Auto-apply to these security jobs

NAESOC Analyst Xcelerate Solutions is seeking a National Access Elsewhere Security Oversight Center (NAESOC) Analyst to support the Defense Counterintelligence and Security Agency's NAESOC in applying risk-based industrial security operations to protect the defense industrial base. In this role, you will be responsible for identifying risk to cleared facilities and supporting personnel in mitigating security threats, through coordination with industrial security representatives, continuous monitoring, and execution of research and analysis on cleared companies and key management personnel. Come join our award-winning organization and work with some of the most talented and brightest minds in the GovCon industry. Location: Hanover, MD/Hybrid Security Clearance: Secret or Top Secret (Preferred) Responsibilities: Apply knowledge of the NISPOM and DCSA data systems to support data analytics and threat identification and monitoring Provide knowledge and expertise in identification of risk to cleared facilities and personnel Support development of tailored risk mitigation strategies Execute continuous monitoring to assess effectiveness of security programs at cleared facilities Perform facility baselining and monitoring as part of a broader risk-based oversight model; to include research/analysis of business operations and key management personnel Perform security violation processing as a result of reported and unreported security violations Conduct outreach to targeted cleared facilities to support identification of risk and aid in enhancement of risk mitigation strategies Minimum Requirements: 3+ years' experience with security-related data systems such as NISS (prior ISFD and eFCL) and DISS 1+ years' experience supporting or executing Facility Security Officer (FSO) duties 1+ years' experience with risk mitigation methodology 1+ years' experience developing risk mitigation strategies 3+ years' experience identifying risk to industrial security and responding to risk in executing the NISPOM 3+ years' experience planning, organizing, monitoring, and coordinating courses of action 3+ years' experience gathering metrics and analyzing data for trends and resource allocation 3+ years' experience reviewing and providing educational instruction on industrial security topics About Xcelerate Solutions: Founded in 2009 and headquartered in McLean, VA, Xcelerate Solutions (www.xceleratesolutions.com) is one of America's fastest-growing companies. Xcelerate's culture is defined by our diversified workforce of dynamic and versatile professionals, supported with growth and development opportunities that contribute to individual and company growth. This strong commitment to our employees has been recognized by our inclusion on the Washington Business Journal's "50 Best Places to Work" list as well as being a "Great Place to Work" certified company with a 4.6 star, and a 99% CEO approval Glassdoor rating. Come find out why Xcelerate Solutions is one of the DC Metro top employers! Xcelerate Solutions is an Equal Employment Opportunity/Affirmative Action Employer. We evaluate qualified applicants without regard to race, color, national origin, religion, age, equal pay, disability, veteran status, sex, sexual orientation, gender identity, genetic information, or expression of another protected characteristic. As part of this commitment to the full inclusion of all qualified individuals, Xcelerate provides reasonable accommodations if needed because of an applicant's or an employee's disability. Pay Transparency Notice: Xcelerate Solutions will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant.

Presidio, Where Teamwork and Innovation Shape the Future At Presidio, we're at the forefront of a global technology revolution, transforming industries through cutting-edge digital solutions and next-generation AI. We empower businesses-and their customers-to achieve more through innovation, automation, and intelligent insights. The Role Presidio has an exciting opportunity for a Security Practice Lead to join our Cybersecurity National Practice. This individual's primary responsibility is to act as subject matter expert for Presidio's Cybersecurity Solutions, driving overall Cybersecurity service (consulting and vSOC) and product (market leading OEM's/ISV's) revenue, and leading Cybersecurity field enablement in region by working closely with the broader Presidio Sales and Engineering organization. Travel Requirements: 20-25% travel Responsibilities Include: Proactively engage with clients as a trusted advisor to understand security challenges and requirements and identify how they can be addressed by Presidio and partner solutions. Provide pre-sales support in collaboration with sales teams and ensure product and service selection meets customers' business and technology needs. Present and articulate Presidio security value proposition to clients (including C-suite, with an emphasis on the CISO) on both a technical and business level. Effectively communicate the capabilities of Presidio security services. Proactively monitor and assess industry/technology advancements and alliances, looking for ways to leverage existing capabilities and emerging technologies. Define requirements, solutions and value propositions to hand off to Solutions Architects. Work with Account Managers and Sales Directors to proactively establish presence in key client accounts. Develop security solution profiles for top accounts and identify key influencers and decision-makers. Own and develop relationships with key vendor contacts to stay current on vendor updates and to facilitate account mapping, deal registration, discounting and escalations. Conduct security trainings to build outside sales team's security and lead qualification capabilities. Work with Presidio Cybersecurity team to identify opportunities for consulting and hardware/software integration services. Monitor competition by gathering current marketplace information on pricing, products, services, and delivery schedule. Demonstrate industry thought leadership to attract clients and grow Presidio's market reputation in security. Required Skills and Professional Experience: Professional security-related qualifications such as CISSP, CISM, CRISC, CISA, GIAC or equivalent are highly desirable. Working knowledge and familiarity with GRC and Offensive Security consulting services (e.g., penetration testing, PCI audit, security assessment) is highly desirable (pre-sales perspective). Experience in a pre- or post-sales capacity in an information security environment is desirable. Preferred Skills and Professional Experience: Working knowledge and familiarity with Virtualization and Cloud technology is desirable. Broad experience and understanding of industry standards, framework and best practices such as ISO27001, PCI DSS, NIST, etc. Broad experience and understanding of security trends, threat landscape and frameworks like the cyber kill-chain. Ability to listen and communicate effectively with vendors, prospects, clients, account managers and management. Experience in vulnerability analysis procedures and deliverables. Broad experience and understanding of regulatory framework and guidelines in the region are highly desirable. Education and Skills: Bachelor's degree or relevant work or military experience 5-10+ years of experience in IT Security and / or Managed Security Services. Experience in providing guidance in strategic, program and project initiatives in cyber security. Bachelor's degree in technology or sales related field Working technical knowledge of security technologies (across multiple domains such as Firewall, Network IPS, SIEM, DLP, Cloud Security etc.), information security concepts and familiarity with security products (Checkpoint, Palo Alto, Cisco, Splunk, McAfee, Symantec etc.) and the security marketplace. Your future at Presidio Joining Presidio means stepping into a culture of trailblazers-thinkers, builders, and collaborators-who push the boundaries of what's possible. With our expertise in AI-driven analytics, cloud solutions, cybersecurity, and next-gen infrastructure, we enable businesses to stay ahead in an ever-evolving digital world. Here, your impact is real. Whether you're harnessing the power of Generative AI, architecting resilient digital ecosystems, or driving data-driven transformation, you'll be part of a team that is shaping the future. Ready to innovate? Let's redefine what's next-together. About Presidio Presidio is committed to hiring the most qualified candidates to join our amazing culture. We aim to attract and hire top talent from all backgrounds, including underrepresented and marginalized communities. We encourage women, people of color, people with disabilities, and veterans to apply for open roles at Presidio. Diversity of skills and thought is a key component to our business success. At Presidio, speed and quality meet technology and innovation. Presidio is a trusted ally for organizations across industries with a decades-long history of building traditional IT foundations and deep expertise in AI and automation, security, networking, digital transformation, and cloud computing. Presidio fills gaps, removes hurdles, optimizes costs, and reduces risk. Presidio's expert technical team develops custom applications, provides managed services, enables actionable data insights and builds forward-thinking solutions that drive strategic outcomes for clients globally. For more information, visit www.presidio.com Applications will be accepted on a rolling basis. Presidio is an Equal Opportunity / Affirmative Action Employer / VEVRAA Federal Contractor. All qualified candidates will receive consideration for this position regardless of race, color, creed, religion, national origin, age, sex, citizenship, ethnicity, veteran status, marital status, disability, sexual orientation, gender identification or any other characteristic protected by applicable federal, state and local statutes, regulations and ordinances. To read more about discrimination protections under Federal Law, please visit: https://www.dol.gov/ofccp/regs/compliance/posters/pdf/OFCCP_EEO_Supplement_Final_JRF_QA_508c.pdf If you have any difficulty using our online system and need an accommodation in the job application process due to a disability, please send an email to recruitment@presidio.com for assistance. Presidio is a VEVRAA Federal Contractor requesting priority referrals of protected veterans for its openings. State Employment Services, please provide priority referrals to recruitment@presidio.com. Notice to Massachusetts Candidates: It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability. Recruitment Agencies, Please Note: Presidio does not accept unsolicited agency resumes/CVs. Do not forward resumes/CVs to our careers email address, Presidio employees or any other means. Presidio is not responsible for any fees related to unsolicited resumes/CVs.

