SECURITY OFFICER 3 

Security Officers are dedicated security professionals with a demonstrated ability to work independently and as a member of a team in a fast-paced high-tech environment. Security Officers work as a team, patrolling the company’s properties via vehicle and foot and/or ensuring security at a series of fixed locations in accordance with federal, state, and local laws as well as company regulations.

RESPONSIBILITIES:

• Maintain proficiency/awareness of static guard post duties
• Plan and execute security support for SpaceX operations
• Plan and conduct advanced security training for all security officers
• Conduct advanced research and analysis in support of SpaceX security missions
• Mentor other security members to identify and report suspicious behavior to the operations center
• Maintain a professional appearance and demeanor
• Execute security support as dictated by SpaceX security leadership
• Execute roving patrols of assigned locations
• Conduct and review risk assessments of critical SpaceX facilities
• Provide mobile security support as directed by the operations center
• Respond to emergency situations and provide on-scene leadership to others (fire/medical/suspicious person/etc.)
• Develop and refine emergency response protocols based on data and experience
• Plan and coordinate domestic flight hardware transportation operations
• Learn advanced skillsets (EMT/investigations/surveillance/VIP escort/security hardware)
• Function as liaison with law enforcement, community leaders and key stakeholders in space industry

BASIC QUALIFICATIONS:

• High school diploma or equivalency certificate
• 8+ years of experience in the military, law enforcement, overseas security contracting, or advanced corporate security
• 1+ year of executive protection, mobile asset protection, or emergency response team experience

PREFERRED SKILLS AND EXPERIENCE:

• Bachelor’s or advanced degree
• Military deployment and/or counterinsurgency experience
• History of critical incident handling experience
• Combat Medic, EMT-B, or Paramedic related experience
• Advanced medical emergency training (TCCC/TECC/Combat Lifesaver)
• Documented small unit leadership experience
• Impeccable character/integrity
• Excellent oral and written communication skills
• Ability to de-escalate disputes and/or conflict(s)
• History of critical incident handling experience
• Experience instructing security tactics/operations/procedures
• Computer based proficiency with Microsoft Windows and Microsoft Office, including Word, Excel, PowerPoint, and Outlook
• Extensive team-oriented experience
• An intense interest in protecting the future of spaceflight
• Foreign language proficiency

ADDITIONAL REQUIREMENTS:

• Availability to work any schedule needed, including, but not limited to: overtime, nights, weekends and rotating schedules
• Ability to wear approximately 20-30lbs of gear throughout a 12 hour shift
• Position is subject to pre-employment enhanced screening, including a background check, psychological test, bi-annual physical fitness test, and a drug and alcohol test
• Position is subject to random drug and alcohol testing
• Ability and willingness to occasionally stand in a static position for extended periods
• Willingness to travel up to 35% of time in support of SpaceX Security requirements should the need arise, including Woodinville, WA
• Valid driver’s license
• Possess or be eligible for a valid state security officer license

COMPENSATION AND BENEFITS:  

Security Officer 3: $30.00/hour       

Your actual level and base salary will be determined on a case-by-case basis and may vary based on the following considerations: job-related knowledge and skills, education, and experience.

Base salary is just one part of your total rewards package at SpaceX. You may also be eligible for long-term incentives, in the form of company stock or long-term cash awards, as well as potential discretionary bonuses and the ability to purchase additional stock at a discount through an Employee Stock Purchase Plan. You will also receive access to comprehensive medical, vision, and dental coverage, access to a 401(k) retirement plan, short and long-term disability insurance, life insurance, paid parental leave, and various other discounts and perks. You may also accrue 3 weeks of paid vacation and will be eligible for 10 or more paid holidays per year. Employees in Washington State accrue paid sick time in compliance with state and federal law. Company shuttles are offered to employees for roundtrip travel from select Seattle locations to the SpaceX Redmond office Monday to Friday.

Cybersecurity Engineer, Senior Manager

Two Six Technologies is seeking a visionary Cybersecurity Engineer, Senior Manager to architect, build, and defend the highly secure environments that power our advanced R&D initiatives. We are looking for a true security architect who can seamlessly bridge the gap between rigorous government security frameworks (NIST, STIGs, CMMC) and complex operational engineering. In this role, you will lead the strategic design of our secure infrastructure, guide DevSecOps integration across software projects, and engineer pragmatic, intent-based security solutions. If you excel at deconflicting stringent compliance mandates with real-world engineering challenges, and thrive in a role that spans infrastructure defense, network architecture, and application security, we want you to lead our team.

Preferable locations are San Antonio TX and Arlington VA. The role is considered hybrid, and would require at least 3 days a week in the office at either location.

Key Responsibilities

• Strategic Security Architecture: Architect custom security solutions that deconflict stringent government compliance requirements with critical operational needs. Move beyond standard "box checking" to design risk-optimized, tailored controls.
• Intent-Based Engineering: Engineer alternative technical solutions when literal remediation causes operational failure. Leverage deep system knowledge and industry best practices to meet the core security intent of a framework while maintaining system functionality.
• Design & Implementation: Lead the hands-on technical development, configuration, and deployment of secure IT infrastructure and custom security tools, ensuring all architectures are defensible during an audit.
• Threat Defense & Mitigation Strategy: Develop high-level strategies, playbooks, and architectures for threat detection and incident response. Oversee the vulnerability mitigation lifecycle, guiding the team's efforts so that day-to-day monitoring is handled by staff while the Lead focuses on proactive, structural defense improvements.
• Collaborative Security: Partner with development and IT teams to seamlessly integrate security and compliance into CI/CD pipelines and software development lifecycles while supporting innovation.
• Team Leadership & Mentorship: Direct a small team of security professionals across multiple projects. Mentor junior team members on how to balance strict compliance auditing with pragmatic, operational engineering solutions.

Required Skills & Qualifications

• Education: Bachelor’s degree in Computer Science, Cybersecurity, Information Security, or comparable experience.
• Leadership: Experience managing small interactive teams.  Candidates will be required to task junior reports, and should have strong mentorship skills.
• Strategic Risk & Compliance Mastery: Deep understanding of NIST 800-171, NIST 800-53b, CMMC, and DISA STIGs. Proven ability to interpret the underlying risk objective of a control to engineer solutions that satisfy auditors without breaking operations.
• Advanced Systems Expertise: Deep technical mastery of operating systems (primarily RHEL/Linux). Must possess the system-level knowledge (e.g., Linux internals, process management) required to design custom, defensible security configurations backed by vendor documentation when standard STIG guidance is insufficient.
• Operational Deconfliction: A highly analytical mindset with a track record of identifying conflicts between security mandates and operational uptime, and successfully architecting "semi-custom" solutions that keep risk to an acceptable minimum.
• Network Security Architecture: Strong architectural understanding of secure network paradigms (e.g., Zero Trust, macro/micro-segmentation) and fundamentals. Ability to guide the implementation of complex boundary defenses and validate network security controls.
• Application Security & Code Analysis: High technical competency in application security principles. Must be capable of analyzing SAST tool outputs, architecting defensible arguments for false positives to present to customers, and providing strategic guidance to developers on resolving legitimate vulnerabilities.
• Security Automation: Strategic approach to automating repetitive security operations using scripting and CI/CD pipelines. Proven ability to build self-sustaining security workflows that free up engineering staff to focus on high-complexity problems.
• Clearance:  Eligibility to obtain and maintain a security clearance up to TS/SCI. 

Preferred Experience

• Advanced Code Review: Practical experience reading, reviewing, and defending SAST findings in compiled languages such as Java, Golang, or C and/or interpreted languages like Python or NodeJS.
• DevSecOps & Containerization: Hands-on experience architecting secure CI/CD pipelines and software development workflows utilizing platforms like Jenkins, GitHub, or GitLab. Familiarity with securing OCI-compliant container ecosystems (e.g., Docker) is highly desirable.
• Virtualization & Cloud Architecture: Experience securing, architecting, or managing hyperconverged virtual infrastructure (specifically VMware or Proxmox) and/or cloud-native enterprise environments (e.g., AWS).
• Enterprise Boundary Defense: Practical experience engineering, deploying, or migrating advanced enterprise firewall and network security solutions (e.g., Fortinet).
• Specialized Enclaves & R&D Networks: Proven experience designing, auditing, or managing compliance for research and development (R&D) environments, specifically involving the creation or maintenance of CMMC Level 2 compliant networks.
• AI Security Oversight: Experience implementing security guardrails for teams using AI-assisted coding tools (e.g., Cursor, GitHub Copilot, Gemini).
• Automated Compliance: Ability to translate security mandates into Policy-as-Code to ensure rapid, AI-generated deployments remain compliant with NIST/CMMC frameworks.
• AI Risk Assessment: Practical understanding of the OWASP Top 10 for LLMs and how to mitigate risks related to prompt injection and AI-generated code vulnerabilities.
• Clearance:  Active TS/SCI clearance

Clearance Requirements:

• This position requires eligibility to obtain and maintain a security clearance up to TS/SCI

#LI-MS1

#Hybrid

Overview of Opportunity 

Join the Trusted Electronics & Effects team of Two Six Technologies, a team of dedicated hackers in Arlington, Virginia, where you’ll immerse yourself in cutting-edge vulnerability research on a wide range of unique embedded systems. Working side by side with top-tier CNO developers and hardware engineers, you’ll discover vulnerabilities and create proof of concepts on embedded systems. Our fast-growing roster of government customers relies on us to deliver advanced security solutions, and we’re looking for a Principal Software Reverse Engineer to help us continue pushing boundaries. If you’re passionate about building tools that make a tangible impact on national security, we want you on our team.

Responsibilities Include

• Perform vulnerability research on complex embedded systems
• Take on complex technical problems for which there is often no known answer
• Develop tools and techniques to assist/automate tasks that traditionally require significant manual reverse engineering effort 
• Follow-on development to productize results/PoCs or handoff to developers for productization
• Provide technical leadership and direction on novel research projects, and interface directly with clients/key stakeholders to present findings and determine program direction
• Mentor and develop junior team members through knowledge-sharing, code reviews, and hands-on guidance, fostering their growth

Minimum Qualifications

• Bachelor’s degree in Computer Science, Computer Engineering, Electrical Engineering, or a related technical discipline. Equivalent practical experience in security research, reverse engineering, vulnerability research, or exploit development may substitute for a degree.
• Extensive experience developing, debugging, and scripting in C/C++ and Python within Linux command-line environments, with a strong emphasis on low-level programming, memory management, and system interaction for reverse engineering and vulnerability research.
• Experience with reverse engineering and vulnerability research, using tools such as IDA Pro, Binary Ninja, or Ghidra.
• Expertise in one or more of the following:
• Firmware analysis (ARM, MIPS, PowerPC, RTOS).
• Firmware rehosting using emulation tools such as QEMU
• Fuzzing and exploit development.
• Binary obfuscation and anti-analysis techniques.
• Wireless protocols and radio signal analysis.
• File system forensics and fault injection frameworks.
• Experience leading a team of engineers and researchers

Nice If You Have

• Experience in a client-facing technical role
• Experience reverse engineering binary payloads from multiple architectures (ARM, MIPS, TI, x86, x64)
• Experience reverse engineering data payloads at rest (custom file formats) and in flight (live data captures)
• Experience with invasive and non-invasive hardware analysis, including PCB/component identification and hardware manipulation
• Hands-on experience debugging embedded systems using JTAG, UART, oscilloscopes, and logic analyzers

Clearance Requirements:

• Active Top Secret clearance with eligibility/willingness to obtain a Top Secret/SCI clearance. Prefer active TS/SCI with Poly

#LI-JK1

#LI-ONSITE

Cybersecurity Engineer, Senior Manager

Two Six Technologies is seeking a visionary Cybersecurity Engineer, Senior Manager to architect, build, and defend the highly secure environments that power our advanced R&D initiatives. We are looking for a true security architect who can seamlessly bridge the gap between rigorous government security frameworks (NIST, STIGs, CMMC) and complex operational engineering. In this role, you will lead the strategic design of our secure infrastructure, guide DevSecOps integration across software projects, and engineer pragmatic, intent-based security solutions. If you excel at deconflicting stringent compliance mandates with real-world engineering challenges, and thrive in a role that spans infrastructure defense, network architecture, and application security, we want you to lead our team.

Preferable locations are San Antonio TX and Arlington VA. The role is considered hybrid, and would require at least 3 days a week in the office at either location.

Key Responsibilities

• Strategic Security Architecture: Architect custom security solutions that deconflict stringent government compliance requirements with critical operational needs. Move beyond standard "box checking" to design risk-optimized, tailored controls.
• Intent-Based Engineering: Engineer alternative technical solutions when literal remediation causes operational failure. Leverage deep system knowledge and industry best practices to meet the core security intent of a framework while maintaining system functionality.
• Design & Implementation: Lead the hands-on technical development, configuration, and deployment of secure IT infrastructure and custom security tools, ensuring all architectures are defensible during an audit.
• Threat Defense & Mitigation Strategy: Develop high-level strategies, playbooks, and architectures for threat detection and incident response. Oversee the vulnerability mitigation lifecycle, guiding the team's efforts so that day-to-day monitoring is handled by staff while the Lead focuses on proactive, structural defense improvements.
• Collaborative Security: Partner with development and IT teams to seamlessly integrate security and compliance into CI/CD pipelines and software development lifecycles while supporting innovation.
• Team Leadership & Mentorship: Direct a small team of security professionals across multiple projects. Mentor junior team members on how to balance strict compliance auditing with pragmatic, operational engineering solutions.

Required Skills & Qualifications

• Education: Bachelor’s degree in Computer Science, Cybersecurity, Information Security, or comparable experience.
• Leadership: Experience managing small interactive teams.  Candidates will be required to task junior reports, and should have strong mentorship skills.
• Strategic Risk & Compliance Mastery: Deep understanding of NIST 800-171, NIST 800-53b, CMMC, and DISA STIGs. Proven ability to interpret the underlying risk objective of a control to engineer solutions that satisfy auditors without breaking operations.
• Advanced Systems Expertise: Deep technical mastery of operating systems (primarily RHEL/Linux). Must possess the system-level knowledge (e.g., Linux internals, process management) required to design custom, defensible security configurations backed by vendor documentation when standard STIG guidance is insufficient.
• Operational Deconfliction: A highly analytical mindset with a track record of identifying conflicts between security mandates and operational uptime, and successfully architecting "semi-custom" solutions that keep risk to an acceptable minimum.
• Network Security Architecture: Strong architectural understanding of secure network paradigms (e.g., Zero Trust, macro/micro-segmentation) and fundamentals. Ability to guide the implementation of complex boundary defenses and validate network security controls.
• Application Security & Code Analysis: High technical competency in application security principles. Must be capable of analyzing SAST tool outputs, architecting defensible arguments for false positives to present to customers, and providing strategic guidance to developers on resolving legitimate vulnerabilities.
• Security Automation: Strategic approach to automating repetitive security operations using scripting and CI/CD pipelines. Proven ability to build self-sustaining security workflows that free up engineering staff to focus on high-complexity problems.
• Clearance:  Eligibility to obtain and maintain a security clearance up to TS/SCI. 

