccreditations, co-use agreements, compartmented area setup, and construction site surveys. Performing self-inspections, managing access control, and applying standards for SCIF accreditation, including compliance with ICD 705, the Fixed Facility Checklist, and TEMPEST requirements. Personnel Security Management: Process security nomination packages and handle indoctrinations and debriefings for OUSD(I&S) personnel, averaging 40 indoctrinations and 12 debriefings monthly. Review and update DD254s as part of the industrial security program. Maintain personnel security documentation, ensuring that in-processing and out-processing records are accurate and up to date. Database and Security Systems Maintenance: Update the Defense Information System for Security (DISS) and related databases, ensuring the accurate tracking of security clearances and personnel access. Process classified visit requests and verifiy clearances through systems like DISS and Scattered Castles for classified meetings. Handle approximately 250 security-related requests monthly, including visit requests and clearance verifications. Security Education and Training: Assist in implementing the Security Education Awareness program by developing training materials, security bulletins, directives, and procedures. Deliver weekly security training sessions to ensure compliance and awareness across the workforce. Insider Threat and Information Security Support: Assist the Insider Threat Program Manager in processing actions related to insider threat activities and investigations. Support the Information Security Program Manager by recommending and implementing measures to mitigate potential or actual security compromises. Security Reporting and Documentation: Provide programmatic support by gathering data and producing reports for leadership and staff on security incidents, access suspensions, and personnel clearances. Manage the secure handling, storing, marking, dissemination, and destruction of classified materials in accordance with applicable regulations. Maintain a comprehensive file system tracking security clearance statuses, access denials, revocations, and other regulatory requirements. Required Skills and Qualifications: Security Expertise: In-depth knowledge of DoD and Intelligence Community security procedures, including ICD 705, TEMPEST standards, and SCIF construction/operations. Personnel Security Processing: Experience processing security clearances, nominations, and indoctrination packages. Database Proficiency: Proficiency with security systems such as DISS and Scattered Castles for clearance tracking and verification. Regulatory Knowledge: Strong understanding of DoD security policies and regulations, including classified information handling procedures (e.g., DD254 reviews, SAARs). Attention to Detail: Exceptional attention to detail for processing security documentation, performing self-inspections, and managing classified materials. Communication Skills: Ability to deliver training sessions, security briefings, and develop security-related procedures and documents. Problem-Solving: Strong analytical skills to assist with mitigating security risks and addressing potential insider threats. Qualifications: Active TS/SCI Clearance Bachelor’s degree in security management, criminal justice, or a related field (or equivalent experience). 3-5 years of experience in physical and personnel security roles within the DoD or intelligence community. Proficiency with DISS, Scattered Castles, and other security-related databases. Strong organizational skills and the ability to manage multiple security requests daily. Preferred Qualifications: Experience with SCIF accreditation processes and facility security management. Familiarity with DoD security education and insider threat programs. AAP Statement We are proud to be an Affirmative Action and Equal Opportunity Employer and as such, we evaluate qualified candidates in full consideration without regard to race, color, religion, sex, sexual orientation, gender identity, marital status, national origin, age, disability status, protected veteran status, and any other protected status.

Are you interested in joining an organization with a global reach? In a world of shifting threats, Concentric is your trusted ally. Powered by elite professionals from military, government, and intelligence backgrounds. If you are passionate about intelligence, risk analysis, threat management, executive protection, security operations, or business resiliency, Concentric may be the organization you’ve been searching for!Concentric is a risk consultancy specializing in delivering strategic security and intelligence services. We provide holistic, intelligent security solutions for private clients and corporations globally. Concentric offers strategic advisory services, risk assessments, physical protection, threat intelligence, open-source monitoring, program audits, secure embedded staffing, and training for security teams and intelligence analysts. Our ultimate goal is to be recognized as the most innovative, capable, and trusted Risk Management partner in the world, and we do this by following these core values: Integrity – Collaboration- Relationships – Excellence – Creativity- Results Join Us, Concentric - "Your World Secured" We are currently looking to hire a Corporate Security Specialist to join our team embedded with our client in Palo Alto! This position requires working onsite at our client's Headquarters in Palo Alto, CA. JOB DESCRIPTION The Corporate Security Specialist will be responsible for safeguarding the workspace from safety and security hazards, responding to acts of violence, and providing limited medical aid. The job requires a high level of personal integrity and honesty, confidentiality, good judgment, strong problem-solving skills (especially under pressure), and the capacity to follow instructions. This position requires an exceptionally talented, personable, and self-motivated individual to work in a highly visible, interactive role, providing holistic security