Our Smart Security Pro's mission is to show our residential customers that they are truly valued as we have a strong emphasis on providing an unparalleled 5-Star experience unmatched in the Smart Security industry. As an SSP, you'll play a pivotal role in what matters most to our customers: enhancing the safety and security of their families and homes. We know what it takes to be successful here at SafeStreets. If you have a passion for making a difference in people's lives, a strong sales background, and a winning mindset, we will assist you in creating a seamless transition into a new career. The process is simple. There is no cold calling or D2D sales involved. We get your foot in the door by connecting customers to you who are already interested in ADT home security. In-home appointments are scheduled and provided for you by our Inside Sales team. By helping customers review their security options on-site and move forward with a custom home security package designed by you, you will have the opportunity to earn uncapped sales commissions based on how the homeowner decides to protect their home. The best part is you control the process from start to finish, leaving the customer better protected than before you arrived. Looking to change industries? Feel confident in knowing that we have Pro's with backgrounds in every type of industry that have made a seamless and successful transition to the role of an SSP. With a paid training program provided, we have all the tools to teach you what you need to know. What do you need to be qualified for this position? Nothing more than a passion for customer service, a strong sales background, and a desire to help keep others safe and secure. We provide the tools/equipment, paid training, and post-training support you will need. We even hand deliver the customers to you - no need to go searching for your own leads! SafeStreets is always evolving! SafeStreets set out to make some big changes to kick off 2025 with how our Smart Security Pros are paid and we now have the best compensation plan in the industry! Here's what our SSP's look forward to: Highest sales commission opportunities in the industry with our technicians earning on average 25% commission - UNCAPPED! More than 30% of our field earned over $100k+ in 2024 Increased Mileage pay with pay kicking in nearly 3x earlier than previously Paid for every installation action taken on site Same-day and Holiday bonuses More upgrade commission options Doubled Referral pay opportunity Doubled our yearly loyalty bonuses Still not convinced? Our recruiters are standing by right now to talk more in depth about how SafeStreets can change your life! What we Offer: Competitive base salary with generous and uncapped commission structure Company-provided equipment and select tools Remote and independent work environment Ongoing training and professional development opportunities Opportunities for career advancement within a rapidly growing organization Scheduling flexibility Medical/Dental/Vision/Life Insurance/401K The Responsibilities: Helping homeowners create customized Smart Security solutions for their personal needs 5-star Customer interaction - every day is a new opportunity; you'll be the first face-to-face contact our customers have with SafeStreets! Customized installation, troubleshooting, and demonstration of ADT-monitored security systems Qualifications: Entrepreneurial and career oriented mindset Excellent communication, negotiation, and interpersonal skills Reliable vehicle and valid driver's license Proof of vehicle insurance (100/300/100 minimum) Smartphone/tablet SafeStreets values the safety of our employees and customers. That is why we are committed to providing personal protective equipment (PPE) or stipends to our technicians to further ensure their safety. This job entails meeting certain physical requirements, including the ability to work above head level, carry loads of 30-50 pounds (such as equipment boxes and ladders), operate power tools, and navigate confined spaces like attics and crawl spaces. Safe Streets is an equal opportunity employer. All aspects of employment including the decision to hire, promote, discipline, or terminate, will be based on merit, competence, performance, and business needs. Safe Streets does not discriminate on the basis of race, color, religion, sex (including pregnancy and gender identity), marital status, age, national origin, sexual orientation, disability, genetic information, military service, or any other status protected under federal, state, or local law. Applicants have rights under Federal Employment Laws. FMLA - https://www.dol.gov/agencies/whd/fmla EEO- https://www.eeoc.gov/history/equal-employment-opportunity-act-1972 EPPA - https://www.dol.gov/agencies/whd/polygraph

Company Overview At Motorola Solutions, we believe that everything starts with our people. We're a global close-knit community, united by the relentless pursuit to help keep people safer everywhere. Our critical communications, video security and command center technologies support public safety agencies and enterprises alike, enabling the coordination that's critical for safer communities, safer schools, safer hospitals and safer businesses. Connect with a career that matters, and help us build a safer future. Department Overview Motorola's Access Control Division's (previously OpenPath, now Avigilon Alta) mission is to improve your workday with smart office technology at your front door. We are looking for candidates who can help us build, scale and innovate as we develop our industry leading platform for access control and office automation. Strong analytical and software skills are a must in order to join our team, and we are particularly seeking candidates with experience and skills in multiple technologies, in order to contribute broadly to our team-centric approach to product development. Job Description Responsibilities: Lead the design and implementation of secure architectures across products and services. Perform threat modeling, risk assessments, and architecture reviews to identify and mitigate risks. Proven experience in developing and implementing threat modeling programs (e.g., STRIDE, PASTA, DREAD). Demonstrable experience in securing cloud environments (e.g. AWS and Azure) Experience with defining and enforcing technical security standards and controls. Solid understanding of secure software development lifecycle (SSDLC) principles and practices. Partner with engineering teams to ensure secure coding practices and adoption of industry best practices Define and oversee the implementation of security testing, including SAST, DAST, and penetration testing. Ensure products comply with relevant security standards, certifications, and regulations (e.g., OWASP, NIST, ISO 27001, CIS, PCI DSS, ATT&CK, D3FEND, CIS, CSF, CAF.) Support product security incident response processes, including root cause analysis and mitigation strategies. Monitor emerging security threats, vulnerabilities, and trends to proactively investigate, remediate, and integrate new protections. Drive continuous improvement of product security posture by identifying gaps and implementing solutions. Develop and maintain security architecture documentation, guidelines, and framework Cybersecurity Leadership Overseeing product infrastructure security, endpoint protection, and threat monitoring Maintain incident response plans and conduct simulations across U.S. and EU teams Oversee vulnerability management and phishing simulations Collaborate with internal and external stakeholders to enforce secure development lifecycle practices Evaluate and recommend new tools and platforms to support threat prevention, detection, and response Team & Cross-Functional Leadership Coordinate information security and data protection initiatives ensuring alignment with corporate goals Serve as a strategic partner to IT and Engineering teams on risk matters Required Qualifications: Bachelor's degree in Information Security, Computer Science, or related field 8+ years of progressive experience in product security and/or cybersecurity Strong understanding of technical concepts: SAST, DAST, SCM, IdP, Kernel, Firmware, WAF, firewalls, IDS/IPS, SIEM, cloud security, etc. Knowledge of major frameworks: SOC 2, ISO 27001, GDPR, NIST, HIPAA, etc. Experience with cross-border regulatory compliance (especially EU data privacy) Certifications such as CSSP, CEH, CISM, CISSP, CISA, CRISC are strongly preferred. Preferred Traits: Excellent verbal and written communication, able to liaise effectively with both technical and non-technical teams High emotional intelligence experience across cultures/time zones Experience in a high-growth tech environment or SaaS business Calm under pressure-especially during incidents or audits Familiarity with security considerations for AI/ML systems is highly desirable Target Base Salary Range: $112,300 - $185,000 Consistent with Motorola Solutions values and applicable law, we provide the following information to promote pay transparency and equity. Pay within this range varies and depends on job-related knowledge, skills, and experience. The actual offer will be based on the individual candidate. #LI-CA1 Basic Requirements Bachelors Degree 5+ years of experience in product security, cybersecurity, and/or regulatory compliance Legal authorization to work in the U.S. indefinitely is required. Employer work permit sponsorship is not available for this position Travel Requirements Under 10% Relocation Provided None Position Type Experienced Referral Payment Plan No Our U.S. Benefits include: Incentive Bonus Plans Medical, Dental, Vision benefits 401K 10 Paid Holidays Generous Paid Time Off Packages Employee Stock Purchase Plan Paid Parental & Family Leave and more! EEO Statement Motorola Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion or belief, sex, sexual orientation, gender identity, national origin, disability, veteran status or any other legally-protected characteristic. We are proud of our people-first and community-focused culture, empowering every Motorolan to be their most authentic self and to do their best work to deliver on the promise of a safer world. If you'd like to join our team but feel that you don't quite meet all of the preferred skills, we'd still love to hear why you think you'd be a great addition to our team. We're committed to providing an inclusive and accessible recruiting experience for candidates with disabilities, or other physical or mental health conditions. To request an accommodation, please complete this Reasonable Accommodations Form so we can assist you.