Preferred Experience

• Advanced Code Review: Practical experience reading, reviewing, and defending SAST findings in compiled languages such as Java, Golang, or C and/or interpreted languages like Python or NodeJS.
• DevSecOps & Containerization: Hands-on experience architecting secure CI/CD pipelines and software development workflows utilizing platforms like Jenkins, GitHub, or GitLab. Familiarity with securing OCI-compliant container ecosystems (e.g., Docker) is highly desirable.
• Virtualization & Cloud Architecture: Experience securing, architecting, or managing hyperconverged virtual infrastructure (specifically VMware or Proxmox) and/or cloud-native enterprise environments (e.g., AWS).
• Enterprise Boundary Defense: Practical experience engineering, deploying, or migrating advanced enterprise firewall and network security solutions (e.g., Fortinet).
• Specialized Enclaves & R&D Networks: Proven experience designing, auditing, or managing compliance for research and development (R&D) environments, specifically involving the creation or maintenance of CMMC Level 2 compliant networks.
• AI Security Oversight: Experience implementing security guardrails for teams using AI-assisted coding tools (e.g., Cursor, GitHub Copilot, Gemini).
• Automated Compliance: Ability to translate security mandates into Policy-as-Code to ensure rapid, AI-generated deployments remain compliant with NIST/CMMC frameworks.
• AI Risk Assessment: Practical understanding of the OWASP Top 10 for LLMs and how to mitigate risks related to prompt injection and AI-generated code vulnerabilities.
• Clearance:  Active TS/SCI clearance

Clearance Requirements:

• This position requires eligibility to obtain and maintain a security clearance up to TS/SCI

#LI-MS1

#Hybrid

• Perform the duties of Contractor Program Security Officer (CPSO) in support of our Intelligence Community (IC) customers. 
• Utilize your knowledge and experience supporting IC agencies in personnel, information and physical security while establishing site procedures and successfully carrying out the mission.
• Process and maintain employee clearances, access, visit certifications, badges, document control, briefings, debriefing, security database records, and on-boarding.
• Work with our Government customers to obtain accreditation and approval. Be familiar with the process of submitting Fixed Facility Checklists, Construction Security Plans and Tempest Checklists. 
• Ensure the implementation of security measures and the safeguarding of personnel, facilities, and information through the implementation of security procedures in compliance with the 32 CFR Part 117, National Industrial Security Program Operating Manual (NISPOM) Rule, Intelligence Community Directives (ICDs), Security Executive Agent Directives (SEADs), applicable executive orders, laws, and contractual requirements.
• Establish and maintain strong working relationships with our government customers and well as our internal Two Six teams. Work closely with the Headquarters Security Team in Arlington, VA to ensure consistent policies and procedures across the organization.  
• Responsible for the successful preparation and completion of security inspections and audits by our government customers.    
• Coordinate and monitor highly sensitive aspects of the special security programs, ensuring compliance with government and company security policies and procedures.
• Provide agency-level technical expertise concerning physical security, industrial security and contractor clearance processes.
• Work with the customer on establishing classified network connectivity.

• Bachelor's degree or additional related experience
• 5+ years of related Security Management work experience with IC
• Solid experience with Personnel Security and one or more of the additional security disciplines - Physical, Technical, Cyber, and/or Operational, and the willingness to become proficient in all disciplines
• Practical knowledge of Security Databases such as DISS, e-QUIP and Scattered Castles
• Working knowledge of Intelligence Community Directives (ICD’s) and the ability to integrate the ICD requirements into a successful security program
• Working knowledge of NISPOM 32 CFR Part 117 and ICDs
• Knowledge in management of SCIFs/SAPFs across various government agencies
• Experience writing SOP manuals, procedures and OPSEC plans
• Working knowledge of COMSEC account procedures and in the keying of encryption devices

• Candidate must have an active TS/SCI w/Poly

Overview of Opportunity 

Two Six Technologies is actively seeking a Senior Principal Cybersecurity Researcher to join our Trusted Electronics & Effects team. The team comprises intellectual individuals passionate about reverse engineering, vulnerability research, and low-level programming. The team is growing and looking for someone with an advanced technical background who has an understanding of how to solve complex challenges and inspire creativity to address a wide range of difficult problems. If you have a passion for uncovering deep-seated software flaws and developing innovative mitigation strategies, our team wants to talk to you!

What you will do 

• Direct the planning and execution of high-visibility, mission-critical programs, providing expert technical leadership and innovation in reverse engineering (RE) and vulnerability research (VR).
• Tackle complex problems with no known solutions, demonstrating a high degree of creativity while mentoring a team of technical experts to foster growth and knowledge-sharing.
• Author authoritative technical reports, white papers, and proposals that clearly convey research findings and cybersecurity solutions to both technical and business stakeholders.
• Exert a leadership presence across the company, contributing to strategy development and ensuring customer satisfaction by delivering cutting-edge solutions aligned with national security requirements.

What you will need (basic qualifications)

• Demonstrated expertise in advanced cybersecurity research concepts typically acquired in a similar technical role.
• Expert-level proficiency in two or more of the following: low-level programming (C/C++, Assembly) and the use of industry-standard disassemblers and decompilers, binary re-hosting frameworks to enable dynamic analysis, and building custom greybox/blackbox fuzzing harnesses.
• Proven experience in vulnerability research (VR), including attack surface triage, identifying vulnerabilities, and developing proof-of-concept exploits to demonstrate security impact.
• Extensive experience in technical mentorship and training, with a history of providing thorough solutions to complex problems and guiding less experienced team members.
• Experience leading complex technical projects in reverse engineering/vulnerability research (RE/VR) or R&D for National Security customers.
• Experience delivering high‑quality technical documentation—such as vulnerability research and findings, industry white papers, and competitive proposals—that distills complex cybersecurity concepts for diverse audiences.
• Experience in a client-facing technical role, demonstrating strong communication and stakeholder management skills.
• Active Top Secret clearance and willingness to obtain and maintain an SCI clearance.

Nice to have (preferred)

• Master’s or PhD in Computer Science, Engineering, or a related field.
• Familiarity with embedded systems binary reverse engineering (e.g., ARM/MIPS/PPC arch, RTOS, Linux, Baremetal) or cryptographic design principles.
• Experience in trusted computing design and implementation principles.
• Experience with digital signals (e.g., UART, JTAG, SPI, I2C) or network protocol analysis.
• Experience with accelerated RE/VR tools that speed up discovery, analysis, and validation.
• Recognized standing within the external technical community, including experience in publishing articles or speaking at external engagements.

Security Clearance:

• Active Top Secret clearance and willingness to obtain and maintain an SCI clearance.

#LI-ZS1

#LI-ONSITE

540 is seeking a DevSecOps Engineer to support our partnership with Google and the Department of War in advancing mission-critical capabilities for a global data processing platform. This platform leverages Machine Learning, modern cloud and containerized technologies to ingest, process, and analyze high-volume, time-series data.

In this role, you will design, implement, and maintain secure CI/CD pipelines, infrastructure, and platform services that enable reliable and compliant system delivery. You will work closely with engineers, architects, and cybersecurity stakeholders to integrate security throughout the development lifecycle and ensure systems are scalable, resilient, and secure within highly regulated, high-impact environments.

Location: Patrick SFB, FL (Patrick Space Force Base). Primarily onsite, up to 5 days/week
Citizenship & Clearance Requirement: Per client requirements, candidates must be U.S. Citizens with an active DoW clearance with TS/SCI eligibility
Education Requirement: Bachelor’s Degree in Computer Science or related engineering field (preferred)
540 Internal Thrive Level: DevSecOps Engineer III

WHY 540?

540 is a forward-thinking company that the government turns to in order to #getshitdone. We don’t just talk about innovation – we deliver it. We break down barriers, build impactful technology, and solve mission-critical problems.

HOW YOU’LL DRIVE IMPACT

• Design, build, and maintain secure CI/CD pipelines supporting cloud-native applications and services
• Implement Infrastructure as Code using tools such as Terraform to provision and manage cloud resources
• Integrate security controls and best practices into the software development lifecycle (DevSecOps)
• Support deployment and operation of containerized workloads and cloud-native data pipelines
• Collaborate with engineers and architects to implement scalable, secure, and resilient system designs
• Automate build, test, and deployment workflows across multiple environments
• Support vulnerability management, remediation, and secure configuration practices
• Implement and maintain cloud security controls, identity management, and access policies
• Monitor system performance, reliability, and security posture across environments
• Contribute to technical documentation, runbooks, and system configurations
• Work with cross-functional teams to ensure delivery aligns with mission needs and compliance requirements

REQUIRED SKILLS & EXPERIENCE

• 5+ years of experience in DevOps or DevSecOps engineering roles
• Experience working with Google Cloud Platform (GCP) or similar cloud environments (AWS, Azure)
• Strong experience building and maintaining CI/CD pipelines
• Experience with Infrastructure as Code (Terraform or similar tools)
• Experience with containerized environments (Docker, Helm)
• Understanding of DevSecOps principles and secure software development practices
• Experience with cloud networking, identity, and access management concepts
• Familiarity with vulnerability management and secure configuration practices
• Proficiency in at least one scripting or programming language (Python, Bash, Go, etc.)
• Experience working with Linux-based systems
• Experience with cloud networking, multi-region deployments
• Strong problem-solving and troubleshooting skills
• Excellent communication skills and ability to collaborate across teams
• CompTIA Security+ certification required (or ability to obtain within 30 days of hire) 

NICE TO HAVE

• Experience with Google Cloud services such as Cloud Run, Dataflow,, Cloud Build, Pub/Sub, or BigQuery
• Google Cloud certifications such as Professional Cloud DevOps Engineer or Professional Cloud Security Engineer
• Experience supporting high-throughput or data-intensive platforms
• Familiarity with DevSecOps tools for security scanning and compliance automation
• Experience with API management platforms or service integrations
• Experience working in DoW or other regulated federal environments
• Familiarity with RMF, NIST 800-53, or security compliance frameworks
• Experience with STIGs and securing systems in classified or high-security environments

BENEFITS & PERKS

• Flexible PTO + all Federal holidays off
• Health, dental and vision insurance plans
• Flexible Spending Account (FSA)
• 401k with employer match
• Company-sponsored life insurance, short- and long-term disability 
• Professional development (training, certifications, conferences)
• Paid cloud developer accounts
• Referral bonuses
• HQ office perks (parking / metro reimbursement, nitro coffee & lunches) 
• Annual social events (540 Week, hackathon, charity golf tournament, etc.)
• Access to 540’s Washington Capitals & Nationals tickets

EQUAL EMPLOYMENT OPPORTUNITY (EEO)

540's policy is to provide equal employment opportunity to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

540 is seeking a Cybersecurity Engineer to support our partnership with Google and the Department of War in advancing mission-critical capabilities for a global data processing platform. This platform leverages Machine Learning, modern cloud and containerized technologies to ingest, process, and analyze high-volume, time-series data.

In this role, you will support the implementation and maintenance of cybersecurity controls across a complex cloud and platform environment. You will work closely with engineers, architects, and security stakeholders to ensure systems are secure, compliant, and resilient within highly regulated, high-impact environments.

Location: Patrick SFB, FL (Patrick Space Force Base). Primarily onsite, up to 5 days/week
Citizenship & Clearance Requirement: Per client requirements, candidates must be U.S. Citizens with an active DoW clearance with TS/SCI eligibility
Education Requirement: Bachelor’s Degree in Computer Science, Cybersecurity, or related field (preferred)
540 Internal Thrive Level: Security Specialist III

WHY 540?

540 is a forward-thinking company that the government turns to in order to #getshitdone. We don’t just talk about innovation – we deliver it. We break down barriers, build impactful technology, and solve mission-critical problems.

HOW YOU’LL DRIVE IMPACT

• Support implementation of security controls across cloud infrastructure, platforms, and applications
• Assist in maintaining compliance with DoD security requirements and frameworks (RMF, NIST 800-53)
• Collaborate with engineers and architects to integrate security into system design and development
• Support vulnerability management, scanning, and remediation efforts
• Assist in monitoring system security posture and responding to security findings
• Help implement identity, access management, and least privilege principles
• Support development and maintenance of security documentation, including SSPs and POA&Ms
• Participate in security assessments, audits, and authorization activities
• Support incident response activities and root cause analysis
• Collaborate with cross-functional teams to promote secure development and operational practices

REQUIRED SKILLS & EXPERIENCE

• 3+ years of experience in cybersecurity, information assurance, or related roles
• Experience working with cloud environments (AWS, Azure, or Google Cloud)
• Familiarity with DoD security frameworks such as RMF and NIST 800-53
• Experience supporting vulnerability management and security assessments
• Understanding of identity and access management concepts
• Familiarity with securing containerized environments and cloud-native applications
• Experience with security tools such as vulnerability scanners or SIEM platforms
• Experience implementing and analysing SAST for backend or full-stack applications
• Strong problem-solving and analytical skills
• Ability to communicate effectively with technical and non-technical stakeholders
• Ability to work independently while contributing to a team environment
• CompTIA Security+ certification required (or ability to obtain within 30 days of hire)

NICE TO HAVE

• Experience supporting Google Cloud environments (GCP)
• Familiarity with cloud security concepts
• Experience working with Linux-based systems
• Experience with DevSecOps practices and CI/CD security integration
• Experience supporting U.S. Federal Government programs, particularly DoW environments
• Experience supporting cybersecurity efforts within high-security or highly-regulated environments

BENEFITS & PERKS

• Flexible PTO + all Federal holidays off
• Health, dental and vision insurance plans
• Flexible Spending Account (FSA)
• 401k with employer match
• Company-sponsored life insurance, short- and long-term disability 
• Professional development (training, certifications, conferences)
• Paid cloud developer accounts
• Referral bonuses
• HQ office perks (parking / metro reimbursement, nitro coffee & lunches) 
• Annual social events (540 Week, hackathon, charity golf tournament, etc.)
• Access to 540’s Washington Capitals & Nationals tickets

EQUAL EMPLOYMENT OPPORTUNITY (EEO)

540's policy is to provide equal employment opportunity to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

Join Okta’s Defensive Cyber Engineering team as a Staff Engineer responsible for safeguarding Okta’s environments. You’ll work closely with the Security, Business Technology Engineering and Product teams to implement and manage security solutions and ensure that core infrastructure applications are protecting our workforce, endpoints, and corporate data. 

A strong desire to make tools and people work together to solve complex security problems is central to this role. This approach mandates an engineering-first approach: maximizing the utility of existing security tools before strategically building or buying new solutions to address any remaining security gaps. 

To execute this vision, you will combine your enterprise security expertise with your hands-on engineering skills, leveraging automation, policy-as-code, and cloud-native technologies to deliver scalable, resilient, and secure solutions. Your work will ultimately set standards for security best practices across the organization and influence the architecture of business-critical systems.

What you bring:

• Hands on experience with enterprise security tools such as Okta, Crowdstrike and Palo Alto suite covering EDR (Endpoint Detection and Response), CASB (Cloud Access Security Broker), DLP (Data Loss Prevention), MDM (Mobile Device Management), SASE (Secure Access Service Edge), and SSPM (SaaS Secure Posture Management) capabilities.
• Strong coding and scripting skills are required for building automation and custom tooling. Python experience is preferred, but proficiency in other languages (e.g., Bash, PowerShell, Go) is a plus.
• Proven track record automating security controls and workflows using a cloud-first approach
• Experience with Terraform and other infrastructure-as-code tools to orchestrate security infrastructure
• Familiarity with CI/CD pipelines for security automation and drift management
• Strong communication skills across technical staff, support teams, executive leadership, and external vendors.

What you’ll be doing

• Serve as a security subject matter expert (SME) for solution engineering, architecture reviews, security assessment, and vulnerability mitigation
• Lead technical efforts evaluating, designing, and implementing new enterprise security systems and feature enhancements
• Build, maintain, and enhance custom automation and cloud infrastructure using Terraform or similar tools to support team workflows and the enforcement of security controls
• Develop integrations with APIs, cloud platforms (AWS, GCP, Azure), and security infrastructure to improve detection, response, and remediation
• Collaborate with cross-functional teams to tackle global technology and security challenges
• Write and maintain scripts and automation to streamline security operations, with an emphasis on Python-based solutions
• Establish monitoring and alerting for security posture, misconfigurations, and threats across endpoints, SaaS, and cloud workloads
• Proactively identify and remediate security gaps; stay updated on emerging threats, solutions, and tooling across the industry

And extra credit if you have experience in any of the following!