for the client’s office in Palo Alto, California. The Corporate Security Specialist will maintain access control, support incident management, and act to support threat management and emergency response. RESPONSIBILITIES Safeguard the client site and personnel from all forms of security and safety hazards Provide security coverage for employees, guests, and others in a way that is professional, courteous, and in compliance with established policies and procedures Establish a front-facing security presence during business hours Monitor access control, alarm, & CCTV technologies. Assist in the development and implementation of SOPs Facilitate and manage visitor process/reception function and guest badge issuance Person of Interest management for unsolicited contact (visits, mail, phone calls, etc.) Securing the arrival and departure routes for key executives Provide critical medical triage until first responders can arrive Assist in the development of a streamlined incident reporting and activity log and remain diligent in maintaining an accurate record. Integrate security support for HR functions (i.e. terminations, screenings, removal of access, etc.) Demonstrate integrity and excellent customer service skills in all assignments in a professional office setting Complete daily requests from management Perform other duties as assigned REQUIRED QUALIFICATIONS Minimum of 2 years of experience preferably in a corporate security position All required licenses and certification requirements, including: Current California unarmed security guard license Licensing/proven training in defensive tactics, de-escalation, first aid/medical response, and security guarding Must hold or be able to obtain CPR/First Aid/AED training or higher Experience with physical security, CCTV, and alarm monitoring systems High ethical standards with proven ability to handle highly confidential and sensitive information; excellent judgment, discretion, and diplomacy Excellent written and verbal communication skills, including comfort level in interfacing with senior company leadership Skilled in synthesizing facts, concepts, and principles Emotional intelligence and a customer-focused approach status. PREFERRED QUALIFICATIONS Bachelor’s Degree in a related field or relevant experience Executive Protection and/or Tactical training preferred Advanced medical training (EMT, WEMT, WFR, TCCC/TECC) Alarm/Access Control Systems Certification: Genetec and/or Bosch COMPENSATION & BENEFITS Employee’s Medical, Dental, & Vision Premiums Concentric generously covers a significant portion of the premium costs for employees' dependents for medical, dental, and vision coverage. Medical selection of PPO or HDHP, including HSA employer contribution Medical FSA Employer-paid insurance: life, STD, LTD, and AD&D 401k including employer match 11 paid holidays Paid leave (vacation, sick, parental) Annual Health & Wellness Benefit Pet Insurance National discount employee program Employee Assistance Program for personal needs Credentity Protection- Eclipse Digital Protection by Concentric Free access to our Risk Intelligence Dashboard and GEAR App. Providing 24/7 access to trusted risk intelligence and remote support, helping you stay informed, prepared, and protected wherever you operate. Dedicated Security and Intelligence Training Programs for Professional Development Coaching and Mentoring Opportunities San Jose, Pay Range $27 — $27 USD Concentric and SPS Global acknowledge the systemic barriers in the security industry and recognize that removing those barriers will require a collaborative and conscious effort. Concentric and SPS Global are committed to programs and initiatives that promote diversity, equity, and inclusion, enhancing our organization and the broader community. We are creating a diverse environment and are proud to be an equal opportunity employer. We encourage people from all backgrounds to apply. All qualified applicants will receive consideration for employment regardless of race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. Concentric Advisors and SPS Global are committed to protecting the privacy and security of all applicants who submit personal information to us. You can access our GDPR and CCPA policy by clicking the GDPR button at the bottom of our career page.

Site Security Coordinator (SSC) Location: Worldwide Locations Clearance: ACTIVE Top-Secret The SSC positions will be established for projects where a SSM is not available to assist the cognizant officer with post managed projects. The SSC will assist the DoS officials, coordinate security and other requirements with the key project officials and provide reports back to Security Operations in Washington DC. This position requires exceptional administrative skills such as proficiency with computers, multi-tasking, and an overall understanding of the Security Management Program. Duties and Responsibilities: The SSC will be required to maintain a detailed, daily log of numerous construction activities and render a written report to the Regional Security Officer and Washington DC Desk Officer for review. Coordinate security and other requirements with the key project officials. Provide reports back to Security Operations in Washington DC. Personnel who are well versed in both CAG and CST discipline will be required to interact and efficiently communicate, both orally and in writing, with Embassy personnel. Requirements ACTIVE Top Secret Clearance required. Active CST and/or CAG certification required. 3+ years of security and/or construction experience. Site Security Coordinators must have at least 3 years of experience in the CSM Program. Have and maintain a Top-Secret U.S. Government Security Clearance. In good physical health and meet medical requirements for the position. The SSC will be knowledgeable in both guard and construction surveillance functions, however, they need not be certified in both. The SSC must be capable of independent decision making, possess a high degree of initiative and be capable of functioning with minimal supervision.