Job Details: Job Description: Intel's Government Information Technology and Security (GITS) organization enables Intel to win United States Government business by providing secure products, solutions, and services which meet U.S. regulatory requirements. The GITS team is part of Intel's Information Security organization and supports the unique IT Information Security and Compliance requirements for Intel Federal LLC, a subsidiary of Intel that delivers products and/or services to the U.S. Government (USG). As part of the GITS team, you will help us grow our secure solution suite to meet U.S. Government requirements for data safeguarding. The Government Information Technology and Security Team (GITS) is composed of highly experienced security professionals with expertise in Enterprise Security Architecture, System Engineering, Information Security, and service/product operations that fulfill and meet regulatory compliance oversight. Within the GITS Team, each member brings diverse expertise and wears multiple hats. We are seeking a talented and motivated individual with strong analytical, communication, and security risk management skills, along with a passion for rapidly learning new technologies. In this role, you will be part of an Agile team, tasked with supporting, improving, and expanding our secure solutions to enhance Intel Government Technology capabilities, with a continuous focus on regulatory compliance for U.S. Government contracts. Primary duties and responsibilities: Oversee the security posture of information systems and develop/revise necessary Risk Management Framework (RMF) documentation to support system authorization. Create and update standard RMF artifacts, including the System Security Plan (SSP), Plan of Action and Milestones (POAM), Security Controls Traceability Matrix (SCTM), hardware and software inventories, and network topology diagrams. Assist in the development and implementation of security policies and procedures required by assessment and authorization activities, in accordance with directives such as ICD-503, DAAPM, NISPOM, JSIG, and NIST 800-53. Provide guidance and direction to program personnel, ensuring effective communication within the role. Collaborate with system administrators and network engineers to ensure timely application of security patches and secure configurations in line with Security Technical Implementation Guides (STIGs). Minimal travel required. Core Functions: Develop and maintain Certification and Accreditation (CA) package documentation, including System Security Plans (SSPs), Plan of Actions and Milestones (POAM), Risk Assessment Reports, and System Requirements. Validate security policies and procedures outlined in the System Security Plan (SSP), customer policies, and regulations, ensuring adherence to local policies. Assist with information system security management and day-to-day security operations. Serve as a member of the Change Control Board (CCB) to ensure configuration management for Cybersecurity-relevant software, hardware, and firmware is maintained and documented. Ensure all personnel receive the necessary technical and security training to perform their duties effectively. Conduct security reviews of proposed changes or additions to the information system (including hardware or software) and advise the Information System Security Manager (ISSM) on security relevance. Perform vulnerability/risk assessment analysis to support continuous monitoring and the certification and accreditation process. We are looking for a candidate with strong analytical skills, effective communication abilities, and a deep understanding of cybersecurity requirements to join our dynamic team. #cj Qualifications: You must possess the below minimum qualifications to be initially considered for this position. Preferred qualifications are in addition to the minimum requirements and are considered a plus factor in identifying top candidates. Experience listed below would be obtained through a combination of your degree, research and or relevant previous job and or internship experiences. This position involves work on U.S. Government Contracts and/or proposals for U.S. Government Contracts that limit participation to U.S. Citizens. A person may be required to provide proof of U.S. Citizenship in order to comply with U.S. government requirements. Any offer by Intel for this position is conditioned upon satisfying any government requirements regarding proof of citizenship. Minimum Qualifications: U.S. Citizenship required. Ability to obtain an active U.S. Government Top Secret/SCI clearance with polygraph. Possess a bachelor's degree and a minimum of 5+ years of relevant experience in the Government Information Technology (IT) and Information Security Industry, or a High School Diploma with at least 8+ years of relevant experience in the Government Information Technology (IT) and Information Security Industry. Must hold at least one of the following certifications: DOD IAT level 2, Sec+, CySA, GSEC, SSCP, GICSP, Security+ CE, CASP+(SecurityX), CISSP, CySA+, GICSP, GSEC, CND, or SSCP. 2+ years' experience with the NIST Risk Management Framework (RMF), JSIG, NIST 800-53, and ICD-503. 2+ years' experience with one or more of the following: Security Technical Implementation Guides (STIGs), Security Content Automation Protocol (SCAP), and Security Requirements Guides (SRGs). 2+ years' experience with one or more of the following: Maintaining Information System package documentation, including System Security Plans (SSP), Plan of Action and Milestones (POAMs), Risk Assessment Reports (RAR), Security Assessment Reports (SAR), Security Requirements Traceability Matrix (SRTM), and hardware and software inventories. This position is not eligible for Intel immigration sponsorship. Preferred Qualifications: Active U.S. Government Top Secret/SCI clearance. Working knowledge of industry-standard tools for audit reduction, vulnerability scanning, and malware detection, such as Splunk, Tenable Nessus, Security Content Automation Protocol (SCAP) Checker, and STIG viewer. Experience in administering and operating IT technologies, including Microsoft Windows, Linux, networks, firewalls, and virtual cloud environments. Experience with multiple encryption methodologies for data in transport and at rest. Job Type: Experienced Hire Shift: Shift 1 (United States of America) Primary Location: US, Arizona, Phoenix Additional Locations: Business group: Posting Statement: All qualified applicants will receive consideration for employment without regard to race, color, religion, religious creed, sex, national origin, ancestry, age, physical or mental disability, medical condition, genetic information, military and veteran status, marital status, pregnancy, gender, gender expression, gender identity, sexual orientation, or any other characteristic protected by local law, regulation, or ordinance. Position of Trust N/A Benefits: We offer a total compensation package that ranks among the best in the industry. It consists of competitive pay, stock, bonuses, as well as, benefit programs which include health, retirement, and vacation. Find more information about all of our Amazing Benefits here: https://intel.wd1.myworkdayjobs.com/External/page/1025c144664a100150b4b1665c750003 Annual Salary Range for jobs which could be performed in the US: $117,270.00-$165,550.00 Salary range dependent on a number of factors including location and experience. Work Model for this Role This role will require an on-site presence. * Job posting details (such as work model, location or time type) are subject to change.

Datadog is seeking a Senior Security Governance Analyst to help evolve and scale our security and compliance governance program. As part of the InfoSec (GRC) team, you will lead the development and continuous improvement of our policies, standards, baselines, and control documentation, helping to ensure these artifacts are not just audit-ready-but embedded, relevant, and usable across our engineering and product environment.You will help drive clarity around what Datadog "should" and "must" do to operate securely and in compliance with a growing set of regulatory and customer expectations. This role will work cross-functionally with engineering, security, legal, and product teams to ensure governance artifacts are actionable, accurate, and aligned with how Datadog actually builds and operates its systems. What You'll Do: Partner closely with domain owners, engineering teams, and Security to operationalize policies and standards that reflect Datadog's real-world practices and security posture. Translate external frameworks and regulations (i.e. Security, Privacy, AI) into actionable internal controls via our Datadog Common Controls Framework (DCCF). Technical expertise working with security measures for control domains such as CI/CD pipelines, identity and access management systems, and data storage solutions. Translate complex compliance and security requirements into plain-language documentation that engineering teams can understand and adopt. Maintain the centralized repository of governance documentation (policies, standards, control narratives) and ensure consistency, version control, and traceability. Regularly update and align the internal control framework with changes in security expectations, regulatory requirements (ISO 27001, SOC 2, PCI DSS, HIPAA, and FedRAMP) and Datadog's evolving needs. Facilitate reviews of governance documents with engineering and business stakeholders to gain alignment before publication. Support governance-related efforts for audit readiness, framework gap assessments, and customer trust initiatives. Leverage tooling (internal and external) to automate policy and control documentation where possible. Who You Are: 5+ years experience in information security, compliance, or governance roles in high-scale technical environments You are a strong communicator who has experience working directly with core engineering teams to gain buy-in and clarify requirements. You have experience acting as a consultant with engineering teams regarding how to implement technical controls You have experience writing and maintaining policy, standard, or control documentation in a regulated or high-growth technology environment. Pragmatic and systems-oriented thinker who can balance security rigor with engineering agility You have a detail-oriented mindset and a commitment to documentation quality and accuracy. You're familiar with control mapping and change management processes for governance documentation. Bonus Points: You've worked on control framework unification or "common control" initiatives. You've used AI/LLM tooling to accelerate governance adoption. You've contributed to compliance automation or policy-as-code efforts. You've worked in environments with both commercial and government compliance requirements. Experience in a large and complex SaaS/cloud environment.