• Working with advanced identity management technologies (MFA, SAML, OAuth, OIDC, WebAuthn)
• Deep understanding of Okta's ecosystem, including advanced configuration and integrations
• Experience with continuous compliance solutions (e.g., policy-as-code, automated evidence gathering)

#LI-HYBRID

#LI-SH1
P24218_3444042

About the Role:

As a Security Engineer focused on Application and Product Security, you will play a key role in improving the security posture of our applications, services, and development ecosystem. You will work closely with engineering teams to integrate security into the software development lifecycle, build secure-by-default patterns, and ensure that products are resilient against modern threats. This role combines hands-on technical work, security engineering, and collaboration with developers to guide secure design and remediation. You will help implement security controls, perform assessments, and contribute to the continuous improvement of our security program.

As an Application Security Engineer at Starburst you will:

• Integrate application security best practices into the development lifecycle by partnering with engineering teams and enabling automated security checks within CI/CD pipelines.
• Support and maintain Application Security based tooling—including SAST, DAST, SCA, and secrets scanning—and help developers interpret and remediate findings.
• Conduct secure code reviews, threat modeling sessions, and application architecture assessments to identify risks and propose mitigation strategies.
• Develop and maintain security automation, guardrails, and reusable components.
• Assist in defining and improving secure coding standards and application hardening practices.
• Support monitoring and detection efforts by helping improve application-level logging, telemetry, and alerting.
• Assist in incident response activities related to application vulnerabilities, including verification, triage, and remediation support.
• Stay current on emerging threats, vulnerabilities, and best practices in application and product security.
• Contribute to documentation including security requirements, guidelines, and remediation playbooks.
• Participate in internal security reviews, compliance-driven assessments, and architectural walkthroughs.
• Develop and help maintain existing application security tools, pipelines, and workflows.
• Collaborate with engineering and product teams to ensure secure deployment and continuous improvement of applications.

Some of the things we look for:

• Bachelor’s degree in Computer Science, Engineering, MIS, or equivalent practical experience.
• 2–5 years of experience in application security, product security, software engineering with a security focus, or a related technical role.
• Strong understanding of application vulnerabilities and mitigation strategies (OWASP Top 10, CWE).
• Experience with CI/CD tooling, Git-based workflows, and modern development practices.
• Familiarity with cloud security concepts and hands-on experience with at least one cloud platform (AWS, Azure, or GCP).
• Experience with one or more programming languages such as Python, Go, Java, JavaScript/Typescript, or Ruby. (Java and Python preferred.)
• Experience with application security tools such as OWASP ZAP, Burp Suite, SAST/DAST tools, SCA, or dependency scanning.
• Knowledge of secure coding principles, API security, authentication, authorization, and secrets management.
• Strong problem-solving skills and the ability to communicate technical issues clearly to developers and cross-functional stakeholders.
• Understanding of agile development processes and working within engineering teams.
• Ability to Travel: This role will require 25% in-person travel for purposes including but not limited to new hire onboarding, team and department offsites, customer engagements, and other company events. Actual travel expectations may vary by role and business needs.

Where could this role be based?

This role is based in our Warsaw office and follows a hybrid model, with an expectation of being onsite 1-2 days per week.

Your Impact at LILA

You will define and deliver secure cloud architectures that meet the highest federal standards while staying practical and engineer friendly. Your designs will become the foundation for multiple systems and scale across teams and environments.

• FedRAMP IL5 / IL6 security architectures co-owned with Application Architects and applied across multiple systems
• Deployable security designs grounded in NIST 800-53 Rev. 5, DoD Cloud SRG (IL5/IL6), and FedRAMP
• Core security building blocks, including:
  • Identity, credential, and access management (ICAM)
  • Network segmentation, trust boundaries, and secure data flows
  • Encryption, key management, and secrets handling
• Zero Trust architecture (NIST 800-207) implemented in production—not just documented
• Reusable security platforms and patterns, including:
  • IAM and access control
  • Secrets management and key lifecycle
  • Logging, monitoring, and detection
  • Secure CI/CD and Infrastructure as Code
• Enterprise reference architectures supporting both FedRAMP and non-FedRAMP systems
• Compliance-aware designs that minimize authorization scope through control inheritance, reuse, and standardization
• Automated compliance evidence pipelines that reduce manual effort and improve audit readiness
• Security-by-design integrations embedded into product engineering and cloud infrastructure
• Architectural support for resilience and response, including threat modeling, risk assessment, incident response, and forensic readiness

What Success Looks Like

• Security controls are designed once and reused across applications and platforms
• Compliance evidence is automated, repeatable, and scalable
• Engineering teams adopt security patterns naturally, without friction
• Security architecture accelerates delivery instead of slowing it down

This role is for someone who wants to build durable, reusable security architecture that scales beyond one system—and enables high-assurance cloud delivery at speed. This is not a policy-only or governance-only position.

What You’ll Need to Succeed

You bring deep, hands-on experience designing and delivering secure cloud systems in highly regulated environments. You’re comfortable translating complex requirements into scalable architecture and guiding teams through delivery.

• 8+ years in cybersecurity, security architecture, or security engineering
• Proven, hands-on delivery of FedRAMP IL5 and/or IL6 systems, from design through authorization
• Strong working knowledge of:
  • NIST 800-53 Rev. 5
  • DoD Cloud Computing SRG (IL5/IL6)
  • FedRAMP authorization and ATO processes
• Cloud security architecture experience in AWS GovCloud
• Experience securing cloud-native platforms, including:
  • Container orchestration (EKS, AKS, OpenShift)
  • CI/CD pipelines and Infrastructure as Code
• Ability to explain control intent and risk tradeoffs, not just map requirements to controls

Role Summary 

As Senior Manager, Functional Safety and Cyber Security Compliance, you will lead the development and execution of functional safety and cyber security compliance strategies across Amperesand’s next generation medium voltage inverter and solid state transformer platforms. You will work cross functionally with Firmware, Controls, Product Management, Systems Engineering, and Compliance teams to ensure safety critical requirements are integrated into product architecture from concept through certification and field deployment. This role requires strong technical depth across embedded controls, system fault management, compliance strategy, and certification execution, while also helping coordinate technical communication between engineering groups and external certification agencies. 

Responsibilities

• Lead Functional Safety Strategy: Define and execute functional safety approaches across inverter systems, medium voltage conversion systems, and grid interactive controls 

• Firmware and Controls Integration: Partner directly with Firmware and Controls Engineering teams to guide implementation of safety critical firmware behaviors including watchdog systems, state machines, fault handling logic, safe shutdown strategies, diagnostics, and communication integrity monitoring 

• Cyber Security Compliance: Support implementation of secure communications, firmware integrity protections, access control methods, logging strategies, and cyber security documentation required for certification and customer acceptance 

• Regulatory Interpretation and Certification: Serve as an internal technical authority on standards including IEC 62443, and UL 60730, UL 1741, UL 1998, UL 991, IEEE 1547.1, and related compliance frameworks 

• Engagement with NRTLs: Coordinate with UL, CSA, TUV, Intertek, and external test labs to support certification planning, technical reviews, test execution, and issue resolution 

• EMI / EMC Coordination: Support system level EMC and EMI compliance strategy in partnership with hardware, grounding, shielding, layout, and controls engineering teams 

• Cross Functional Leadership: Partner with Product Management, Safety Engineering, Firmware, and Systems teams to ensure compliance is integrated early into product development and not added late in the cycle 

• Compliance Infrastructure: Develop scalable compliance processes, review systems, traceability methods, and certification readiness workflows across multiple product platforms 

Qualifications 

• Experience: 8+ years in functional safety, embedded systems, cyber security compliance, or safety critical power electronics development. Leadership or team management experience preferred 

• Standards Knowledge: Strong familiarity with UL 1741, UL 1998, UL 60730, UL 991, IEEE 1547.1, and exposure to IEC 61508 concepts, EMC / EMI standards, and cyber security frameworks 

• Firmware and Systems Knowledge: Strong understanding of embedded firmware architectures, inverter controls, fault management systems, and energy infrastructure platforms 

• Test Lab Leadership: Experience supporting certification test preparation, execution, documentation, and technical discussions with NRTLs and external agencies 

• Cross Functional Collaboration: Ability to coordinate across highly technical engineering organizations and communicate effectively with leadership, customers, and certification bodies 

Technical Skills

• Functional safety architecture and fault management systems 

• Embedded firmware and controls interaction 

• EMI / EMC compliance coordination 

• Certification planning and documentation 

• System level risk analysis and FMEA participation 

• Regulatory management systems and engineering workflow 

• Professional training & certificates for product functional safety 

GuidePoint Security is growing! Our IAM team is hiring an Security Consultant with AD/Entra ID experience to join our permanent team.  This is a fully remote role.

Roles and Responsibilities:

• Responsible for implementation and enhancement of AD/Entra ID solutions
• Gather and Document technical requirements and design
• Act as subject matter expert for client discussions

Experience Required:

• Hands-on experience with designing, architecting & building IAM solutions involving AD/Entra ID.
• Experience with common connectors including Active Directory (AD), Azure AD, JDBC, exchange, Okta, Oracle, Workday, and other authoritative source integrations
• Experience with PowerShell, Graph, KQL, etc.
• Experience with designing, implementing, and optimizing conditional access policies
• Experience with MFA authentication options inside Entra ID, as well as integrations with other platforms such as Duo, Okta, Ping, etc.
• Experience with identity life cycle management, including joiner, mover, leaver
• Experience with identity resource access provisioning and management
• Experience with configuring user access certification campaigns
• Experience with configuring RBAC, privileged accounts, roles, JIT, JEA, etc.
• Experience with designing, implementing, GPO migrations, related to Intune
• Experience with authentication protocols like OAuth, OIDC, SAML, etc.
• Strong verbal and written skills to develop technical documentation and presentations
• Experience in leading technical discussions related to IGA with technical and non-technical stakeholders.

Perks:

• Access to vendor supplied training as well as paid vendor certifications
• Opportunity to learn additional IAM security tools
• 100% Remote work

About the Role

Reddit is a community of communities. It’s built on shared interests, passion, and trust and is home to the most open and authentic conversations on the internet. Every day, Reddit users submit, vote, and comment on the topics they care most about. With 100,000+ active communities and approximately 97M+ daily active unique visitors, Reddit is one of the internet’s largest sources of information. For more information, visit redditinc.com.

Reddit is hiring a Staff Product Security Engineer to make the secure path the easiest path for engineers and AI agents. You'll lead the design and delivery of secure frameworks, paved paths, and workflow-native controls that eliminate recurring vulnerability classes before they reach production. As AI-assisted development accelerates code velocity faster than manual review can absorb, this role exists to close that gap structurally — through guardrails, automation, and platform-level prevention that scale with the engineering org.

What You'll Do

• Build and evolve secure frameworks, guardrails, and library-level controls that make common vulnerability classes harder to introduce.
• Design security controls for AI-assisted development — including reusable rule packs and skills that shape how engineers and coding agents generate, review, and ship code.
• Embed security into the workflows engineers already use.
• Drive product security reviews for new launches and major architectural changes.
• Identify and eliminate systemic security debt.
• Shape strategy, influence architecture, and drive execution across teams.

What We're Looking For

• 8+ years of experience in software engineering, product security, or application security, with at least 2 years operating at a staff level of scope and impact.
• Proficiency in one or more languages (Go, Python, JS/TS).
• Experience designing, building, and operating production-quality systems and developer-facing platforms.
• Experience building secure frameworks, libraries, or guardrails that improve security across many teams at once.
• Demonstrated ability to integrate security into developer workflows: CI/CD, code review, release processes, and internal platforms.
• Clear communicator who can explain technical detail and business impact to both engineers and leadership.
• Comfortable in fast-moving environments where AI-assisted development is reshaping how software is built and reviewed.
• Experience with vulnerability discovery and remediation pipelines, including bug bounty or researcher-reported findings.
• Track record of mentoring engineers and raising the technical bar across a security or platform engineering org.

Preferred Qualifications

• Experience securing AI/LLM systems, agentic workflows, or AI-assisted development tooling.
• Familiarity with authentication/authorization systems, cloud-native platforms, and how to secure them.

#LI-Remote

Join Airtable as a Product Security Engineer and play a pivotal role in shaping the security of our rapidly evolving platform as we expand our AI and LLM-powered offerings. You will join the team responsible for safeguarding the application layer of Airtable’s platform.

You will partner closely with product engineering teams to build paved roads, frameworks, and automated controls that make the secure path the easy path for our engineering teams. You will help influence application security at scale, ensuring our products are secure by design.

What you'll do

• Develop self-service security frameworks and "paved roads" that allow engineering teams to ship secure code by default.
• Focus on automated guardrails for common vulnerabilities, while prioritizing deep-dive design reviews into complex business logic and data isolation issues (for example, multi-tenant isolation and authorization/permission bypasses) that automated tools cannot catch.
• Partner with product and engineering teams to review designs early, contribute to threat modeling for new features and complex initiatives, and provide clear, actionable security guidance.
• Research emerging threats and evolving best practices, specifically regarding AI and LLM safety, and implement controls to secure these workflows.
• Manage and evolve our approach to external penetration testing and bug bounties, driving remediation for findings and treating vulnerability management as an engineering problem.
• Contribute to the long-term roadmaps, metrics, and strategic planning for the security team.
• (Senior/Staff L5+) Lead complex threat modeling sessions for major product launches and define secure coding standards, and actively mentor other engineers to raise the technical security bar across the organization.

Who you are

• 4+ years of experience in product security or application security, with experience shipping production code. Please note this is not an early career position.
• You have a strong background in computer science or a related field, with proficiency in writing clean, maintainable code.
• You have deep familiarity with JavaScript or TypeScript, Node.js, and modern web application frameworks, and can reason about the security implications of systems built on them.
• You have hands-on experience securing LLM integrations and identifying prompt injection or data leakage risks.
• You are proficient in writing and reviewing code and treat security as an engineering problem to be solved with software, not just policies.
• You excel at communicating complex security risks to non-security stakeholders and enjoy collaborating cross-functionally to find solutions that balance security with engineering velocity.
• You are comfortable working in a fast-paced environment, navigating ambiguity, continuously learning about emerging threats and technologies, and contributing to long-term security strategy.

Airtable is an equal opportunity employer. We embrace diversity and strive to create a workplace where everyone has an equal opportunity to thrive. We welcome people of different backgrounds, experiences, abilities, and perspectives. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status or any characteristic protected by applicable federal and state laws, regulations and ordinances. Learn more about your EEO rights as an applicant. 

VEVRAA-Federal Contractor

If you have a medical condition, disability, or religious belief/practice which inhibits your ability to participate in any part of the application or interview process, please complete our Accommodations Request Form and let us know how we may assist you. Airtable is committed to participating in the interactive process and providing reasonable accommodations to qualified applicants.

#LI-remote

Who we are

About Stripe

Stripe is a financial infrastructure platform for businesses. Millions of companies—from the world's largest enterprises to the most ambitious startups—use Stripe to accept payments, grow their revenue, and accelerate new business opportunities. Our mission is to increase the GDP of the internet, and we have a staggering amount of work ahead. That means you have an unprecedented opportunity to put the global economy within everyone's reach while doing the most important work of your career.

About the team

The Proactive Threat team identifies, detects, and responds to threats before they impact Stripe's business or users. The Detection Engineering & Threat Hunting function sits at the intersection of offense and defense — we leverage deep knowledge of attacker tradecraft to build high-fidelity detections, hunt for sophisticated threats, and validate defensive capabilities across Stripe's critical systems.