SOC Engineer We are seeking a motivated and experienced Security Operations Center (SOC) Engineer who will be responsible for improving the company security posture via automation and threat hunting. The ideal candidate will have a strong background in Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) platforms, coupled with proficiency in Python scripting. This role is pivotal in enhancing our security posture by developing and implementing automated security workflows, tuning our detection capabilities, and responding to sophisticated cyber threats. Key Responsibilities: SIEM and SOAR Platform Management: Maintain our SIEM and SOAR platforms to ensure optimal performance and effectiveness in detecting and responding to security threats. Develop and fine-tune detection and correlation rules, dashboards, and reports within the SIEM to accurately detect anomalous activities. Create, manage, and optimize SOAR playbooks to automate incident response processes and streamline security operations. Automation and Scripting: Utilize Python scripting to develop custom integrations and automate repetitive tasks within the SOC. Build and maintain automation workflows to enhance the efficiency of threat detection, alert triage, and incident response. Integrate various security tools and threat intelligence feeds with our SIEM and SOAR platforms using APIs and custom scripts. Incident Response and Threat Hunting: Conduct proactive threat hunting to identify potential security gaps and indicators of compromise. Analyze security alerts and data from various sources to identify and respond to potential security incidents. Collaboration and Documentation: Collaborate with Information Security team members and other teams to enhance the overall security of the organization. Create and maintain clear and comprehensive documentation for detection rules, automation workflows, and incident response procedures. Requirements Required Qualifications: 6+ years of experience in a Security Operations Center (SOC) environment or a similar cybersecurity role. Hands-on experience with managing and configuring SIEM platforms (e.g., Elastic SIEM, Splunk, QRadar, Microsoft Sentinel). Demonstrable experience with SOAR platforms (e.g., Palo Alto Cortex XSOAR, Splunk SOAR) and playbook development. Proficiency in Python for scripting and automation of security tasks. Strong understanding of incident response methodologies, threat intelligence, and cybersecurity frameworks (e.g., MITRE ATT&CK, NIST). Excellent analytical and problem-solving skills with the ability to work effectively in a fast-paced environment. Preferred Qualifications: Relevant industry certifications such as CISSP, GCIH, or similar. Experience with cloud security and environmental constructs (AWS, Azure, GCP). Familiarity with other scripting languages (e.g., PowerShell, Bash). Knowledge of network and endpoint security solutions. Benefits Health Care Plan (Medical, Dental & Vision) Life Insurance (Basic, Voluntary & AD&D) Paid Time Off (Vacation, Sick & Public Holidays) Training & Development Retirement Plan (401k, IRA) Free breakfast and lunch

Job Description: Permian Resources (N YSE : PR ) is currently seeking a Cyber Security Engineer to join the E nterprise C ybersecurity T eam in Midland, Texas . This position will play a critical role in designing, implementing, and maintaining our security infrastructure, as well as developing and enforcing security policies and procedures. The ideal candidate will have a strong understanding of security principles, threat analysis and incident response, while being able work effectively on a multi -disciplinary team in a fast-paced environment. General Responsibilities Develop and maintain security policies, procedures, and standards to ensure the confidentiality, integrity, and availability of company data. Design and implement security solutions, including firewalls, intrusion detection/prevention systems, and other security tools. Conduct threat analysis and vulnerability assessments to identify and mitigate potential security risks. Lead incident response efforts, including containment, eradication, and recovery. Monitor security systems and logs to detect and respond to security incidents. Collaborate with other IT teams to ensure security is integrated into all aspects of the infrastructure. Research and evaluate new security technologies and solutions. Stay up to date on the latest security threats and vulnerabilities and p rovide security awareness training to employees. Minimum Qualifications Bachelor's degree in Computer Science , Information Technology, Cybersecurity, or a related field. 5+ years of experience in cybersecurity engineering or a related role. Experience with security policy and procedure development. Proven ability to design and implement security solutions. Strong understanding of threat analysis and mitigation techniques, including incident response. Familiarity with industry standards such as NIST CSF and ISO 27001 Technical expertise in one or more of the following security tools and technologies: Firewall Management, Web Application Firewall (WAF), Endpoint Detection and Response (EDR), Data Loss Prevention (DLP) , Cloud Security (e.g., AWS, Azure, GCP), Security Information and Event Management (SIEM), Identity and Access Management (IAM), Privileged Access Management (PAM ) . Excellent communication and interpersonal skills. Strong analytical and problem-solving skills. Preferred Qualifications Related cybersecurity work experience in O T /Industrial Controls Systems (SCADA) environments. Relevant certifications such as CISSP, Security+, or equivalent experience. Permian Resource is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.