Envestnet is seeking an Information Security Risk Management Director to join our Technology department. This is a hybrid role, with in-office work required at either our Berwyn, PA or Raleigh, NC office. Envestnet is transforming the way financial advice is delivered through its connected technology, advanced insights, and asset management solutions - backed by industry-leading service and support. Since 1999, Envestnet has served the wealth management industry and today supports trillions in platform assets, serving over a hundred thousand financial advisors. The vast majority of the nation's leading banks, the largest wealth management and brokerage firms, and over 500 of the largest RIAs rely on Envestnet's wealth management platform and solutions to drive business growth, boost productivity, and deliver better financial outcomes for their clients. Envestnet's Strategy: Deliver the industry-leading wealth management platform, powered by advanced data and insights Leverage our scale and efficiencies to serve our clients' needs comprehensively Enable financial advisors to deliver more holistic advice - reflecting a more complete view of their clients' financial lives, and in a more connected environment For more information, please visit www.envestnet.com. Job Summary: Reporting into the Head of Information Security, the Information Security Risk Management Director will lead the Information Security Risk Management function. The ideal candidate will bring a blend of technical acumen and strategic insight, capable of effectively communicating with stakeholders and guiding team members in alignment with our security culture and business priorities. The candidate will possess a strong background in information security risk management and cybersecurity, with working knowledge and experience in risk management frameworks such as NIST Cybersecurity Framework, NIST Risk Management Framework, NIST AI Risk Frameworks. The candidate will have an evolved understanding of the regulatory landscape for Information Security and Data Protection for the financial sector. Envestnet is looking for a strong transformational risk expert who can work closely with cross-functional security, operations, and engineering teams supporting leadership to ensure a robust comprehensive security risk management program is in place. This includes top down and bottom-up assessments, while ensuring communicate identified risks effectively, and ensure timely remediation from a technical perspective, in addition to enhancing the security risk management program capabilities. Job Responsibilities: Owns the information security risk management function to conduct security risk and control assessments to identify potential risks from threats and vulnerabilities within the organization's information assets, infrastructure and applications. Responsible for assuring that all risk management activities are properly performed, documented, communicated professionally and clearly, and that all documentation is organized efficiently and effectively within the Archer GRC tool. Ensure that control effectiveness assessments are aligned with our NIST based policies and standards by collaborating with cross-functional teams to understand technical implementations and assess control effectiveness Partner and work closely with the peers to develop an approach to an expanded insider threat program and provide related structure, and management practices for the Envestnet enterprise. Responsible for refining and documenting the process used by the risk Management team and managing the adherence to it; develops new processes or modifies existing processes in alignment with NIST CSF 2.0 and other relevant risk models as needed. Drive information security risk orchestration activities and process improvements to ensure proper full coverage across products and services Communicate identified security risks and their potential impact to stakeholders, including technical and non-technical audiences using a NIST based framework for quantified and qualitative models. Develop and facilitate threat driven cyber scenarios and architectural visuals to support the assessment process to feed into the risk assessment pipeline and subsequent roadmaps for remediation. Provide metrics and outcome-based performance indicators on risk management activities and assessment results using risk quantification as needed. Develop and implement strategies for information security risk management, ensuring alignment with threat-driven, risk-based technical, compliance and business requirements, while providing risk-informed guidance. Development and maintenance of aggregated risk metrics for the cyber security program. Providing regular reports, presentations and updates to the head of information security to deliver to senior management on risk activities and outcomes. Responsible for ensuring the timely, responses, coordination and management of all risk management. Maintain up-to-date knowledge of industry standards, regulatory requirements, and emerging threats to inform risk assessment and remediation processes. Own the tooling and management of risk management process related to Archer Drive enhancement of the security risk management program, including developing and maintaining policies, standards, guidelines, procedures, and frameworks. Track and report on the status of risk remediation efforts, ensuring timely resolution and compliance with organizational policies. Develop and present detailed reports on risk assessments, including identified threats, vulnerabilities, and the effectiveness of implemented mitigation measures for technical and non-technical stakeholders, including senior management. Familiar with using and implementing GRC tools for audits and evidence management such as Archer Support the evolution of the information security risk management function including the use of and adoption of AI. Adherence to and application of Envestnet legal, compliance, risk, business continuity and administrative policy within the role and department(s) including the timely completion of training & awareness, affirmations and testing as requested. As part of the responsibilities for this role, you will understand and readily support Envestnet's established corporate business practices, policies, internal controls and procedures designed to create value or minimize risk Required Qualifications: 10+ years of experience in security risk assessment, with a focus on quantitative and qualitative IS risk analysis, or equivalent and relevant security experience. One or more industry recognized and relevant Cybersecurity certifications such as CISSP, ISSMP, CRISC, CISM, CERT, CISA etc. Strong understanding of relevant frameworks, standards and methods related to information security risk management, cybersecurity principles, and concepts Knowledge of cloud security best practices and technologies (e.g., AWS, Azure, GCP) within a SAAS provider 7 years technical risk management function for a financial institution Strong project management skills with the ability to prioritize tasks and manage multiple projects and workstreams simultaneously. Understand and apply the architecture, security controls, and deployment models of advanced risk management and assessment methodologies, compliance frameworks (such as NIST, FAIR, CACI, GDPR, SOC2, and PCI DSS. Excellent communication skills at all levels, with the ability to articulate complex technical concepts to diverse audiences Experience developing attack scenarios to assist with risk management and assessment activities. Knowledge of and experience with using threat contextualization and ingestion into the risk management and cyber roadmap processes Experience with security risk remediation programs, including technical implementation and compliance considerations Direct experience with driving risk management and assessments for enterprise level program evolution and cloud service models in the financial sector Experience leading, assessing and managing risk in SAAS service provide. Familiarity with the convergence of various cyber control frameworks and the generation of control requirements in the context of risk management. Strong analytical and problem-solving skills, with attention to detail and accuracy. Envestnet: Be a member of an innovative and industry leading financial technology and solutions company Competitive Compensation/Total Reward Packages that include: Health Benefits (Health/Dental/Vision) Paid Time Off (PTO) & Volunteer Time Off (VTO) 401K - Company Match Annual Bonus Incentives Parental Stipend Tuition Reimbursement Student Debt Program Charitable Match Wellness Program Envestnet is an Equal Opportunity Employer. #LI-AQ1

Job Description: DXC Technology is looking for a Cyber Security Solution architect. You will be responsible for the end to end creation, management and delivery of solutions for complex, multi-offering deals, leveraging DXC's portfolio of Security offerings and strategic partners. Responsibilities: Own the design and implementation phases of new and innovative Security architectures. Give direction and design Security solutions to support development teams according to Security best practices. Main Interface with clients to understand business and technical requirements to develop competitive comprehensive Security solutions that meet their needs and align with DXC business objectives. Support during the selection, technical evaluation of Security Platform/products Requirements: Experience in the definition and the design of complex Security architectural solutions (Cloud Security, EDR, SIEM, Digital Identity, SOC Services, etc.). Ability to develop technical relationships with client's Security Stakeholders (CISO, CSO, Head of Security technologies, Security Architects, etc.). Strong communication and presentation skills, with the ability to effectively convey complex technical concepts to non-technical stakeholders Location: Milano with smart working possibility #LI-HYBRID At DXC Technology, we believe strong connections and community are key to our success. Our work model prioritizes in-person collaboration while offering flexibility to support wellbeing, productivity, individual work styles, and life circumstances. We're committed to fostering an inclusive environment where everyone can thrive. Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf. More information on employment scams is available here.

Our Smart Security Pro's mission is to show our residential customers that they are truly valued as we have a strong emphasis on providing an unparalleled 5-Star experience unmatched in the Smart Security industry. As an SSP, you'll play a pivotal role in what matters most to our customers: enhancing the safety and security of their families and homes. We know what it takes to be successful here at SafeStreets. If you have a passion for making a difference in people's lives, a strong sales background, and a winning mindset, we will assist you in creating a seamless transition into a new career. The process is simple. There is no cold calling or D2D sales involved. We get your foot in the door by connecting customers to you who are already interested in ADT home security. In-home appointments are scheduled and provided for you by our Inside Sales team. By helping customers review their security options on-site and move forward with a custom home security package designed by you, you will have the opportunity to earn uncapped sales commissions based on how the homeowner decides to protect their home. The best part is you control the process from start to finish, leaving the customer better protected than before you arrived. Looking to change industries? Feel confident in knowing that we have Pro's with backgrounds in every type of industry that have made a seamless and successful transition to the role of an SSP. With a paid training program provided, we have all the tools to teach you what you need to know. What do you need to be qualified for this position? Nothing more than a passion for customer service, a strong sales background, and a desire to help keep others safe and secure. We provide the tools/equipment, paid training, and post-training support you will need. We even hand deliver the customers to you - no need to go searching for your own leads! SafeStreets is always evolving! SafeStreets set out to make some big changes to kick off 2025 with how our Smart Security Pros are paid and we now have the best compensation plan in the industry! Here's what our SSP's look forward to: Highest sales commission opportunities in the industry with our technicians earning on average 25% commission - UNCAPPED! More than 30% of our field earned over $100k+ in 2024 Increased Mileage pay with pay kicking in nearly 3x earlier than previously Paid for every installation action taken on site Same-day and Holiday bonuses More upgrade commission options Doubled Referral pay opportunity Doubled our yearly loyalty bonuses Still not convinced? Our recruiters are standing by right now to talk more in depth about how SafeStreets can change your life! What we Offer: Competitive base salary with generous and uncapped commission structure Company-provided equipment and select tools Remote and independent work environment Ongoing training and professional development opportunities Opportunities for career advancement within a rapidly growing organization Scheduling flexibility Medical/Dental/Vision/Life Insurance/401K The Responsibilities: Helping homeowners create customized Smart Security solutions for their personal needs 5-star Customer interaction - every day is a new opportunity; you'll be the first face-to-face contact our customers have with SafeStreets! Customized installation, troubleshooting, and demonstration of ADT-monitored security systems Qualifications: Entrepreneurial and career oriented mindset Excellent communication, negotiation, and interpersonal skills Reliable vehicle and valid driver's license Proof of vehicle insurance (100/300/100 minimum) Smartphone/tablet SafeStreets values the safety of our employees and customers. That is why we are committed to providing personal protective equipment (PPE) or stipends to our technicians to further ensure their safety. This job entails meeting certain physical requirements, including the ability to work above head level, carry loads of 30-50 pounds (such as equipment boxes and ladders), operate power tools, and navigate confined spaces like attics and crawl spaces. Safe Streets is an equal opportunity employer. All aspects of employment including the decision to hire, promote, discipline, or terminate, will be based on merit, competence, performance, and business needs. Safe Streets does not discriminate on the basis of race, color, religion, sex (including pregnancy and gender identity), marital status, age, national origin, sexual orientation, disability, genetic information, military service, or any other status protected under federal, state, or local law. Applicants have rights under Federal Employment Laws. FMLA - https://www.dol.gov/agencies/whd/fmla EEO- https://www.eeoc.gov/history/equal-employment-opportunity-act-1972 EPPA - https://www.dol.gov/agencies/whd/polygraph