We are builders first. Our team develops detection-as-code, automates analysis workflows, and builds tooling that scales detection and response across a complex, global environment. We partner closely with Threat Intelligence, Incident Response, and offensive security teams to ensure our detections are grounded in real-world adversary behavior.

The team is distributed across the United States (Eastern and Pacific time zones) and collaborates regularly with stakeholders across Stripe — including teams in Europe and Asia.

What you'll do

You will design, build, and maintain detections that identify malicious activity across Stripe's infrastructure, applications, and cloud environments. You'll leverage your understanding of attacker TTPs — from initial access through exfiltration — to develop detection logic that catches real threats while minimizing noise. Beyond writing detections, you'll conduct threat hunts, perform malware analysis, and build automation that enables detection engineering at scale.

Responsibilities

• Design, build, and tune high-fidelity detections across modern SIEM platforms, covering adversary TTPs across the full attack lifecycle
• Develop detection hypotheses by researching TTPs, identifying evidence sources, and determining detection opportunities across available telemetry
• Conduct hypothesis-driven threat hunts to identify malicious activity, uncover detection gaps, and validate security controls
• Perform malware analysis and reverse engineering to extract indicators and inform detection strategies
• Build network-based detections (flow, pcap, protocol analysis) and endpoint-based detections (event logs, EDR telemetry, memory/file artifacts) across Windows, Linux, and macOS
• Partner with Threat Intelligence to operationalize intel reports into detections, hunting leads, and enrichment logic
• Collaborate with IR, SOC, and offensive security teams to validate and refine detections based on real-world incidents and red team exercises
• Build data pipelines, automation, and tooling that enable detection-as-code practices and scalable deployment
• Map detection coverage to MITRE ATT&CK, identifying and prioritizing gaps across key attack surfaces
• Lead projects, mentor teammates, and champion quality standards within the team

Who you are

We're looking for someone who meets the minimum requirements to be considered for the role. If you meet these requirements, you are encouraged to apply. The preferred qualifications are a bonus, not a requirement.

Minimum requirements

• 5+ years of experience in detection engineering, threat hunting, or security operations
• Demonstrated experience writing detection logic in modern SIEM platforms (e.g., Splunk, Chronicle, Elastic, CrowdStrike NG-SIEM, Panther, Microsoft Sentinel)
• Strong understanding of adversary tradecraft across the attack lifecycle: initial access, privilege escalation, lateral movement, defense evasion, persistence, and exfiltration
• Ability to extract TTPs from threat intelligence reports and translate them into detection opportunities
• Experience developing network-based and endpoint-based detections across multiple OS platforms (Windows, Linux, macOS)
• Experience analyzing telemetry across endpoint, network, cloud (AWS/GCP/Azure), identity, and application log sources
• Proficiency in detection/query languages (SPL, KQL, EQL, YARA-L, SQL) and programming (Python or similar)
• Strong communication skills with the ability to document detection logic and explain findings to technical and non-technical audiences
• Adversarial mindset — understanding how attackers operate to build detections that catch real-world threats

Preferred qualifications

• Experience in detection engineering or threat hunting within fintech, financial services, or highly regulated environments
• Background in malware analysis, reverse engineering, or threat research
• Experience with purple team operations — collaborating with offensive security to validate detections
• Familiarity with big data platforms (Databricks, Trino, PySpark) for large-scale log analysis
• Proficiency with AI/LLM-assisted development tools (Claude Code, Cursor, GitHub Copilot) applied to detection workflows
• Interest in agentic automation — using LLMs to augment hunting, tuning, or triage
• Experience with detection validation tools (Atomic Red Team, ATT&CK Evaluations)
• Contributions to open-source detection content, research, or conference presentations
• Relevant certifications such as HTB CDSA, GCIH, GCFA, GNFA, OSCP, TCM PMAT, or GREM

Who we are

About Stripe

Stripe is a financial infrastructure platform for businesses. Millions of companies—from the world’s largest enterprises to the most ambitious startups—use Stripe to accept payments, grow their revenue, and accelerate new business opportunities. Our mission is to increase the GDP of the internet, and we have a staggering amount of work ahead. That means you have an unprecedented opportunity to put the global economy within everyone’s reach while doing the most important work of your career.

About the team

Stripe powers businesses all over the world. We process payments, run marketplaces, detect fraud, help entrepreneurs start a business from anywhere in the world, build world-class developer-friendly APIs, and more. Nearly every system we operate interacts with sensitive financial or personal data — making security a top priority for Stripe.

Stripe will succeed at our mission of increasing the GDP of the internet only if we prove ourselves worthy of our users’ trust. As an engineer on the Security team, you will design and develop frameworks, systems, and solutions to ensure the security of Stripe’s engineering infrastructure and, most importantly, privacy of our users’ data.

The Cloud Security team accelerates Stripe’s business priorities by building core security controls and services that empower teams to build quickly and securely on top of a well-governed cloud platform and partnering with infrastructure teams to advance select critical business priorities using novel infrastructure or integrations as that platform expands.

What will you do?

• Design, build, and operate the core security infrastructure used by all of Stripe’s engineering teams in close collaboration with other stakeholders and our users.
• Uphold our high engineering standards and bring consistency to the many codebases and processes you will encounter
• Contribute to team learning by improving engineering standards, tooling, and processes
• Design and build durable solutions that will advance Stripe’s security beyond the state of the art.
• Help expand Stripe’s cloud footprint on top of secure, paved roads and guardrails
• Optimize for security controls that have delightful user experiences
• Partner closely with infrastructure and engineering teams building integrations with our cloud infrastructure or adopting new cloud managed services
• Make impactful decisions about systems and security — their edge cases, failure modes, and life cycles
• Use data to determine appropriate baselines against which to measure security
• Define infrastructure that reliably feeds signals to threat teams
• Evaluate and prototype new security tools and practices

You may work on

• Designing and implementing controls that support security invariants and enforce our security principles while providing a surprisingly great user experience
• Providing a migration path for newly acquired companies onto the Stripe Secure Platform, embedding with their engineers and biasing for action
• CI tooling for platform-related configuration: IAM roles, SCPs, and associated components
• Guardrails and security controls for both commonly used and newer cloud technologies
• Expanding our cloud identity infrastructure to provide paved paths for AI and agentic access
• Automation tooling for continually driving down permissions and access across our cloud services

Minimum requirements

• Empathy, strong communication skills and a deep respect for the power of collaboration
• A learning mindset, regardless of level or experience
• The ability to drive clear next steps when encountering ambiguous spaces without clear lines of ownership
• High standards for code quality and a constructive attitude to help others raise the bar
• Software engineering experience in a high-stakes production environment
• A knack for considering how systems can fail and how to fix them
• An ability to think creatively and holistically about reducing risk in a complex environment
• Experience with security on one or more of AWS, Azure, or GCP

Preferred qualifications

• Experience conducting threat modeling of software or infrastructure in cloud native environments
• Experience with Linux systems, Kubernetes, and/or container-based platforms
• Prior usage of security monitoring tools (e.g., CSPM, CNAAP)
• Experience in a multi-cloud, or complex, cloud environment
• A knack for considering how systems can fail and how to fix them 
• An ability to think creatively and holistically about reducing risk in a complex environment

Who we are

About Stripe

Stripe is a financial infrastructure platform for businesses. Millions of companies—from the world's largest enterprises to the most ambitious startups—use Stripe to accept payments, grow their revenue, and accelerate new business opportunities. Our mission is to increase the GDP of the internet, and we have a staggering amount of work ahead. That means you have an unprecedented opportunity to put the global economy within everyone's reach while doing the most important work of your career.

About the team

The Proactive Threat team is responsible for identifying vulnerabilities and security weaknesses across Stripe's systems, applications, networks, and cloud infrastructure — before adversaries do. We operate as a hybrid offensive function: conducting penetration testing, emulating real-world threat actors through red team operations, and partnering closely with our defensive security teams to validate detection capabilities and improve Stripe's overall security posture.

We are builders first. Our team develops custom tooling, automation frameworks, and internal platforms that scale our offensive capabilities and enable repeatable, high-fidelity assessments. We believe the best offensive security engineers are equal parts hacker and engineer.

The team is distributed across the United States, primarily operating in Eastern and Pacific time zones, and collaborates regularly with security, engineering, and product stakeholders across Stripe — including teams in Europe and Asia.

What you'll do

As an Offensive Security Engineer on the Proactive Threat team, you will simulate the tactics, techniques, and procedures (TTPs) of real-world adversaries to uncover security risks across Stripe's products and infrastructure. You'll conduct hands-on penetration testing, lead red team engagements, and collaborate with blue team counterparts to validate and improve detection and response capabilities. Your work will directly influence how Stripe builds, ships, and secures financial infrastructure used by millions of businesses worldwide.

Beyond assessments, you'll design and build offensive tooling and automation that amplifies the team's impact. You'll leverage threat intelligence to prioritize testing efforts, contribute to incident investigations when needed, and act as a subject-matter expert for security initiatives across the company.

Responsibilities

• Conduct comprehensive penetration tests across web applications, APIs, cloud environments (AWS/GCP/Azure), mobile applications, and internal infrastructure
• Plan and execute red team engagements that emulate the TTPs of cyber and criminal threat actors targeting financial services, including initial access, lateral movement, persistence, and data exfiltration scenarios
• Perform assumed-breach and objective-based assessments to test detection and response capabilities in coordination with defensive teams
• Partner with detection engineering, threat intelligence, and incident response teams to validate security controls, identify coverage gaps, and improve detection fidelity
• Contribute adversary tradecraft insights to inform detection rule development, threat hunting hypotheses, and incident response playbooks
• Support incident investigations by providing offensive expertise, log analysis, and root cause analysis when required
• Design, develop, and maintain custom offensive tools, scripts, and automation frameworks to enhance assessment efficiency and coverage
• Build internal platforms and workflows that enable scalable, repeatable offensive operations
• Contribute to internal security tooling repositories and champion engineering best practices within the team
• Automate repetitive testing tasks, payload generation, and reporting workflows using modern development practices
• Produce clear, actionable reports that communicate technical findings, business risk, and remediation guidance to both technical and non-technical stakeholders
• Act as a subject-matter expert and primary point of contact for stakeholder teams engaged in offensive security programs and Stripe-wide security initiatives
• Lead offensive security projects end-to-end, mentor junior team members, and foster a culture of continuous learning and knowledge sharing
• Stay current with emerging threats, vulnerabilities, and attack techniques; share research internally and contribute to the broader security community

Who you are

We're looking for someone who meets the minimum requirements to be considered for the role. If you meet these requirements, you are encouraged to apply. The preferred qualifications are a bonus, not a requirement.

Minimum requirements

• 5+ years of experience in offensive security, penetration testing, red teaming, or a related field
• Strong programming skills in Python, Go, or similar languages, with demonstrated experience building tools, automation, or custom exploits
• Deep knowledge of web application security, including OWASP Top 10, ASVS, and common vulnerability classes (injection, auth flaws, business logic, etc.)
• Hands-on experience with cloud platforms (AWS, Azure, or GCP), including cloud-native attack techniques and misconfigurations
• Proficiency with offensive tooling such as Burp Suite, Cobalt Strike, Mythic, Sliver, BloodHound, or similar frameworks
• Familiarity with adversary tradecraft and frameworks such as MITRE ATT&CK, including TTPs for initial access, privilege escalation, lateral movement, and exfiltration
• Excellent written and verbal communication skills, with the ability to translate complex technical findings into clear, risk-based recommendations
• Ability to think like an adversary — creative, persistent, and able to holistically assess risk in complex environments

Preferred qualifications

• Experience conducting offensive security in fintech, financial services, or other highly regulated environments
• Background in vulnerability research, exploit development, or CVE discovery
• Experience collaborating with threat intelligence, detection engineering, or incident response teams (purple team operations)
• Familiarity with big data and log analysis tools (Splunk, Databricks, PySpark, osquery, etc.) for threat hunting or investigative support
• Proficiency with AI/LLM-assisted development tools (e.g., Claude Code, Cursor, GitHub Copilot) and experience applying them to offensive security workflows
• Interest or experience in agentic automation — using LLMs or autonomous agents to augment reconnaissance, vulnerability discovery, or exploitation workflows
• Experience testing AI/ML systems or LLM-based applications for security weaknesses (prompt injection, training data extraction, model manipulation, etc.)
• Contributions to open-source security tools, published research, blog posts, or conference presentations
• Relevant certifications such as OSCP, OSWE, OSEP, OSED, CRTO, CPTS, PNPT, GXPN, or cloud security certifications

Who we are

About Bridge

Bridge is Stripe’s fintech innovation hub focused on building a modern, stablecoin-powered cross-border payments network. We operate like a startup within Stripe: fast-paced, entrepreneurial, and product-obsessed, but with the backing of one of the most trusted names in fintech.

We’re hiring a Security Engineer to build and scale Bridge’s security foundation. This is a rare opportunity to design a security program from the ground up, while also leveraging the infrastructure, best practices, and tooling of one of the most mature security organizations in the industry.

What you’ll do

Responsibilities

• Design, and implement Bridge’s security roadmap from first principles to production.
• Identify and tackle Bridge’s most important security risks quickly and pragmatically.
• Integrate with Stripe’s infrastructure where it makes sense, and find custom solutions where it doesn’t.
• Lead threat modeling and hardening efforts for Bridge’s money movement systems in collaboration with crypto and infra teams.
• Build key security capabilities (monitoring, secrets management, incident response, access controls, CI/CD hardening, etc).
• Reinforce engineering best practices around secure development and infrastructure.
• Ensure Bridge meets compliance and audit expectations as we scale to more regulated markets.
• Collaborate cross-functionally with engineering, product, and Stripe’s security org to move fast without compromising safety.

About you

You might be a good fit if you:

• Have 8+ years of experience in Security engineering, ideally with time spent in fast-paced startup environments where you’ve built security practices from the ground up.
• Have a startup mindset: you’re scrappy, pragmatic, and move quickly to solve the most critical problems.
• Are comfortable writing and debugging backend application code (Ruby is a plus, but not required).
• Thrive in ambiguity and know how to ruthlessly prioritize.
• Can balance security rigor with speed, especially in fast-moving environments.
• Communicate clearly across technical and non-technical partners.
• Have experience building or scaling security programs, either at a startup or in an embedded role.
• Are excited about the potential of crypto and stablecoins to power global financial infrastructure (you don’t need deep prior knowledge—just curiosity and openness to learn).

Who we are

Bridge is Stripe’s fintech innovation hub focused on building a modern, stablecoin-powered cross-border payments network. We operate like a startup within Stripe: fast-paced, entrepreneurial, and product-obsessed, but with the backing of one of the most trusted names in fintech.

We’re hiring a Security Analyst / Program Manager to build and scale Bridge’s security foundation. This is a rare opportunity to design the security governance, risk and compliance programs from the ground up, while also leveraging the infrastructure, best practices, and tooling of one of the most mature security organizations in the industry.

What you'll do

• Design, and implement Bridge’s security governance, risk and compliance roadmaps from first principles to production.
• Identify and tackle Bridge’s most important security risks quickly and pragmatically.
• Adopt Stripe’s programs, controls and processes where it makes sense, and find custom approaches where it doesn’t.
• Lead risk assessment, control design and testing for all Security and Technology Oversight globally.
• Reinforce engineering best practices around secure development and infrastructure.
• Ensure Bridge meets compliance and audit expectations as we scale to more regulated markets.
• Collaborate cross-functionally with engineering, product, and Stripe’s security org to move fast without compromising safety.