Summer Smart Home Installation Technician Our installation technicians are our SSP's (Smart Security Pro), and we are looking to create a summer team of SSP's. As a Summer SSP, you'll play a pivotal role in what matters most to our customers: installing and enhancing the safety and security of their families and homes. We are looking for SSP's to spend the summer with us! This position will run roughly from April through August - with sign on bonuses available for those able to commit early, contact us right away for more details. Our sales teams will be operating in certain areas of the US for the duration of the Summer. This position does require travel to one of a few different office locations in which we will be operating, we will know the exact locations once we are closer to the summer season. This does require travel to one of the office locations in which housing will be provided there for the Summer SSP for the duration of the summer program. The process is simple. We have a team of D2D sales agents (and inside sales agents) who contact and set up customers with ADT home security. In-home Installation appointments are scheduled and provided for you by our D2D and Inside Sales teams. This means that you simply show up to a customer's home, with a security system that has already been purchased, and complete the install. Every day will be filled with new customers, new houses, and new experiences. This summer will be a busy season ending with uncapped earning potential! What do you need to be qualified for this position? A passion for people, an ability to connect with anyone and everyone, a strong work ethic who takes pride in their work, and a desire to help keep others safe and secure. We provide the training and post-training support you will need. Just bring yourself, a reliable vehicle, some tools, and a desire to make good money this summer! Still not convinced? Our recruiters are standing by right now to talk more in depth about how SafeStreets can change your life! What we Offer: Competitive base pay with generous and uncapped commission structure Free housing for the summer! Appointments already set for you - just show up! The Responsibilities: 5-star Customer interaction - every day is a new opportunity! Installation, troubleshooting, and demonstration of ADT-monitored security systems Confidently communicate with customers and train them on their new ADT alarm system. Qualifications: Entrepreneurial and career-oriented mindset Excellent communication, negotiation, and interpersonal skills A reliable vehicle SafeStreets values the safety of our employees and customers. That is why we are committed to providing personal protective equipment (PPE) or stipends to our technicians to further ensure their safety. This job entails meeting certain physical requirements, including the ability to work above head level, carry loads of 30-50 pounds (such as equipment boxes and ladders), operate power tools, and navigate confined spaces like attics and crawl spaces. Safe Streets is an equal opportunity employer. All aspects of employment including the decision to hire, promote, discipline, or terminate, will be based on merit, competence, performance, and business needs. Safe Streets does not discriminate on the basis of race, color, religion, sex (including pregnancy and gender identity), marital status, age, national origin, sexual orientation, disability, genetic information, military service, or any other status protected under federal, state, or local law.

Founded in 2016 in Silicon Valley, Pony.ai has quickly become a global leader in autonomous mobility and is a pioneer in extending autonomous mobility technologies and services at a rapidly expanding footprint of sites around the world. Operating Robotaxi, Robotruck and Personally Owned Vehicles (POV) business units, Pony.ai is an industry leader in the commercialization of autonomous driving and is committed to developing the safest autonomous driving capabilities on a global scale. Pony.ai's leading position has been recognized, with CNBC ranking Pony.ai #10 on its CNBC Disruptor list of the 50 most innovative and disruptive tech companies of 2022. In June 2023, Pony.ai was recognized on the XPRIZE and Bessemer Venture Partners inaugural "XB100" 2023 list of the world's top 100 private deep tech companies, ranking #12 globally. As of August 2023, Pony.ai has accumulated nearly 21 million miles of autonomous driving globally. Pony.ai went public at NASDAQ in November 2024. Responsibility Collaborate with IT, Infrastructure, HR, Admin and Technical teams to support staff onboarding and offboarding processes. Continuously monitor security events, threats, and vulnerabilities across systems and networks. Respond to security incidents, support incident investigations, and escalate issues when necessary. Perform threat identification, triage, and risk assessments to inform proactive mitigation strategies. Administration and configuration of tools to log and analyze security and privacy related data. Implement security policies in tools to automate security and privacy monitoring and analytics. Analyze security logs to identify anomalies, policy violations, or indicators of compromise. Identify security and privacy gaps, and propose improvements to strengthen the organization's overall security framework.

This position reports directly to the Public Safety and Emergency Preparedness (PSEP) Campus Lead and helps provides day-to-day security coverage for the campus. This position helps create a safe and inclusive environment for students, faculty, staff, and guests. MAJOR RESPONSIBILITIES: Provide a safe and secure enviornment for students, faculity, and staff on campus foot patrol functions. Respond to and investigate incidents that have been reported, including but not limited to, thefts, vehicle accidents on campus, property issues, medical emergencies, fires, safety hazards and fire and security alarms received. Demonstrate strong customer service and/or student advocacy through a positive attitude, approachability, adaptability, strong problem-solving skills, and desire to identify and support student success. Assist and or lead response to all campus emergencies. Complete written incident reports and necessary forms as they relate to public safety duties. Upholds and maintains the Campus PSEP staff standards. Ability to utilize CCTV, access control system, and incident reporting system. Assist in maintaining life safety equipment for the campus. Provide safety escorts for students, faculty, staff, and guests as needed. Lock and unlock doors as necessary. Complete opening/closing building procedures. Serve as a Campus Security Authority per the Jeanne Clery Act. This is not to be construed as an exhaustive list. Other duties logically associated with this position may be assigned. All responsibilities will be conducted within the parameters of the Family Educational Rights and Privacy Act (FERPA), other applicable regulatory requirements, and professional standards. EDUCATION AND EXPERIENCE: High school diploma or GED, required. Must be adept at resolving individual and group conflicts and must have excellent written and oral communication skills. Ability to partner well with colleagues both in and outside of the organization. Ability to promote an inclusive environment that reflects the broad diversity and backgrounds represented by our students and employees and which every individual feels respected and valued. Ivy Tech Community College is an accredited, equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to race, color, ethnicity, national origin, marital status, religion, sex, gender, sexual orientation, gender identity, disability, age or veteran status. As required by Title IX of the Education Amendments of 1972, Ivy Tech Community College does not discriminate on the basis of sex, including sexual harassment in its educational programs and activities, including employment and admissions. Questions specific to Title IX may be referred to the College's Title IX Coordinator or to the US Department of Education Office of Civil Rights.

The Company You'll Join Carta connects founders, investors, and limited partners through world-class software, purpose-built for everyone in venture capital, private equity and private credit. Trusted by 65,000+ companies in 160+ countries, Carta's platform of software and services lays the groundwork so you can build, invest, and scale with confidence. Carta's Fund Administration platform supports 9,000+ funds and SPVs, representing nearly $185B in assets under management, with tools designed to enhance the strategic impact of fund CFOs. Recognized by Fortune, Forbes, Fast Company, Inc. and Great Places to Work, Carta is shaping the future of private market infrastructure. Together, Carta is creating the end-to-end ERP platform for private markets. Traditional ERP solutions don't work for Private Funds. Private capital markets need a comprehensive software solution to replace outdated spreadsheets and fragmented service providers. Carta's software for the Office of the Fund CFO does just that - it's a new category of software to make private markets look more like public markets - a connected ERP for private capital. For more information about our offices and culture, check out our Carta careers page. The Problems You'll Solve At Carta, our employees set out on a mission to unlock the power of equity ownership for more people in more places. We believe that the problems we solve today unlock the opportunities of tomorrow. As a Director of Information Security, you'll work to mature our operational security capabilities, evolve our threat detection and response program, and drive strategic improvements to our identity architecture and governance. Here are some of the problems you'll help us solve: Own, lead, and continuously improve our incident response program, including playbook development, cross-functional readiness, and post-incident reviews, ensuring rapid, effective, and transparent handling of security events. Oversee the architecture and continuous improvement of our Zero Trust security strategy, guiding cross-functional implementation across users, devices, and applications. Evolve our identity lifecycle and access governance model, ensuring the right access for the right users across cloud infrastructure and business applications. Build and operationalize a threat intelligence and threat modeling program that continually assesses our attack surface, informs key security investments, and proactively mitigates future risks. Cultivate and evangelize a culture of security across Carta through training, internal communications, and stakeholder engagement, making security a shared responsibility at every level. Serve as a strategic partner to Engineering, IT, Legal, and Finance to drive cross-functional security initiatives, reduce technical debt, and implement pragmatic, risk-based and scalable solutions. The Team You'll Work With You will be part of a security-minded team that believes in progress over perfection and where both security culture and mindset are key. Our team is rethinking how security operations can be accomplished in innovative ways. We focus on solving business problems while minimizing and managing risk exposure for Carta. About You You will act as a technical leader on security operations to help and empower the team in making technical decisions. You will work closely with IT, Legal, Compliance, and Engineering to protect Carta. If you are excited by the idea of developing a scalable, efficient, and business-enabling security program, come join us! We are looking for candidates who have: Proven experience in developing and deploying Zero Trust architectures, including technologies and processes around identity, device trust, access control, and segmentation. Strong understanding of modern cloud and network security principles, especially in AWS. Experience with enterprise IAM capabilities such as SSO, MFA, privileged access management, and access reviews. Operational knowledge of SIEM/SOAR, endpoint protection and management, and threat intelligence platforms. Demonstrated ability to lead technical teams, scale processes, and influence change across complex technical environments. Excellent communication skills, with the ability to translate risk to non-technical stakeholders and align security initiatives with business objectives. 10+ years of experience in information security with deep expertise in security operations. Salary Carta's compensation package includes a market competitive salary, equity for all full time roles, exceptional benefits, and, for applicable roles, commissions plans. Our minimum cash compensation (salary + commission if applicable) range for this role is: $237,000 - $316,000 in San Francisco, CA; Santa Clara, CA $225,150 - $300,200 in Seattle, WA Final offers may vary from the amount listed based on geography, candidate experience and expertise, and other factors. Disclosures: We are an equal opportunity employer and are committed to providing a positive interview experience for every candidate. If accommodations due to a disability or medical condition are needed, please connect with the talent partner via email. Carta uses E-Verify in the United States for employment authorization. See the E-Verify and Department of Justice websites for more details. For information on our data privacy policies, see Privacy, CA Candidate Privacy, and Brazil Transparency Report. Please note that all official communications from us will come from an @carta.com or @carta-external.com domain. Report any contact from unapproved domains to security@carta.com.

Axos Bank Target Range: $115,000.00 /Yr. - $200,000.00 /Yr. Actual starting pay will vary based on factors including, but not limited to, geographic location, experience, skills, specialty, and education. Eligible for an Annual Discretionary Cash Bonus Target: 10% Eligible for an Annual Discretionary Restricted Stock Units Bonus Target: 10% These discretionary target bonuses may be awarded semi-annually based upon your achievement of performance goals and targets. About This Job Are you a relentless hacker who sees a login page as a challenge and an API endpoint as an invitation? We're not looking for someone who knows how to run SAST, DAST, or point-and-click scanners. We're hiring an elite technical offensive security expert - a hacker who lives in Burp Suite, thinks in curl, and sees an API schema as a playground. In this role, you'll simulate real-world adversaries, uncover security flaws across our web applications and APIs, and work closely with engineering to harden the systems that power our platform. If your favorite tools have names like ffuf, jwt_tool, custom Python scripts, and your brain, we're ready to talk. Whether you specialize in bypassing authentication, exploiting misconfigured CORS policies, or finding logic flaws that scanners can't, we want your mindset, your creativity, and your technical firepower. This position is on-site at any of our office locations (San Diego CA, Irvine CA, Los Angeles CA, Las Vegas NV, Centennial CO, Omaha NE, Overland Park KS, Edison NJ) or 100% Remote, depending upon your location. Responsibilities: Break real applications: Perform targeted, manual security testing of production-grade web apps and APIs - REST, GraphQL, gRPC, internal and public-facing Simulate adversaries: Go beyond OWASP Top 10 - find logic flaws, auth bypasses, data leakage, and chained exploits Red team mindset: Think like an attacker. Design and execute your own kill chains. Document it so even a backend dev gets it Code-aware exploitation: You don't need the source, but if you had it, you'd read it like a map to the treasure Outthink security controls: WAF? Rate limits? Auth tokens? Good. We want someone who thrives when blocked Go deep on abuse cases: Find the obscure. The unintended. The "shouldn't happen but does" kind of bugs Qualifications: Bachelor's degree in Computer Science, Cybersecurity, Engineering, or a related field; Master's preferred 5+ years in information security, including 2+ years in application security roles. Extensive experience designing and securing APIs in high-scale, cloud-native environments. Financial services experience is strongly preferred Deep knowledge of OWASP Top 10 (including API Security Top 10), secure coding, and threat modeling Proficiency in securing RESTful and GraphQL APIs; experience with tools like Postman, Burp Suite, 42Crunch, or API Sentinel Familiar with JWT, OAuth2, OIDC, rate limiting, API Gateway policies (e.g., Kong, Apigee, AWS API Gateway) Certifications preferred: CSSLP, OSWE, CISSP, or API-specific credentials like API Security Architect (APIsec University) Web protocols cold: HTTP, cookies, sessions, auth flows, JWTs, CORS AuthN/AuthZ exploits: OAuth abuse, IDOR, BOLA, SSO bypass API attack patterns: Broken schema enforcement, insecure object references, parameter pollution, replay attacks Tools you own (or write): Burp Suite Pro, Postman, ffuf, sqlmap, jwt_tool, mitmproxy, Python, bash - or your own Manual testing workflow: You don't wait for a scanner to find something. You hunt, fuzz, and test edge cases manually Threat modeling mindset: You think in abuse scenarios, not just CVEs Axos Employee Benefits May Include: Medical, Dental, Vision, and Life Insurance Paid Sick Leave, 3 weeks' Vacation, and Holidays (about 11 a year) HSA or FSA account and other voluntary benefits 401(k) Retirement Saving Plan with Employer Match Program and 529 Savings Plan Employee Mortgage Loan Program and free access to an Axos Bank Account with Self-Directed Trading About Axos Born digital-first, Axos delivers financial tools and services that allow individuals, small businesses, and companies to access and manage their money how, when, and where they want. We're a diverse team of dynamic, insightful, and independent innovators who are excited to provide technology-driven solutions that offer unbeatable value to our customers. Axos Financial is our holding company and is publicly traded on the New York Stock Exchange under the symbol "AX" (NYSE: AX). Learn more about working at Axos Pre-Employment Background Check and Drug Test: All offers are contingent upon the candidate successfully passing a credit check, criminal background check, and pre-employment drug screening, which includes screening for marijuana. Axos Bank is a federally regulated banking institution. At the federal level, marijuana is an illegal schedule 1 drug; therefore, we will not employ any person who tests positive for marijuana, regardless of state legalization. Equal Employment Opportunity: Axos is an Equal Opportunity employer. We are committed to providing equal employment opportunities to all employees and applicants without regard to race, religious creed, color, sex (including pregnancy, breast feeding and related medical conditions), gender, gender identity, gender expression, sexual orientation, national origin, ancestry, citizenship status, military and veteran status, marital status, age, protected medical condition, genetic information, physical disability, mental disability, or any other protected status in accordance with all applicable federal, state, and local laws. Job Functions and Work Environment: While performing the duties of this position, the employee is required to sit for extended periods of time. Manual dexterity and coordination are required while operating standard office equipment such as computer keyboard and mouse, calculator, telephone, copiers, etc. The work environment characteristics described here are representative of those an employee may encounter while performing the essential functions of this position. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of this position.