About you

You might be a good fit if you:

• Have 8+ years of experience in Security GRC, ideally with time spent in fast-paced startup environments where you’ve built security practices from the ground up.
• Have a startup mindset: you’re scrappy, pragmatic, and move quickly to solve the most critical problems.
• You’re proficient with NIST CSF, OCC’s Cybersecurity Supervision Work Program and/or FFIEC IT Examination Handbook or other similar global frameworks. 
• Proven prior experience with regulatory audits from Global auditors across Security domains.
• Thrive in ambiguity and know how to ruthlessly prioritize.
• Can balance security rigor with speed, especially in fast-moving environments.
• Communicate clearly across technical and non-technical partners.
• Have experience building or scaling security programs, either at a startup or in an embedded role.
• Are excited about the potential of crypto and stablecoins to power global financial infrastructure (you don’t need deep prior knowledge—just curiosity and openness to learn).

The Systems Security Analyst is responsible for analyzing, developing, and validating the security posture of systems across the USSF Mission System platform. This role ensures that cybersecurity policies, security configurations, and operational practices are properly implemented and continuously maintained to meet Joint Special Access Program Implementation Guide (JSIG), Risk Management Framework (RMF), and Department of the Air Force cyber requirements

Qualifications Required
•  Bachelor's or equivalent with 5 years of specific experience supporting DoW Cyber/ Information Systems Security
• Required certification: Sec+ or equivalent (CySA+/GICSP/GSEC/CND/SSCP/CGRC)
• Experience applying security policies, documenting system security operations and maintenance activities, and performing security reviews to identify gaps in security architecture, and develop security risk management plans
• Understanding of the system certification process
• Experience with information assurance risk assessments
• Understanding of information security principles, DoW STIGs, RMF, and A&A processes for systems
• Strong written and verbal communication skills
• MUST HAVE A CURRENT TOP SECRET/SCI ELIGIBLE SECURITY CLEARANCE, FOR WHICH YOU MUST BE A U.S. CITIZEN. 

Qualifications Desired
• MS in Computer Science, Cyber Security, Information Technology, Software Engineering, Information Systems, or Computer Engineering degree
• Knowledge of the following tools: Splunk, ACAS, Evaluate_STIG, STIG Viewer, eMASS / eMASSter, CVSS Calculator, Jira, Confluence, Mattermost
• Understanding of security vulnerabilities and mitigation strategies for networked and non-networked systems
• Strong problem-solving skills

Required Certifications: See Required Skills 
U.S. Citizenship Required: Yes
Security Clearance Required: TS/SCI
Employment Type: Regular Full-time
Background Check Type: 7 Year Pre-Employment
Drug Screen Required: None
Position Contingent Upon Contract Award: Yes

Modelo de trabalho 
Híbrido • Campinas/SP 

Nosso time de Tecnologia

Muito mais do que código e sistemas — é o meio essencial que torna possível o nosso modelo único, que combina o melhor do digital com a presença física e humana. Aqui, tecnologia não é um fim em si mesma, mas a ponte entre inovação e a experiência real do cliente. Atuam lado a lado com as áreas de negócio para garantir soluções robustas, escaláveis e centradas nas pessoas, sem abrir mão de um olhar técnico e científico aprofundado em frentes como desenvolvimento de software, infraestrutura, cibersegurança e arquitetura. É nessa interseção entre propósito, técnica e impacto que constroem o presente e futuro.

Seus desafios para crescer na jornada 

• Apoiar testes de segurança em aplicações baseadas em LLMs, cobrindo cenários como prompt injection, jailbreak, vazamento de dados, abuso de ferramentas e manipulação de contexto.
• Executar casos de teste em agentes internos e user-facing, seguindo os playbooks definidos pelo time.
• Contribuir para a evolução das suítes de testes com Promptfoo ou ferramentas equivalentes.
• Apoiar a análise de alertas e sinais gerados por controles como LLM Firewall, guardrails, Anonymizer e AI Gateway.
• Realizar validações funcionais e testes de regressão nos serviços e controles de AI Security.
• Apoiar análises básicas de logs, métricas e eventos relacionados ao tráfego de LLMs, agentes e plataformas internas.
• Ajudar a identificar falsos positivos, falsos negativos e oportunidades de melhoria em regras, heurísticas e políticas de detecção.
• Apoiar revisões de segurança em MCPs, skills e ferramentas usadas por desenvolvedores ou agentes.
• Contribuir com testes básicos de segurança em artefatos de ML, supply chain e quality gates em pipelines.
• Documentar achados, evidências, FAQs, guias, playbooks e boas práticas com clareza e foco em ação.
• Apoiar iniciativas de educação, awareness, CTFs, meetups e pesquisa aplicada.

O que você precisa para se tornar um Agilizado? 

Requisitos

• Esperamos uma compreensão geral das principais frentes de SI (Governança, Gestão de Identidades, Cloud Security, Engenharia de Segurança, Segurança Ofensiva, Arquitetura de Segurança e Defesa Cibernética) em nível suficiente para conversar com especialistas com credibilidade, entender suas dores e traduzir necessidades em hipóteses de aplicação de IA. 

Fundamentos técnicos

• Noções de APIs, HTTP, autenticação, autorização, análise básica de logs e eventos, além de fluxos de dados.
• Familiaridade com controle de versão (Git, GitLab/GitHub), pipelines CI/CD e leitura de código escrito por outras pessoas.
• Capacidade de ler arquiteturas, fluxos de dados, políticas, configurações e prompts o suficiente para construir requisitos consistentes e questionar premissas técnicas.

IA aplicada

• Desenvolvimento em Python: ler, escrever e modificar código Python para automatizar análises, prototipar agentes, integrar APIs de modelos e validar hipóteses de aplicação. Familiaridade com Go ou JavaScript/TypeScript é bem-vinda como complemento.
• LLMs: compreensão prática das capacidades e limitações dos modelos de linguagem, com familiaridade em context window, RAG, function calling, tool use, prompt engineering, evals e estrutura de custos de inferência.
• Agentes: experiência ou interesse comprovado em usar e construir agentes, incluindo definição de tarefas, orquestração de ferramentas, gestão de contexto, tratamento de falhas e observabilidade de comportamento.
• MCP (Model Context Protocol): compreensão do padrão MCP para conectar modelos a ferramentas e dados externos, com capacidade de avaliar, integrar ou construir servidores e clientes MCP dentro de fluxos de SI.
• Avaliação crítica: saber quando IA é a solução adequada e, com a mesma clareza, quando não é.

Diferenciais

• Experiência prévia liderando iniciativas internas de SI ou fintech, com mandato de priorização, descoberta de oportunidades e entrega contínua.
• Experiência com frameworks de avaliação de LLMs (Promptfoo, DeepEval, Ragas ou similares).
• Familiaridade com OWASP Top 10 for LLM Applications, MITRE ATLAS, NIST AI RMF, ISO/IEC 42001.

Benefícios e facilidades

• Saúde e bem-estar: plano de saúde, plano odontológico, teleatendimento psicológico e médico gratuito, Totalpass, Vale-refeição e alimentação e Seguro de vida/auxílio-funeral;
• Maternidade e paternidade: auxílio-creche, licença-maternidade de 6 meses, licença-paternidade de 20 dias, VA/VR no período da licença; 
•  Previdência privada;
• Programa de Participação nos Resultados (PPR) seguindo as regras estabelecidas anualmente; 
• Vale-transporte;
• Fretado de ida e volta para Campinas e região (com raio de até 50 km de distância). São lugares reserváveis mediante a disponibilidade de assentos e rota. Para quem vai de carro, temos estacionamento gratuito;
• Folga de presente no mês do seu aniversário;
• Dinheiro de volta no Cartão de Crédito​: 1% de cashback sobre o valor total da fatura do cartão ​revertido em crédito na fatura seguinte;​​
• Conta remunerada​: CDB de aplicação automática e rendimento de 100% do CDI;​​
• Isenção de Tarifas de Comunicação Digital;​​
• Credito do Trabalhador​: taxa e prazo diferenciados. Disponível para ​contratação a partir de 6 meses de casa;​​
• Antecipação Saque aniversário do FGTS;
• Dr. Pet: possibilidade fazer plano de saúde para pets com até 20% de desconto.

Empresa contratante: Hypeflame

Job Overview

The Security Officer for ParkX Management ensures that the facility is run smoothly, safely, cleanly, and is a good experience for residents, tenants, and guests.

Key Responsibilities

• Complete hourly patrol route of the property using the security system
• Access control for guests, tenants and vendors
• Ensure no property is being damaged
• Conduct of routine foot patrols in and around building.
• Perform other duties as assigned 
• Observation and reporting of safety
• Issue Banning notices to rule violators      
• Maintain file for Ban Notices and notify management when necessary
• Maintain the appearance of the two plaza kiosks 
• Enforce the “no dogs on the plaza” policy
• Keep updated information (e.g., Kiss N Ride, Contact Phone #’s, Rules of Conduct) and communicate to guests as needed
• Report any unknown work that is occurring at the property to management
• If anyone parks illegally on the plaza, notify Park X, Commercial property management, and Residential property management immediately 
• Communicate to guests that we must keep the fire access areas accessible for fire trucks and ambulances
• Close loading dock doors as needed
• Report any concerns to management
• Reston and Loudoun Station: Assist the Marketing team before, during, and after events as needed
• Reston Station: Manage the valet; ensure that cars are not being parked on the plaza or on the down ramp
• Reston Station: For Special event, ensure that the plaza marketing plan is followed
• Reston Station: Manage traffic coming onto the plaza and keep it moving

Qualifications

• High School Diploma
• Must be certified security officer by the District of Columbia
• Minimum of at least 1 year experience in customer-service related field 
• Valid driver's license without major violations
• Flexibility to work after hours and weekends, as needed
• Outgoing personality with ability to relate to diverse group of people and build/maintain strong relationships
• Strong sense of urgency
• Strong problem-solving, time management and communication skills
• Must be highly credible and trustworthy, and operate with high degree of integrity
• Must hold oneself and others accountable and strive for a high level of excellence
• Must have a positive, can-do attitude and be able to fuel growth and innovation
• Must be customer-focused and results-oriented
• Must want to continuously learn and develop
• Exceptional oral and written communication, active listening, and organizational skills
• Ability to establish strong working relationships with others in team setting 
• Ability to multitask and prioritize tasks with a strong attention to detail in a fast-paced environment 
• Self-directed and able to work independently, with minimal supervision

Physical Demands & Work Environment

• Required to stand for long periods and walk, climb stairs, balance, stoop, kneel, crouch, bend, stretch, twist, and/or reach
• Push, pull or lift up to 50 pounds
• Continuous repetitive motions
• Work under variable temperature conditions (or extreme heat or cold), under variable noise levels, outdoors/indoors, around fumes and/or hazards, around dust and/or mite hazards, around chemicals and bio-hazards

Benefits

Compensation:
Benefit Package:401K Match

Career Development
- Opportunities for Advancement within our expanding portfolio

Employee Perks (to name a few):
- Free Parking and EV charging
- Parental Leave Program
- Enjoy a Friendly Work Environment that values collaboration

*Note benefits vary depending on the function of your role

Responsible for helping with Mobile Forensics sales across EMEIA. Responsible for growing pipeline in all the regions across EMEIA. Support regional Jamf channel and sales teams on MF opportunities & also leading customer meetings, demos, POCs until deal closure. Representing Jamf at trade shows and events to further develop regions and to grow pipeline. Focus on maintaining relationships with the existing MF partner network. Working with key strategic existing accounts to prevent churn, to ensure customers are best utilising the tool and see the most value from the tool. Relationships with Product and R&D to ensure being fully abreast of product changes and recent security findings, to ensure these are correctly cascaded to new and existing customers & the partner network.

This role is offered as hybrid, with the expectation to be in the office 3 days per week. We are only able to accept applications for those based in the Netherlands and have sponsorship to live and work in The Netherlands. #LI-Hybrid

What you’ll do at Jamf:

1. Sales Execution

• Own pipeline generation and deal closure across EMEIA, with a clear focus on hitting annual targets.
• Lead customer meetings, demos, and POCs through to closure.
• Represent Jamf at key cybersecurity events and trade shows across the region.

1. Strategic Deal & Account Management

• Own or provide structured support for major security opportunities across EMEIA.
• Partner with KAMs, IEAEs, and SEs to strengthen Jamf’s security narrative and value proposition.
• Maintain close relationships with key accounts to drive retention, expansion and TARR growth.

1. Cross-Functional Collaboration

• Stay aligned with Product and R&D on the security roadmap and relevant threat intelligence.
• Collaborate with CS, Professional Services, and Marketing on pipeline, customer success and events.
• Champion Jamf’s security portfolio internally across the sales organisation.

1. Partner & Channel Enablement

• Nurture and develop the regional security partner network through enablement, training and strategic alignment.
• Identify and onboard new partners with strong cybersecurity or public safety credentials.

1. Market Intelligence & Competitive Positioning

• Monitor the competitive landscape across cybersecurity, endpoint and mobile security.
• Stay informed on key security incidents and threat trends relevant to Jamf’s customers.

SUCCESS MEASURES (KPIs)

• Achieve yearly GARR & TARR targets and contribute to a healthy, growing pipeline.
• Active involvement in top EMEIA opportunities; reduce sales cycle and improve conversion rates.
• Strong partner engagement and enablement outcomes across the region.
• Consistent cross-functional collaboration with Sales, CS, Channel, R&D, Product, PS and Marketing.

What we are looking for (required):

• 8+ years of experience in enterprise sales experience with a strong cybersecurity background.
• Proven track record selling security solutions — e.g. endpoint security, EDR, SIEM, mobile security, MDM, or cloud security.
• Ability to engage and influence C-level stakeholders (CISO, CIO, CTO, Heads of Risk/Compliance).
• Experience operating in a matrixed, cross-functional sales environment with a high degree of autonomy.
• Excellent communicator and storyteller, effective in front of customers and at external events.
• Multi-geography sales experience, ideally across multiple EMEIA markets.
• Strong commercial acumen and analytical skills.

Preferred / Beneficial

• Experience in mobile security or mobile forensics; familiarity with tools such as Cellebrite is a plus.
• Existing relationships with cybersecurity partners, resellers or government/law enforcement customers in EMEIA.
• Understanding of the Apple enterprise ecosystem and Jamf’s position in MDM and device security.
• Comfortable running technical demos
• Experience presenting at industry events or contributing to GTM and marketing materials.

How we help you reach your best potential:

• Named a 2025 Best Companies to Work For by U.S. News

• Named a 2025 Newsweek America’s Greatest Workplaces for Gen Z

• Named one of Forbes Most Trusted Companies in 2024

• Named a 2024 Newsweek America’s Greatest Workplaces for Parents & Families

• Named a 2024 PEOPLE Companies That Care by PEOPLE® and Great Place To Work®

• We offer a clear and defined sales career path. Our main goal is to help you successfully step into our Account Executive role, but there are many ways to advance your career at Jamf.

• We train and then we give you the room to grow. Our Jamfs can explore the vertical career path, as well as the horizontal, to discover new interests and opportunities.

• You don’t have to be a techie to be a Jamf. Our best-in-class sales focused Bootcamp training provides you with the technical and product knowledge required to confidently talk with customers about Jamf.

• We set achievable targets, help each other out, and share best practices across the team.

• You will have the opportunity to make a real and meaningful impact for more than 75,000 global customers with the best Apple device management solution in the world.

This role is offered as a hybrid with expectations to come to the office in the Tel Aviv office in Israel at least 3 days per week. We are only able to accept applications for those based in Israel and have sponsorship to live and work in Israel. 

What you'll do at Jamf: 

At Jamf, we empower people to be their best selves and do their best work. The Security Analyst role strengthens our ability to detect and respond to emerging mobile threats. With increasing mobile attacks and zero-day exploits, we need dedicated analysts to proactively protect our customers and expand detection coverage. As the analysts team has grown, this role now allows for broader coverage of emerging mobile threats and enables analysts to take on more diverse responsibilities. The expanded scope supports comprehensive threat research, detection development, and incident response, ensuring work is thorough, prioritized, and aligned with evolving security challenges.  

What you can expect to do in this role: 

• Research new ways to detect malicious activity on using a wide variety of custom-built tooling. 

• Participate on research how to protect users from 0-day attacks. 

• Perform analysis of detections according to the assignment to determine accuracy and precisions and tune detections accordingly based on results. 

• Stay up to date on the latest malware trends and design detections accordingly. 

• Support sales and marketing by timely information about emerging threats and trends. 

• Analyze device logs and search for malicious signs. 

• Write and manage detection patterns and algorithms to detect malicious mobile threats in Android and iOS devices. 

• Perform other duties and special projects as assigned. 

#LI-Hybrid 

What we are looking for: 

• Minimum 1-2 years of relevant professional experience.  

• Experience in extracting and analyzing data from mobile devices. 

• An understanding of cyber security and intrusion detection.  

• Excellent Python programming/scripting skills. 

• Mobile Malware Analysis expertise and strong interest in mobile security. 

• Great presentation skills and fluency in English. 

• Experience with detecting malware using Yara rules, an overall comprehensive understanding of incident response, a knowledge of using databases and writing queries (e.g. SQL, KQL) and ability to find and run a mobile exploits are a plus. 

• Customer value focus with the ability to quickly iterate based on emerging threats and customer feedback is a plus. 

Why Jamf? 

• We are progressive but laid back. You are free to be a yourself and work how you work best. Here, you manage your own day and your own work style. 
• Named a 2024 PEOPLE Companies That Care by PEOPLE® and Great Place To Work®.
• You will have the opportunity to work with a small and empowered team where the culture is based on trust, ownership, and respect.
• Visit our Jamf Engineering blog to learn more about the innovative projects our team is working on and what we learn from each challenge we solve. A blog written by engineers, for engineers at medium.com/jamf-engineering 

Responsible for helping with Mobile Forensics sales across EMEIA. Responsible for growing pipeline in all the regions across EMEIA. Support regional Jamf channel and sales teams on MF opportunities & also leading customer meetings, demos, POCs until deal closure. Representing Jamf at trade shows and events to further develop regions and to grow pipeline. Focus on maintaining relationships with the existing MF partner network. Working with key strategic existing accounts to prevent churn, to ensure customers are best utilising the tool and see the most value from the tool. Relationships with Product and R&D to ensure being fully abreast of product changes and recent security findings, to ensure these are correctly cascaded to new and existing customers & the partner network.

This role is offered as hybrid, with the expectation to be in the office 3 days per week. We are only able to accept applications for those based in the UK and have sponsorship to live and work in the UK. #LI-Hybrid

What you’ll do at Jamf:

1. Sales Execution

• Own pipeline generation and deal closure across EMEIA, with a clear focus on hitting annual targets.
• Lead customer meetings, demos, and POCs through to closure.
• Represent Jamf at key cybersecurity events and trade shows across the region.

1. Strategic Deal & Account Management

• Own or provide structured support for major security opportunities across EMEIA.
• Partner with KAMs, IEAEs, and SEs to strengthen Jamf’s security narrative and value proposition.
• Maintain close relationships with key accounts to drive retention, expansion and TARR growth.

1. Cross-Functional Collaboration

• Stay aligned with Product and R&D on the security roadmap and relevant threat intelligence.
• Collaborate with CS, Professional Services, and Marketing on pipeline, customer success and events.
• Champion Jamf’s security portfolio internally across the sales organisation.

1. Partner & Channel Enablement

• Nurture and develop the regional security partner network through enablement, training and strategic alignment.
• Identify and onboard new partners with strong cybersecurity or public safety credentials.

1. Market Intelligence & Competitive Positioning

• Monitor the competitive landscape across cybersecurity, endpoint and mobile security.
• Stay informed on key security incidents and threat trends relevant to Jamf’s customers.

SUCCESS MEASURES (KPIs)

• Achieve yearly GARR & TARR targets and contribute to a healthy, growing pipeline.
• Active involvement in top EMEIA opportunities; reduce sales cycle and improve conversion rates.
• Strong partner engagement and enablement outcomes across the region.
• Consistent cross-functional collaboration with Sales, CS, Channel, R&D, Product, PS and Marketing.

What we are looking for (required):

• 8+ years of experience in enterprise sales experience with a strong cybersecurity background.
• Proven track record selling security solutions — e.g. endpoint security, EDR, SIEM, mobile security, MDM, or cloud security.
• Ability to engage and influence C-level stakeholders (CISO, CIO, CTO, Heads of Risk/Compliance).
• Experience operating in a matrixed, cross-functional sales environment with a high degree of autonomy.
• Excellent communicator and storyteller, effective in front of customers and at external events.
• Multi-geography sales experience, ideally across multiple EMEIA markets.
• Strong commercial acumen and analytical skills.

Preferred / Beneficial

• Experience in mobile security or mobile forensics; familiarity with tools such as Cellebrite is a plus.
• Existing relationships with cybersecurity partners, resellers or government/law enforcement customers in EMEIA.
• Understanding of the Apple enterprise ecosystem and Jamf’s position in MDM and device security.
• Comfortable running technical demos
• Experience presenting at industry events or contributing to GTM and marketing materials.

How we help you reach your best potential:

• Named a 2025 Best Companies to Work For by U.S. News

• Named a 2025 Newsweek America’s Greatest Workplaces for Gen Z

• Named one of Forbes Most Trusted Companies in 2024

• Named a 2024 Newsweek America’s Greatest Workplaces for Parents & Families

• Named a 2024 PEOPLE Companies That Care by PEOPLE® and Great Place To Work®

• We offer a clear and defined sales career path. Our main goal is to help you successfully step into our Account Executive role, but there are many ways to advance your career at Jamf.

• We train and then we give you the room to grow. Our Jamfs can explore the vertical career path, as well as the horizontal, to discover new interests and opportunities.

• You don’t have to be a techie to be a Jamf. Our best-in-class sales focused Bootcamp training provides you with the technical and product knowledge required to confidently talk with customers about Jamf.

• We set achievable targets, help each other out, and share best practices across the team.

• You will have the opportunity to make a real and meaningful impact for more than 75,000 global customers with the best Apple device management solution in the world.

540 is seeking a DevSecOps Engineer to support the DoW in building a next-generation Air Force aircraft maintenance platform. This platform leverages Kubernetes, Docker, Google Cloud, and Apigee. DevSecOps Engineers on this team architect and maintain secure, scalable infrastructure within a high compliance environment, with a primary focus on automation and security. This platform will modernize how Air Force maintainers plan and execute maintenance and is a key part of the Air Force’s technology strategy for the coming decade.

In this role, you will design, implement, and maintain secure CI/CD pipelines, infrastructure, and platform services that enable reliable and compliant system delivery. You will work closely with engineers, architects, and cybersecurity stakeholders to integrate security throughout the development lifecycle and ensure systems are scalable, resilient, and secure within highly regulated, high-impact environments.

Location: Remote within the continental United States
Citizenship & Clearance Requirement: per client requirements, candidates must be a U.S. Citizen with an active DoW Secret clearance or eligibility
Education Requirement: Bachelor’s Degree in Computer Science or related engineering field (preferred)
540 Internal Thrive Level: DevSecOps Engineer III

WHY 540?

540 is a forward-thinking company that the government turns to in order to #getshitdone. We don’t just talk about innovation – we deliver it. We break down barriers, build impactful technology, and solve mission-critical problems.

HOW YOU’LL DRIVE IMPACT

• Design, build, and maintain secure CI/CD pipelines supporting cloud-native applications and services
• Implement Infrastructure as Code using tools such as Terraform to provision and manage cloud resources
• Integrate security controls and best practices into the software development lifecycle (DevSecOps)
• Support deployment and operation of containerized workloads and cloud-native data pipelines
• Collaborate with engineers and architects to implement scalable, secure, and resilient system designs
• Automate build, test, and deployment workflows across multiple environments
• Support vulnerability management, remediation, and secure configuration practices
• Implement and maintain cloud security controls, identity management, and access policies
• Monitor system performance, reliability, and security posture across environments
• Contribute to technical documentation, runbooks, and system configurations
• Work with cross-functional teams to ensure delivery aligns with mission needs and compliance requirements

REQUIRED SKILLS & EXPERIENCE

• 5+ years of experience in DevOps or DevSecOps engineering roles
• Experience working with Google Cloud Platform (GCP) or similar cloud environments 
• Strong experience building and maintaining CI/CD pipelines
• Experience with Infrastructure as Code (Terraform or similar tools)
• Experience with containerized environments (Kubernetes, Docker)
• Understanding of DevSecOps principles and secure software development practices
• Experience with cloud networking, identity, and access management concepts
• Experience working with Linux-based (Red Hat) systems 
• Experience with Public Key Infrastructure (PKI)
• Familiarity with vulnerability management and secure configuration practices
• Strong problem-solving and troubleshooting skills
• Excellent communication skills and ability to collaborate across teams
• CompTIA Security+ certification required (or ability to obtain within 30 days of hire) 

NICE TO HAVE

• Google Cloud certifications such as Professional Cloud DevOps Engineer or Professional Cloud Security Engineer
• Experience with PostgreSQL, Memcached, Redis, RabbitMQ, MongoDB, and Elasticsearch
• Familiarity with DevSecOps tools for security scanning and compliance automation
• Experience with API management platforms or service integrations (Apigee preferred)
• Experience working in DoD or other regulated federal environments
• Familiarity with RMF, NIST 800-53, or security compliance frameworks
• Experience with STIGs and securing systems in classified or high-security environments

BENEFITS & PERKS

• Flexible PTO + all Federal holidays off
• Health, dental and vision insurance plans
• Flexible Spending Account (FSA)
• 401k with employer match
• Company-sponsored life insurance, short- and long-term disability 
• Professional development (training, certifications, conferences)
• Paid cloud developer accounts
• Referral bonuses
• HQ office perks (parking / metro reimbursement, nitro coffee & lunches)
• Annual social events (540 Week, hackathon, charity golf tournament, etc.)
• Access to 540’s Washington Capitals & Nationals tickets

EQUAL EMPLOYMENT OPPORTUNITY (EEO)

540's policy is to provide equal employment opportunity to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training. 

Pinterest’s Security team is seeking an experienced Security Software Engineer to help keep our 619 million monthly active users safe from real-world threats. You will build tooling, product enhancements, and work with teams to improve our overall security posture and enhance our secure development lifecycle. We are looking for a candidate with a passion for security and innovation, who will research and develop new solutions to secure our products.

What you'll do:

• Design and build out our rules, processes, and platform for our secure development lifecycle.
• Deliver and review code that is well-documented, tested, and operable.
• Work cross function to architect scalable and secure solutions to a variety of Pinterest’s problems.
• Conduct regular security assessments including design reviews.
• Help rework our existing controls to address increased productivity due to AI and new AI threats.

What we’re looking for:

• Bachelor’s degree in Computer Science, Engineering, or a related field, or equivalent experience.
• 5+ years of experience in product security, application security, or security related software engineering role.
• Enthusiasm for the constant fight to ensure security and privacy.
• Proficiency in a dynamic programming language such as Python.

In-Office Requirement Statement: 

• We recognize that the ideal environment for work is situational and may differ across departments. What this looks like day-to-day can vary based on the needs of each organization or role.
• This role will need to be in the office for in-person collaboration 1-2 times every 6-months and therefore can be situated anywhere in the country. 

Relocation Statement:

• This position is not eligible for relocation assistance. Visit our PinFlex page to learn more about our working model.

#LI-REMOTE

#LI-JT1

Pinterest’s Security team (Pinfosec) is seeking an experienced Vendor Security Analyst to conduct assessments of our vendors and help drive vendor and third-party security initiatives to keep our users, employees, and infrastructure safe from third-party security risk. You will have the opportunity to support the improvement of our vendor security program and GRC initiatives and provide meaningful impact in minimizing risk for Pinterest. You’re passionate about security innovation, and able to vet third-party solutions while minimizing employee friction and maximizing productivity.

What you’ll do:

• Perform vendor security assessments in order to minimize risk from third-party services
• Support the Vendor Security lead to Maintain and improve the vendor security program while working closely with Security, Legal, IT and other internal stakeholders
• Ensure vendor security issues are identified, communicated, and remediated to an acceptable level of risk
• Act as the SME for High Priority Vendor Security Reviews (e.g. AI related tooling)
• Interface with other teams and take a leadership role in driving vendor security initiatives
• Manage the MSSP for Vendor Security when the Vendor Security Lead is unavailable
• Act as the Vendor Security SME for the Onspring Risk Register and manage the maintenance and updating of Vendor Security related exceptions
• Support Pinterest’s Security Governance, Risk & Compliance program on an ad hoc basis such as; Be responsible for the monthly review and maintenance of security awareness training metrics, assist in the update of security policies from time to time, assist in the audit evidence gathering for SOC 2 Type 2 compliance as required, assist in the completion of security questionnaires from Pinterest’s advertisers
• You will be required to have a thorough understanding of security concepts, but you will not need to have coding experience

What we are looking for:

• 3+ years experience performing vendor security risk analysis for new and existing vendors
• Experience supporting the design, management, and building of security programs and best practices
• Familiarity with compliance frameworks (e.g. PCI, GDPR, SOC2, ISO27001, NIST CSF)
• Good understanding of various security domains
• Strong sense of ownership and comfortable with autonomy and ambiguity
• Great communicator who is comfortable leading meetings and audit type interviews with vendors
• Bachelor’s degree in a relevant field such as Computer Science, Engineering, or other cognitive function, or equivalent experience

In-Office Requirement Statement:

• We let the type of work you do guide the collaboration style. That means we're not always working in an office, but we continue to gather for key moments of collaboration and connection.
• This role will need to be in the office for in-person collaboration 1-2 times/quarter and therefore can be situated anywhere in the country. 
  
  

Relocation Statement:

• This position is not eligible for relocation assistance. Visit our PinFlex page to learn more about our working model.
  
  

 #LI-HYBRID

#LI-AH2

We’re looking for a Security Software Engineer to join our Security Operations team. In this role, you’ll build and improve the systems, automation and operational workflows that help keep Pinterest secure day to day. You’ll work across security and engineering to deliver reliable, production-ready solutions, build secure paved paths and improve how sensitive infrastructure and resources are managed across Pinterest. This role offers broad exposure across cloud security, access management, automation and secure infrastructure, with opportunities to partner with many teams and work on a wide range of technical problems.

What you’ll do:

• Build, maintain and improve security tooling, automations and services that support Security Operations.
• Write production-ready code, infrastructure-as-code and technical documentation with a high bar for quality and reliability.
• Improve security workflows such as access controls, cloud guardrails, service hardening and inbound security requests.
• Partner with engineers and cross-functional stakeholders to identify gaps and deliver practical security solutions.
• Troubleshoot production issues, improve runbooks and help maintain healthy, reliable systems.
• Contribute to technical designs, project plans and retrospectives, while clearly communicating progress, risks and blockers.
• Use AI to speed up repeatable engineering work such as prototyping, documentation and code improvements, while validating quality and correctness.
• Use AI to summarize operational signals, surface patterns and reduce manual toil, while protecting sensitive data and maintaining accountability for final outputs

What we're looking for:

• Experience in cloud, security, and/or software engineering including building and operating production services, automations or internal tools.
• Experience in cloud infrastructure and infrastructure-as-code, especially in environments such as AWS and Terraform.
• Experience in writing and reviewing production-quality code, debugging issues and delivering reliable solutions with clear documentation.
• Experience in operational security, platform security or security engineering work such as access management, cloud security, service hardening or security tooling.
• Experience working independently on projects with clear goals, breaking work into milestones and communicating progress and tradeoffs to teammates and stakeholders.
• Demonstrated ability to use AI to improve speed and quality in day-to-day engineering work, while maintaining strong judgment and verification practices.
• Strong track record of critically evaluating AI-assisted output through testing, validation, source-checking or peer review before shipping work.
• Bachelor’s degree in Computer Science, Engineering or a related field, or equivalent experience.