Description IT Security and Systems Administrator Who You Are: You're a skilled IT Security and Systems Administrator with a primary focus on information security in mission-critical environments. You excel at traditional IT operations while applying a security-first mindset to infrastructure that absolutely cannot fail. With strong analytical and problem-solving abilities, you balance hands-on systems administration expertise with deep knowledge of security tools, monitoring, and compliance frameworks in 24x7x365 emergency services operations where downtime is not an option. You're driven to learn, methodical in your approach, and comfortable with both physical infrastructure work and complex security implementations in high-stakes environments where lives depend on system reliability. Who We Are: Established in 1989 Kings III is a growing, dynamic company. We're a five-time winner of DFW Top Workplaces and nationally as a USA Today Top Workplace in 2020-2024. We're on a mission for change - for our communities, our customers, and our company. If you see yourself as a builder and change agent, this is the right place for you. More than 12% of our employees have been with the company for 10+ years, and an impressive 25% have been with us 5+ years. How do we do it? Here's what our employees say. We seek out creative employees who love opportunities for continuous learning and growth. We value innovation in not just our products, but the way we work, sell, and grow every day. We celebrate change and are always looking for ways to do things better! What You'll Do: Perform systems and network administration with primary focus on security controls and compliance Lead implementation of new SIEM solutions and maintain security monitoring capabilities Administer and secure VMware, Windows Server, and hybrid Azure/on-premises environments Configure and optimize Fortigate firewalls/wireless, Aruba switches, and NetApp SAN systems Manage endpoint protection (SentinelOne), email security (Mimecast), and MDM (Intune/Apple Business Manager) Conduct security audits, vulnerability assessments, and comprehensive log analysis using various logging and monitoring tools (PRTG, GreyLog, SysLog, SNMP, etc.) Conduct regular firewall rule reviews including analysis of traffic patterns, rule optimization, risk assessment of open ports and services, documentation of rule changes, and quarterly comprehensive firewall policy audits Manage security aspects of backup and recovery systems including monitoring backup job integrity, verifying encryption of backup data, testing restore procedures, securing off-site replication channels, and ensuring compliance with data retention policies Secure Active Directory, Azure AD Connect, Office 365, and SQL Server databases Conduct vendor security assessments including security questionnaire evaluation, compliance certification review, and ongoing security posture monitoring Support SOC2 compliance efforts including evidence collection and documentation, control testing and validation, remediation of audit findings, maintenance of security policies and procedures, and implementation of NIST 800-53 controls across all IT systems Build, document, and exercise security procedures including creation of incident response playbooks, development of security configuration standards, maintenance of network diagrams and asset inventories, regular tabletop exercises for security scenarios, and knowledge transfer documentation for all critical security processes Work with Manager of Information Security to scope and execute security projects What You'll Bring: High school diploma or equivalent required; Bachelor's degree in IT/Cybersecurity preferred 3+ years systems/network administration experience 2+ years hands-on information security experience Required: SOC2, NIST 800-53 or similar framework experience Required: Security+, CySA+, GSEC, or equivalent certification Preferred: CISSP, CISM, CISA, or equivalent advanced certification VMware virtualization platforms and NetApp SAN administration Windows Server administration with security hardening Azure cloud services, hybrid environments, and Office 365 security administration Active Directory Domain Services, Azure AD Connect, and identity management Fortigate firewall and wireless management including rule creation, VPN configuration, and policy optimization Aruba switch configuration, Layer 3 routing, and network security controls SIEM implementation and administration, log correlation, and security event analysis Endpoint security management (SentinelOne) and mobile device management (Intune, Apple Business Manager) Email security platforms (Mimecast) including threat analysis and policy configuration SQL Server security administration, database hardening, and access controls Network monitoring tools (PRTG, GreyLog, SysLog, SNMP) and security analytics Scripting and automation (PowerShell, Python, Bash) for security operations Vulnerability assessment tools and penetration testing methodologies Encryption technologies, PKI infrastructure, and certificate management Compliance reporting, security metrics, and audit documentation Strong analytical and problem-solving skills with exceptional attention to detail Excellent communication skills with ability to interact effectively with all levels of the organization Capable of explaining complex technical and security concepts in clear, non-technical terms to business stakeholders Strong project management and organizational abilities with capacity to prioritize multiple initiatives Self-motivated learner comfortable with hands-on infrastructure work and physical installations Security-first mindset applied to all IT operations with proactive threat awareness Professional demeanor with ability to work independently and collaboratively across teams What We Do: Our mission is simple - We provide critical communications services to help people in distress. Our Core Values are even simpler: Honesty & Integrity Service to the customer above all else Do what is right Good enough is not good enough: pursue excellence Encourage individual initiative and growth By living and breathing our mission and Core Values every day in everything we do, Kings III is creating opportunities for individuals and reducing risk, liabilities, and costs for businesses every day. Our primary client base includes commercial and multi-family real estate owners and property managers, and the most common areas we install our emergency phones are in elevators and at pool sides. We design, build, sell, install, service, and monitor those phones. Our Emergency Dispatch Center (EDC) provides 24/7/365 service to help dispatch local emergency services to people in distress. It's that simple, our employees help save lives every day. What's in it For You: Medical insurance with 1 HSA and 2 PPO plan options Flex Spending Account (FSA)/Dependent Care FSA Dental, vision, life, short- and long-term disability insurance Critical illness and hospital indemnity plans 401k with company contribution Employee Assistance Program (EAP) Company paid telemedicine 24/7 access Wellness Program Employee discount program 8 paid holidays, plus 1 floating holiday 15 days of PTO accrued in year 1 Generous referral bonus program Work life balance (a must!) Team building, attendance at our annual kickoff each January, and other fun events Relaxed professional dress code Kings III is an Equal Opportunity Employer and committed to maintaining a drug-free workplace. We do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state, or local protected class.

PharmaCann, Inc. owns and operates best-in-class production facilities and retail dispensaries for cannabis-based products. We currently operate in the States of Illinois, New York, Massachusetts, Ohio, Pennsylvania, Maryland, Colorado and Michigan as a medical and/or adult use cannabis provider to patients and customers. We are looking for energetic, results-driven individuals to join our rapidly growing team and industry. Purpose This person provides security and safety to customers and employees in addition to the physical security of all LivWell locations. In order to adequately protect people and property, the Surveillance Systems Operator must know and enforce rules and regulations to prevent criminal activity before it happens. They may monitor points of access in a building or property, control physical access to LivWell locations through access control and alarm systems, and conduct regular inspections utilizing LivWell's CCTV system. Pay Rate $23-$24/hr + $3/hour night shift stipend Security Secures premises and personnel by monitoring surveillance equipment, equipment, and access points; permitting entry Validate identity of and sign-in visitors and VIPs to the licensed premises. Monitor and authorize entrance and departure of employees, visitors, and other persons to guard against theft and maintain security of premises. Attentively monitor CCTV for the purpose of detecting security risks around the company. Receive incoming communication from alarm monitoring and make determination on dispatching police to the site of alarm. Guard courier vehicles after arrival and delivery of product and valuables to prevent theft and ensure safe delivery. Maintains physical access to all LivWell and Pharmacann locations including programming prox card access, alarm access, and key access. Assist with printing access control badges for company personnel Promote a work environment that is positive, customer-service oriented, and compliant with established policies and procedures. Make detailed reports of security issues and incidents. Assist with testing alarm equipment. Conduct audits of access control and alarm access. Assist with writing standard operating procedures. Conduct surveillance audits of intrusion detection features Remove terminated/resigned employees from the LivWell systems. Audit and administer background checks for LivWell employees. Make detailed reports of security issues and incidents. Assist with burglary response procedures during an incident. Audit store closings each night to ensure store product is secured properly to meet LivWell and/or city requirements. Audit store closings each night to ensure store product is secured properly to meet LivWell and/or city requirements. When leadership is not available the SSO will serve as point of contact for guards, other employees and/or outside agencies. Compliance Conduct Background Investigations of new employees to include a criminal history check and verify documentation. Conduct Safety and Security Training for all retail employees 2 to 3 times yearly. Conduct Safety and Security Training for all cultivation and production employees 1 to 2 times yearly. Conduct regular site visits to all locations in order to inspect and observe operations. Stay current with all laws, rules, and regulations as they pertain to the industry. Project Management Develop and manage projects, including defining project scope, resources and achieving deliverables on time and within budget. Other Duties Other duties as assigned. Supervision Works under the supervision of the Security Operations Manager. Work Experience A minimum of 1 year of security, safety, or related experience. Experience working in a fast-paced retail, production environment with diverse clientele preferred. Demonstrated safety, security, risk management, and client service capabilities. Must be able to secure appropriate work credentials from the Colorado Department of Labor Marijuana Enforcement Division. Must possess MED Badge or be in process of acquiring Education High School degree or equivalent required. 2-year college degree or related college coursework preferred. Proven success in the following job competencies: Strong oral and written communication capabilities. Ability to work with team members, clientele to manage risk and ensure compliance. Strong orientation to teamwork and collaboration, ability to partner with managers on operational matters. Ability to deal with and resolve problems in a professional manner. Professional appearance. Working Conditions Able to use a computer for extended periods of time. Able to move about a typical office, manufacturing, warehouse, or retail environment Able to perform general office managerial and administrative activities. Able to lift and move up to 25 pounds occasionally. Regular and on-time attendance. Hours regularly exceed 40 hours per week. Occasional travel by conventional means to other locations as required. Notice: To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed above are representative of the knowledge, skill, and/or ability required and are not intended to be an exhaustive list of all duties, responsibilities or qualifications associated with this job. We are an Equal Employment Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race color, religion, sex, national origin, sexual orientation, gender identity, disability, protected veteran status or any other status protected by applicable law.