In-Office Requirement Statement: 

• We recognize that the ideal environment for work is situational and may differ across departments. What this looks like day-to-day can vary based on the needs of each organization or role.
• This role will need to be in the office for in-person collaboration 1-2 times every 6-months and therefore can be situated anywhere in the country. 

Relocation Statement:

• This position is not eligible for relocation assistance. Visit our PinFlex page to learn more about our working model.

#LI-REMOTE

#LI-JT1

We are looking for a Security Engineer to join the Enterprise Security team within the overall Security organization at Recorded Future. This individual will be primarily responsible for maintaining and uplifting the security stack utilized by the security team, with emphasis on a Splunk environment. The individual should also be comfortable developing creative solutions to engineering-related problems in order to best equip the security team to manage enterprise-wide security of Recorded Future.

What You'll Do:

• Deploy, configure, and maintain the Splunk environment to help the internal security team effectively manage security threats and risks
• Work cross-functionally to support other tech stack owners in the configuration and maintenance of security-centric tools (e.g. ELK, IAM tools, DLP technologies)
• Architect, build, and expand on existing solutions to solve challenging problems
• Develop dashboards, design data models, and deliver analysis of security logs in order to ensure the security of the Recorded Future enterprise

What You'll Bring:

• 3+ years of experience with deployment, configuration and troubleshooting of SIEM appliances, (Splunk)
• Experience operating within a CSIRT or SOC environment
• Experience with Cribl is a Plus
• Hands-on ability to manage distributed Splunk cluster infrastructure and all related components
• Experience administering a Splunk environment consisting of search heads, indexers, deployers, deployment servers, universal forwarders, clustering and Splunk IT Service Intelligence for access, performance, and operational roles.
• Good knowledge of Splunk SPL and visualizations to identify anomalies and trends
• Ability to define and onboard new data sources into SIEMs/Splunk
• Scripting skills with languages such as Perl, Bash, Python to develop custom code when needed
• Ability to diffuse large sets of data and information into actionable recommendations for the security team and leadership
• Strong problem-solving and analytical skills
• Time management and organizational skills
• Willingness to travel 10%

Recorded Future is looking for a Security Engineer, Product Security to be a vital member of the Product Security team, dedicated to supporting all facets and functions of Product Security across Recorded Future. This role is highly collaborative and technical, demanding a proactive approach to embedding security throughout the product development lifecycle and operational processes. The core mission is to safeguard our product and infrastructure through a blend of preventative design, responsive investigation, and continuous improvement of security controls.

What You’ll Do:

• Design and Implement Security Solutions: Take ownership of designing, building, and deploying robust, scalable security solutions and infrastructure components. This involves selecting, configuring, and integrating security tools and technologies that enhance the overall security posture of our products and platform, ensuring security is "baked in," not "bolted on."
• Threat Detection and Response: Actively participate in the monitoring, investigation, and triage of complex security alerts and incidents. You will be responsible for developing, writing, and continuously fine-tuning automated alert systems and detection rules (e.g., in SIEM/SOAR platforms) to improve signal-to-noise ratio and accelerate the response time to potential threats.
• Security Architecture and Design Review: Serve as a security subject matter expert during the product development process. Conduct comprehensive security reviews, threat modeling, and risk assessments for all proposed new features, architectural changes, and major system updates. Provide actionable feedback to engineering teams to ensure designs meet stringent security standards and comply with internal policies and external regulations.
• Engineering Collaboration and Guidance: Work hand-in-hand with software engineers, DevOps teams, and product managers across the organization. You will offer expert security guidance, answer complex security-related questions, troubleshoot implementation issues, and mentor engineers on secure coding practices and security design principles, fostering a culture of security awareness.
• Platform Security Team Participation: Contribute to the Platform Security team's daily operational tasks, including maintaining security documentation, managing security-related tickets, participating in on-call rotations as required, and driving initiatives to improve team processes and efficiency.

What You’ll Bring:

• 3+ years of proven relevant professional experience
• Strong foundational knowledge of computer security principles
• Background in coding/scripting is desired, preferably Go and/or Python
• Cloud security knowledge is desired, preferably AWS or GCP
• A keen interest in finding and balancing security needs with developer productivity
• Excellent communication skills and the ability to effectively build relationships across different teams
• A strong ability to assess risks and make informed decisions
• Proficient in network protocols, including TCP/IP, HTTP, REST, and GraphQL

We are seeking a highly experienced and technically proficient SDLC Architect to join our Product Security team. This critical role is centered on designing, defining requirements for, and leading the implementation of a world-class Software Development Lifecycle (SDLC) process with a paramount focus on security. Our objective is to embed security seamlessly and efficiently into every phase of development, from initial concept to deployment and beyond. The primary focus of this position is to work with our Secure SDLC. This involves a deep partnership with engineering, product management, and operations teams to ensure that security is a consistent and non-negotiable requirement throughout the product development pipeline.

What You’ll Do:

• SDLC Design and Optimization: Design, document, and champion an end-to-end Secure SDLC that aligns with industry best practices, regulatory requirements, and the specific needs of our product portfolio.
• Security Automation and Tooling: Identify, evaluate, and integrate security tools and controls (e.g., SAST, DAST, SCA, IAST, secret scanning) directly into the CI/CD pipelines to automate security gates and checks.
• Balancing Security and Velocity: The core goal is to build an SDLC that expertly maximizes developer productivity and agility while simultaneously ensuring that all security requirements placed upon our products—including data protection, compliance, and threat mitigation—are consistently met and verifiable.
• Requirement Definition: Translate high-level security policies and risk management objectives into clear, actionable, and testable technical requirements for development teams.
• Developer Enablement: Develop and deliver training, guidelines, and documentation to empower developers to write secure code from the outset, adopting a "Security as Code" mindset.
• Collaboration and Reporting: This role requires close collaboration with all engineering disciplines and involves participation in the Platform Security team's daily operations, including incident response and threat modeling as needed.
• Reporting Structure: This vital role reports directly to the Director of Platform Security, who is based in our Gothenburg office.

What You’ll Bring:

• 3+ years of relevant professional experience
• Proven background in software development, specifically in designing and implementing robust SDLC processes and CI/CD pipelines
• Solid expertise in computer security principles
• A strong ability to assess risks and make informed decisions
• A keen interest in finding and balancing security needs with developer productivity
• Excellent communication skills and the ability to effectively build relationships across different teams

We are seeking a highly motivated and technically proficient PKI Engineer to become a core member of the Product Security team, a vital component of the broader Security organization at Recorded Future. This critical role is based in our Gothenburg office and will be absolutely instrumental in securing our global cloud infrastructure. The successful candidate will take ownership of the design, development, deployment, and ongoing management of our internal Public Key Infrastructure (PKI), ensuring it meets the highest standards of security, availability, and scalability for all our cloud-native environments. This is a foundational role that directly impacts the security posture of our product and the integrity of our data.

What You’ll Do:

This is a key, hands-on engineering role with a strong emphasis on automation and operational excellence. Your primary responsibilities will include:

• Designing and Implementing Automated Certificate Lifecycle Management (CLM): You will be responsible for developing and maintaining robust, highly automated solutions for the entire certificate lifecycle—from issuance and renewal to revocation and deployment. This includes leveraging tools and scripting to integrate CLM seamlessly with our existing cloud orchestration and configuration management systems.
• PKI Architecture and Governance: You will actively contribute to the architectural evolution of our internal Certificate Authorities (CAs) and related trust stores. You will ensure the PKI design and its operational practices strictly adhere to both Recorded Future's rigorous internal security policies and industry best practices and regulatory requirements (e.g., NIST, ISO 27001).
• Subject Matter Expertise and Consultation: You will serve as the primary Subject Matter Expert (SME) for all things PKI and cryptography across the organization. This involves providing high-level consultation and technical guidance to engineering, platform, and development teams on secure key management, certificate usage, transport layer security (TLS/SSL), and digital signing.
• Operational Support and Troubleshooting: You will troubleshoot and resolve complex, high-impact certificate-related issues across our production and development environments, often requiring deep-dive analysis into network traffic, application logs, and CA infrastructure.
• Security Tooling and Integration: Research, evaluate, and integrate modern security tooling related to PKI, hardware security modules (HSMs), and secrets management to enhance the security and efficiency of our operations.
• Platform Security Team Participation: In addition to core PKI duties, this role involves active participation in the Platform Security team's daily operations, including participating in on-call rotations, security incident response activities, and broader platform-related security projects. This collaboration ensures a cohesive and secure platform foundation.

What You’ll Bring:

• 3+ years of proven relevant professional experience
• Strong foundational knowledge of computer security principles
• In-depth knowledge in PKI concepts, protocols (e.g., OCSP, CRL, SCEP, EST), and certificate management
• Demonstrated experience with cloud-based PKI services, such as AWS Certificate Manager (ACM)
• Experience working with HashiCorp Vault is a plus
• A proactive and enthusiastic approach to learning new technologies
• Strong communication skills
• A background in coding/scripting is a plus

Marksman Security 

Now Hiring for

Flex Officers!

Must be able to work a flexible schedule

Pay: $18.50/hr

Bowling Green, OH Area

Ideal candidates will have previous experience as a security officer, security guard, and/or other safety and protection related fields, including customer service roles.

Responsibilities:

• Acknowledge and greet all guests with utmost courtesy and urgency, moving out from behind the door to assist guests
• Process visitors and announce their presence to residents / owners / offices
• Check identification, and ensure proper authorization is granted prior to giving access. 
• Complete daily activity logs and incident reports when emergencies arise
• Monitor CCTV and alarm systems
• Maintain awareness and familiarity with the site-specific operations and post orders
• Issue visitor passes
• Document and maintain log of visitor’s vehicle
• Patrol assigned location/facility as needed
• Monitor and or detect any suspicious behavior to assist in the prevention of vandalism, theft and or other criminal behavior
• Other job duties to be determined by manager

Qualifications:

• At least 21 years of age or older
• High school diploma or equivalent
• Valid state security license/ certificate
• Strong computer skills
• Professional demeanor and appearance
• Strong customer service skills
• Strong communication skills (verbal and written)
• Must be able to multitask and prioritize assigned tasks
• Demonstrated experience working as a security officer
• Residential security experience is  a PLUS!
• Previous experience in access control and or CCTV camera systems

Benefits:

• Insurance: medical, vision and dental
• Short term disability
• Critical care/Hospital Indemnity
• Complimentary life insurance
• Pet insurance
• Legal assistance/guidance
• Identity theft protection
• Paid on the job training
• Paid time off 
• Bi-Weekly Pay
• Competitive compensation
• Career advancement opportunities
• Continuous learning opportunities through LMS
• Employee referral bonus program
• Employee assistance program (EAP)
• Employee recognition events
• Employee performance incentives/rewards
• Professional growth and development opportunities

#IND2

Please note that we do not offer visa sponsorship for this position.

Email is the number one attack vector and here, you’ll be the trusted expert who takes our defenses to the next level.  In this hands-on role, you’ll architect and refine cutting-edge security controls using the latest in Proofpoint, Microsoft Office 365, Exchange Online Protection, and Microsoft Purview DLP to stay ahead of phishing, business email compromise, and data loss threats.  You’ll have the freedom to innovate, experiment with new solutions, and champion fresh ideas that drive real results.

Grow your skills and make a difference.  Our team thrives on collaboration and knowledge-sharing, and we believe in leading by example.  You’ll automate successful strategies, quickly adapt from lessons learned, and help shape our security roadmap.  Leaders here empower you to test new approaches and encourage ongoing personal and professional development, so your contributions will have a direct and meaningful impact.

Join a culture built on purpose and progress.  We keep things simple: Do good. Be good. Make good.  You’ll be supported by a team that values thoughtful experimentation and growth, ensuring your work matters for our organization and for your career.

This position currently offers an onsite work schedule, with the expectation that you are in the office four (4) days per week during onsite core days. Our current onsite core days are Monday, Tuesday, Wednesday, and Thursday.  The work schedule type and core days are subject to change with advance notification and manager discretion.

Essential Duties and Responsibilities

• Engineer and operate advanced email protections in Proofpoint and Microsoft Defender for Office 365 (including Exchange Online Protection, Safe Links/Safe Attachments, impersonation safeguards) with continuous tuning to cut false positives and boost catch rates.
• Engineer and operate Microsoft Purview DLP for Exchange Online.  Design classification labels and enforcement rules with defined exceptions to stop data exfiltration.  Use split tests and drift monitoring to sustain policy effectiveness.
• Harden trust and identity for mail: SPF/DKIM/DMARC strategy, DMARC enforcement and reporting, display name/VIP impersonation controls, external tag strategy, QR code phishing and Business Email Compromise patterns.
• Investigate and respond: lead deep-dive investigations on phishing campaigns; provide actionable post-incident improvements.
• Cross-team force multiplier: improve detections and execute response with Security Monitoring & Response, lock down access with IAM, ensure compliance fit with GRC, and make the fix stick with Security Architecture and Infrastructure.
• Automate and integrate: build playbooks and API/SOAR hooks for triage, enrichment, and response (e.g., auto-pull/recall, bulk purge, VIP watchlists, threat intel lookups).
• Measure what matters: define metrics (catch rate, FP rate, MTTD/MTTR for mail events, DLP signal quality) and share insights that drive roadmap priorities.
• Document and mentor: publish standards, playbooks, and quick-wins; coach peers, and champion secure-by-default patterns for email workflows.

Minimum Qualifications

• 5+ years in Information Security with 2+ years focused on email security engineering/operations.
• Hands-on experience with Proofpoint email security, including Targeted Attack Protection (TAP) and Threat Response Auto-Pull (TRAP); policy tuning; Data Loss Prevention integration; and quarantine workflows.  Proficiency with Microsoft Defender for Office 365 and Exchange Online Protection (EOP); configuring Safe Links and Safe Attachments; conducting advanced hunting; and performing header and mail flow troubleshooting. 
• Email DLP platform expertise (Microsoft Purview preferred).  Define and maintain the label taxonomy; tune rules and detectors including Exact Data Match (EDM) and regex; establish exception governance; and run testing at scale.
• Mail flow and identity depth across Exchange Online, connectors, transport rules, header analysis, and DNS; SPF/DKIM/DMARC design and enforcement; and vanity domain lifecycle for email: subdomain design and naming, DNS ownership and hygiene, third-party sender onboarding and alignment, and ongoing deliverability and blocklist monitoring.
• Strong scripting (PowerShell or Python), API/automation comfort, and a metrics-first mindset.
• Clear communication, able to turn complex findings into crisp recommendations for engineers, business stakeholders and leadership.

Nice to have:

• Certifications: CISSP, Proofpoint certifications, Microsoft SC-200 or SC-400.
• Experience: Brand Indicators for Message Identification (BIMI) and brand protection.  Experience with Security Orchestration, Automation, and Response (SOAR).  Exposure to email threat intelligence enrichment.

Benefits

• Your benefits start day one and are flexible and customizable to your and your family’s specific needs. Check out the BENEFITS of a Career at National Life!

What You Will Do: $22 per hour

Our Security Officers protect the Industrial or Commercial property of our clients against fire, vandalism and illegal entry. 