Location: On site in Memphis, TN, Maryville, TN, Birmingham, AL, Lafayette, LA, New Orleans, LA, Charlotte, NC, Raleigh, NC, or Dallas, TX We will not provide sponsorship for this role. Job Summary: The Senior IT Security Engineer will be responsible for protecting the company's information systems from internal and external threats. This person will support the IT Security Engineering Manager to ensure proper security functions are maintained to protect company and customer data. This position enables the company to meet its business objectives by increasing the security of the company's Hybrid Network while lowering the risk of misuse of information and denial of service. Essential Duties and Responsibilities: Design, implement and manage network security infrastructure (firewalls, IDS/IPS, load balancers, web proxies, etc.) Design, implement and manage cloud security solutions Work with vendors concerning security and network access requirements. Implement appropriate network access and ensure network security. Assess current and proposed network designs and proactively makes recommendations based on business requirements and security best practices. Conduct periodic audits of new and existing implementations to ensure compliance with corporate security standards. Develop technical solutions and execute measures to help mitigate security vulnerabilities and automate repeatable tasks. Education and/or Work Experience Requirements: Bachelor's degree in computer science, information systems, cyber security or a related field preferred but not required Active Information Security certifications (CISSP, SANS GIAC, etc.) preferred 5+ years of experience in cyber security / information security with emphasis on cloud and on-premises network security infrastructure in a high availability, high-capacity environment. Hands on experience in information security systems, including firewalls, intrusion detection/prevention systems, authentication systems, log management, web proxy / content filtering, Security Service Edge, etc. Extensive cloud security experience, especially focused on Microsoft Azure. Knowledge of infrastructure as code (IAC) tools like Terraform, Crossplane and Azure Resource Manager. Familiarity with containerization technologies (e.g., Docker, Kubernetes, Azure Container Instances). Advanced knowledge of cloud and on-premises network security standards/best practices, design, and implementation. Problem solving skills and ability to work under pressure Excellent communication skills both oral and written to clearly communicate with business partners and management. About Us First Horizon Corporation is a leading regional financial services company, dedicated to helping our clients, communities and associates unlock their full potential with capital and counsel. Headquartered in Memphis, TN, the banking subsidiary First Horizon Bank operates in 12 states across the southern U.S. The Company and its subsidiaries offer commercial, private banking, consumer, small business, wealth and trust management, retail brokerage, capital markets, fixed income, and mortgage banking services. First Horizon has been recognized as one of the nation's best employers by Fortune and Forbes magazines and a Top 10 Most Reputable U.S. Bank. More information is available at www.FirstHorizon.com. Benefit Highlights Medical with wellness incentives, dental, and vision HSA with company match Maternity and parental leave Tuition reimbursement Mentor program 401(k) with 6% match More -- FirstHorizon.com/First-Horizon-National-Corporation/Careers/Our-Benefits Follow Us Facebook X formerly Twitter LinkedIn Instagram YouTube

Description The Security Operations Team Lead is an entry level managerial leadership position. A Team Lead is expected to possess in-depth knowledge relating to one or more of the domains of responsibility of the Information Security Operations Team. A Team Lead should demonstrate a sense of ownership over those domains/programs and help to foster their continued growth over time. A Team Lead is responsible for providing fundamental program management including both day to day personnel management, roadmap implementation, and regularly monitoring and reporting tool consumption costs to management. Responsibilities Oversee Information Security Operations team members that develop and execute security controls, defenses and countermeasures to intercept and prevent internal or external attacks or attempts to infiltrate company infrastructure. Ensure continuous monitoring of security systems, networks, and applications to detect potential security incidents and vulnerabilities. Lead InfoSec Operations team members to develop, implement, and maintain security monitoring processes, procedures, and documentation to enhance operational efficiency of Tyler systems. Provide accurate and up to date program costing information to management to enable budgetary planning and decisions. Guide InfoSec Operations team members to deliver program roadmap objectives and facilitate automation of security tasks. Oversee the testing, evaluation, and implementation of security monitoring tools, systems and services to improve threat detection capabilities. Work to identify, analyze and resolve enterprise security design weaknesses. Work with groups outside the InfoSec Operations Team to improve Enterprise security and align security monitoring activities with broader organizational objectives. Assist InfoSec Management with organizing vendor relationships. Coordinate and deliver training programs for security monitoring personnel to ensure core competencies are acquired and maintained. Act as mentor and manager to members of the InfoSec Operations Team. Handle the people aspect of InfoSec Operations team leadership. Oversee multiple projects with hard deadlines. Work collectively with management, team members, and external stakeholders to drive security initiatives forward. Ensure detailed documentation, diagrams or reference architecture are provided. Qualifications Bachelor's degree in IT, Cybersecurity or related area of study, or comparable work experience. At least 5+ years of progressively increasing responsibility in the areas of information security, risk assessment, Cybersecurity or Information Technology. Strong resource allocation skills in managing workloads and prioritizing tasks across the team. Strong understanding of programming, SDLC, and security automation desired. Experience with multiple environments and operating systems, devices and databases including Windows Server, Active Directory, VMWare, Azure or AWS is preferred. Strong analytical and problem-solving skills. Strong Incident Response background is preferred. Fundamental understanding of security related technologies such as SIEM and SOAR. Experience creating and presenting security metrics and reports. Must have and maintain one or more Information Security Assurance certifications such as CISSP, CISM, and/or the AWS Certified Security Specialty. Demonstrated commitment to ongoing professional development. Experience working in regulated environments such as SOC 2, PCI-DSS, and FedRAMP preferred Strong understanding of information security standards, concepts, controls, testing techniques and risk assessment.

Senior Product Security Engineer (m/f/d) Apply now " Date: Aug 2, 2025 Location: Bensheim, DE, 64625 Zurich, CH, 8047 Company: Dentsply Sirona, Inc Dentsply Sirona is the world's largest manufacturer of professional dental products and technologies, with a 130-year history of innovation and service to the dental industry and patients worldwide. Dentsply Sirona develops, manufactures, and markets a comprehensive solutions offering including dental and oral health products as well as other consumable medical devices under a strong portfolio of world class brands. Dentsply Sirona's products provide innovative, high-quality and effective solutions to advance patient care and deliver better and safer dentistry. Dentsply Sirona's global headquarters is located in Charlotte, North Carolina, USA. The company's shares are listed in the United States on NASDAQ under the symbol XRAY. We are looking for an experienced Senior Product Security Engineer (m/f/d) to join our team. This individual will help build and enhance our Product & Solution Security (PSS) program. As a Senior Product Security Engineer for our medical devices, cloud-based software, and connected solutions, you will be responsible for integrating security throughout the product lifecycle, ensuring regulatory compliance, and driving a security-first culture. This senior technical role reports to the Head of Product & Solution Security and spans the full engineering lifecycle. You'll implement agile security best practices, DevSecOps, tools, and controls. Responsibilities include leading secure code reviews, automating security testing, and collaborating closely with Quality Assurance, Regulatory Affairs (QARA), and product teams within the CTO organization. This is a hybrid position requiring working from either our Bensheim or Zurich office. Senior Product Security Engineer (m/f/d) Key responsibilities Perform security assessments of code, configurations, and components in complex solutions involving multiple products. Implement shift-left practices throughout the product development lifecycle and manage security tools within CI/CD pipelines. Act as a trusted advisor to product teams within the CTO organization and establish standards for vulnerability remediation and secure coding. Drive the automation of security testing and compliance validation practices. Lead the development and continuous refinement of security engineering standards. Support threat modeling and risk mitigation efforts for various products and solutions involving multiple components. Monitor security metrics (KPIs and KRIs) and assist with incident response as needed. Collaborate with product development teams and QARA to embed security into system and software design. Promote a culture of security awareness across R&D and product management teams. Mentor junior to mid-level architects and product security engineers on secure design principles and best practices. Requirements and qualifications: Education: Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field. Years and Type of Experience: 8+ years of experience in cybersecurity, product security, software and hardware security, and cloud security. Experience in the medical device or healthcare industry is a strong plus. Industry-recognized certifications such as CISSP, OSCE, OSCP, CSSLP, CCSP, etc., are a strong plus. Key Skills, Knowledge & Capabilities: Proven experience in implementing secure SDLC practices, DevSecOps, and collaborating with engineering teams. Proficiency in tools such as SAST, DAST, SCA, and CI/CD pipelines. In-depth knowledge of Secure SDLC (SSDLC) and Secure Product Development Frameworks (SPDF). Strong understanding of secure coding and testing practices. Extensive scripting and automation experience. Experience with cloud security platforms, including AWS, Azure, GCP, and Alibaba Cloud. Excellent English communication skills; German language skills are a plus. #LI-AS2 Dentsply Sirona is an Equal Opportunity/ Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, sexual orientation, disability, or protected Veteran status. We appreciate your interest in Dentsply Sirona. If you need assistance with completing the online application due to a disability, please send an accommodation request to careers@dentsplysirona.com. Please be sure to include "Accommodation Request" in the subject.