Our clients range from Class-A Office Buildings, Luxury Residential Properties, Distilleries, Fortune 500 Companies, Financial Institutions, Telecommunications, Manufacturing/Industrial Factories, Hospitals and many others. 

Requirements:

• High School diploma or General Education Degree (GED)
• Minimum of 18 years of age
• Ability to pass criminal background check and drug test
• Must have valid commissioned (armed) security license 

Same Day Offers: interview with the hiring team and receive an offer to join us the same day!

• Extensive Training: Our initial training paves the way for you to earn your Security Officer Certification. Walden Security has been recognized by Training Magazine as a Top 100 Award Winner which is awarded to companies with the most successful learning and development programs in the world!
• Unbelievable PERKS!: Save on phone, vacation, auto, retailers and more!
• Tuition Reimbursement: we believe in the professional development of our team members and provide annual reimbursement opportunities.
• Employee Family Scholarship: To date, Walden Security has awarded more than $300,000 in Employee Family Scholarships!
• Paid Time Off: offered to employees that average at least 32 hours per week
• Medical, Dental and Vision Insurance: multiple plan options for you and your dependents
• Health Savings Account: pay for health care more easily
• Voluntary Life Insurance: affordable plans available
• 401K: prepare for your retirement
• Employee Assistance Program: we offer free, confidential assistance for many of your life’s needs
• Employee Recognition Programs: we believe in celebrating the “wins” with our Walden Security team. We reward the hard work and dedication of our employees through Tenure Recognition, On-The-Spot Bonuses, Officer of the Month and Officer of the Year recognitions which include awards and bonuses
• Culture of Caring: Walden Security supports many charitable organizations
• Award Winning Company: Walden Security has earned significant recognition for our better working environment for our officers, better service to our customers and a dedication to quality performance standards.
• Promote From Within Philosophy: Walden Security offers growth  opportunities for our team members who are Setting the Standard by Setting the Example®
• Flexible Schedules: We offer flexible scheduling with multiple shifts available including First, Second, Third and Weekend Shifts
• Competitive Pay!

Titan Security is currently hiring Security Officers to work afternoons in Battle Creek, Michigan. 

Responsibilities include:

• Maintain Visibility: Ensure high visibility by periodically stopping and patrolling different areas of the lot to deter criminal activity.
• Access Control / Verify Credentials: Ensure that individuals attempting to enter the facility have proper identification and access passes, such as badges, cards, or visitor passes.
• Surveillance: Continuously monitor CCTV cameras placed around the gate area to identify suspicious activities, unauthorized entry, or any security breaches.
• Monitor Entry and Exit Points: Ensure that only authorized personnel and vehicles are entering or exiting the lot by checking identification, vehicle registration, or other access control protocols.
• Log Entries and Exits of Trucks: Keep a detailed log of all trucks entering or leaving the premises, including company name, driver name, truck ID number, cargo type, and delivery or pick-up details.
• Observe for Security Threats: Watch for suspicious behavior, loitering individuals, or any signs of illegal activities such as theft, vandalism, or drug use.
• Incident Reporting: Immediately report any security breaches, safety hazards, or emergencies to the appropriate authorities or management, and document the incident thoroughly.
• Other duties as assigned.

Qualifications:

• Must be at least 18 years of age.
• Must have a valid driver's license.
• High School diploma or general education degree (GED).
• Able to pass pre-employment drug screen and criminal background check.
• Previous experience in security is preferred.

Pay and Benefits:

• Starting pay is $16.50 per hour.
• Paid time off and paid holidays!
• Opportunities for career growth and promotion!
• Medical, dental, and vision benefits!
• Pension/Retirement 401K benefits!
• Skills-enhancing training

EOE/M/F/D/V

#HP

About The Team 

The Roku trust engineering team is a close knit group of professionals with a passion for information security.  Our mission is to protect our customers, partners, devices, services, infrastructure, and data. We work collaboratively, sharing insights and expertise to stay ahead of the curve. Join us, and you’ll be part of a dynamic team that thrives on challenges and celebrates victories together. 

About The Role  

As a Senior Security Engineer on the Trust Cloud team, your role involves evaluating, architecting, designing, and implementing end-to-end security controls to impact the global user base. A key focus is on developing automated, scalable security solutions to enhance efficiency and protect Roku. This position requires a broad breadth of security expertise across all disciplines of security, including networking, DevSecOps, security tooling implementation, policy and procedure, risk evaluation, etc. 

What You Will Be Doing 

• Conducting enterprise, network, and application level security reviews.
• Conducting threat modelling for infrastructure, platform, and application initiatives.
• Planning and overseeing execution of security initiatives and projects
• Partnering with infrastructure, platform, and application teams to embed security into application architectures and deployment workflows as part of a robust Secure Software Development Lifecycle (SSDLC).
• Improving IAM policies, network configurations, DNS security, and cloud resource management practices.
• Designing and implementing integrations with third-party security platforms to automate vulnerability management, secure secret handling, and cloud posture monitoring, ensuring findings are actionable and seamlessly integrated into engineering workflows.
• Responding to security incidents to triage, contain, remediate, and report.
• Leveraging AI to accelerate your learning and enhance your work products.
• Driving security initiatives end-to-end — from identifying risks to delivering solutions — with high autonomy in a fast-moving environment.
• Automating vulnerability detection, misconfiguration checks, and compliance validation across cloud and containerised environments.
• Creating reusable security automation modules, templates, and patterns for engineering teams to adopt. 

We're Excited If You Have

• Experience doing security consulting and have balanced experience doing hands on implementation
• Experience supporting/leading DevSecOps initiatives and assisting teams in utilising and onboarding onto DSO platforms
• Designing, building, operating, and maintaining DSO platforms through IaC
• Offensive cyber operations such as application, system, and network level penetration testing
• Software Engineering experience with at least one general purpose programming language (ex. Python, Golang, C, Rust, etc.)
• Developed and/or implemented data tagging, data catalogs, or other data protection related activities
• Experience designing and administering enterprise identity and access management solutions at scale (ex: AD, EntraID, Okta, etc)
• Experience securely running and operating web applications, web services, and service-oriented architecture in production environments.
• A proven track record of deploying and operating Kubernetes clusters in production.  
• Experience deploying and operating infrastructure in multiple cloud providers (AWS, GCP, Azure)
• Fleet administration of Linux workstations and servers
• Defensive cyber operations such as operating a SEIM, managing a SOC, or leading cyber investigations 

#LI-am3

As a Sr. Cybersecurity Engineer (CSfC), you’ll design and implement compliant Commercial Solutions for Classified (CSfC) architectures with the goal to deliver secure, mission-critical capabilities across the federal government. Our team is responsible for engineering and operating high-assurance classified environments, and you’ll play a key role in strengthening, scaling, and hardening these solutions while contributing immediately in tightly controlled, high-pressure operational environments.

We know that you can’t have great technology services without amazing people. At MetroStar, we are obsessed with our people and have led a two-decade legacy of building the best and brightest teams. Because we know our future relies on our deep understanding and relentless focus on our people, we live by our mission: A passion for our people. Value for our customers.

If you think you can see yourself delivering our mission and pursuing our goals with us, then check out the job description below!

What you’ll do:

• Design and implement Commercial Solutions for Classified (CSfC) Data-at-Rest (DAR) and Data-in-Transit (DiT) architectures in compliance with NSA CSfC capability package requirements.
• Engineer, integrate, and validate CSfC components including encryption, tunneling, and cross-domain protected solutions.
• Perform solution validation and compliance activities against NSA CSfC requirements, STIGs, and applicable security controls.
• Support secure operations, continuous monitoring, and incident response within classified and high-security environments.
• Integrate and operate SIEM and security monitoring tools to ensure visibility, detection, and rapid response to security events.
• Participate actively in Agile execution, technical design reviews, and security architecture discussions.
• Troubleshoot complex security, networking, and encryption issues across tightly controlled environments.
• Communicate complex security architectures, risks, and mitigation strategies clearly to technical teams and government stakeholders.
• Contribute immediately with minimal ramp-up while operating with precision, discipline, and accountability in mission-critical environments.
• Establish and maintain a high level of customer trust and confidence through technical excellence, operational reliability, and sound security engineering judgment.

What you’ll need to succeed:

• Active U.S. Government Issued Top Secret security clearance (or higher level classification).
• Required technical certifications include Security+ and CySA+ or GSEC.
• Possess DoD 8140 certification aligned to the 521 Cyber Defense Infrastructure Support Specialist work role, such as Security+, SSCP, CySA+, PenTest+, CASP+, GCIH, CISSP, or GSLC.
• 7+ years of experience in cybersecurity, including at least 3 years of direct hands-on experience implementing CSfC capability packages.
• Demonstrated expertise designing and implementing secure communications solutions that comply with NSA Commercial Solutions for Classified standards.
• Hands-on experience implementing CSfC capability packages and protection profile requirements.
• Hands-on experience creating compliant Data-at-Rest and Data-in-Transit architectures using layered commercial products.
• Operational experience implementing encrypted tunneling, key management, and secure transport mechanisms in classified environments.
• Experience supporting security monitoring and incident detection, including integration with SIEM platforms and performance and compliance analysis of the solution.
• Bachelor’s degree in Cybersecurity, Computer Science, or a related field is preferred. Relevant experience may substitute for education requirements.
• Ability to contribute immediately with minimal ramp-up in a mission-critical operational environment.

This position is designated as essential personnel supporting continuity of operations and may require work during government shutdowns, emergencies, or other critical situations.

SALARY RANGE:  $184,000 - $315,000

The salary range for this position is determined based on qualifications, skills, and relevant experience. The final salary offered will be determined based on several factors including: 

• The candidate's professional background and relevant work experience
• The specific responsibilities of the role and organizational needs
• Internal equity and alignment with current team compensation
• This role is also eligible for additional compensation, subject to the terms and policies of MetroStar, which may include:
• Performance-based bonuses
• Company-paid training and/or certifications
• Referral bonuses

As a Sr. CSfC Cybersecurity Engineer II , you’ll design and implement compliant Commercial Solutions for Classified (CSfC) architectures with the goal to deliver secure, mission-critical capabilities across the federal government. Our team is responsible for engineering and operating high-assurance classified environments, and you’ll play a key role in strengthening, scaling, and hardening these solutions while contributing immediately in tightly controlled, high-pressure operational environments.

We know that you can’t have great technology services without amazing people. At MetroStar, we are obsessed with our people and have led a two-decade legacy of building the best and brightest teams. Because we know our future relies on our deep understanding and relentless focus on our people, we live by our mission: A passion for our people. Value for our customers.

If you think you can see yourself delivering our mission and pursuing our goals with us, then check out the job description below!

What you’ll do:

• Design and implement Commercial Solutions for Classified (CSfC) Data-at-Rest (DAR) and Data-in-Transit (DiT) architectures in compliance with NSA CSfC capability package requirements.
• Engineer, integrate, and validate CSfC components including encryption, tunneling, and cross-domain protected solutions.
• Perform solution validation and compliance activities against NSA CSfC requirements, STIGs, and applicable security controls.
• Support secure operations, continuous monitoring, and incident response within classified and high-security environments.
• Integrate and operate SIEM and security monitoring tools to ensure visibility, detection, and rapid response to security events.
• Participate actively in Agile execution, technical design reviews, and security architecture discussions.
• Troubleshoot complex security, networking, and encryption issues across tightly controlled environments.
• Communicate complex security architectures, risks, and mitigation strategies clearly to technical teams and government stakeholders.
• Contribute immediately with minimal ramp-up while operating with precision, discipline, and accountability in mission-critical environments.
• Establish and maintain a high level of customer trust and confidence through technical excellence, operational reliability, and sound security engineering judgment.

What you’ll need to succeed:

• Active U.S. Government Issued Top Secret security clearance (or higher level classification).
• Required technical certifications include Security+ and CySA+ or GSEC.
• Possess DoD 8140 certification aligned to the 521 Cyber Defense Infrastructure Support Specialist work role, such as Security+, SSCP, CySA+, PenTest+, CASP+, GCIH, CISSP, or GSLC.
• 7+ years of experience in cybersecurity, including at least 3 years of direct hands-on experience implementing CSfC capability packages.
• Demonstrated expertise designing and implementing secure communications solutions that comply with NSA Commercial Solutions for Classified standards.
• Hands-on experience implementing CSfC capability packages and protection profile requirements.
• Hands-on experience creating compliant Data-at-Rest and Data-in-Transit architectures using layered commercial products.
• Operational experience implementing encrypted tunneling, key management, and secure transport mechanisms in classified environments.
• Experience supporting security monitoring and incident detection, including integration with SIEM platforms and performance and compliance analysis of the solution.
• Bachelor’s degree in Cybersecurity, Computer Science, or a related field is preferred. Relevant experience may substitute for education requirements.
• Ability to contribute immediately with minimal ramp-up in a mission-critical operational environment.

This position is designated as essential personnel supporting continuity of operations and may require work during government shutdowns, emergencies, or other critical situations.

SALARY RANGE:  $184,000 - $315,000

The salary range for this position is determined based on qualifications, skills, and relevant experience. The final salary offered will be determined based on several factors including: 

• The candidate's professional background and relevant work experience
• The specific responsibilities of the role and organizational needs
• Internal equity and alignment with current team compensation
• This role is also eligible for additional compensation, subject to the terms and policies of MetroStar, which may include:
• Performance-based bonuses
• Company-paid training and/or certifications
• Referral bonuses

Your Impact 

As a Senior Security Operations Engineer, you’ll play a key role in ensuring the reliability, performance, and scalability of our security infrastructure. You'll solve complex technical problems, improve our systems through thoughtful automation, and work closely with cross-functional teams to support our services as they scale. You’ll provide hands on execution capabilities for new initiatives in the Identity space, primarily to build out, maintain and support for PKI solutions at scale and provide auxiliary execution support for user identity and access management (IAM) initiatives. Your work will have a direct impact on uptime, efficiency, and the overall developer experience—contributing to our mission to deliver high-quality mission critical systems at speed.

What You’ll Do

Location: This role is based out of our Boston, MA office and follows a hybrid schedule. We rely on in-person collaboration and ask that team members work onsite Tuesdays through Fridays, with the flexibility to work remotely on Mondays, unless there is an approved workplace accommodation. We believe that connection fuels innovation, and our in-office culture is designed to foster meaningful teamwork, mentorship, and shared success.

Reports to: Manager, InfoSec Engineering
Direct Reports: 0

• Design, deploy, and operate PKI infrastructure supporting secure authentication, encryption, and certificate lifecycle management.
• Manage certificates, secrets, keys, and trust stores, including issuance, renewal, rotation, and revocation.
• Build, maintain, and secure Kubernetes clusters hosting PKI and secret management services.
• Automate PKI and secret management workflows using Infrastructure-as-Code, CI/CD pipelines, and Kubernetes-native tooling.
• Monitor and troubleshoot PKI, certificate, secret, and Kubernetes infrastructure issues, performing root cause analysis and remediation.
• Collaborate with other teams to integrate PKI and secrets management into cloud-native applications and services.
• Maintain operational documentation, runbooks, and disaster recovery procedures for PKI and Kubernetes environments.
• Ensure PKI and Kubernetes platforms meet security, reliability, and compliance requirements.
• Build and operate secure, reliable, and scalable PKI and secrets management infrastructure.
• Design and implement PKI solutions supporting 24x7 production and enterprise environments.
• Manage certificates, secrets, encryption keys, and access controls across Kubernetes-based platforms.
• Deploy, maintain, and secure Kubernetes clusters hosting PKI and secret management services.
• Automate certificate lifecycle, secret rotation, and infrastructure operations using CI/CD and Infrastructure-as-Code.
• Troubleshoot and resolve PKI, certificate, secret, and Kubernetes infrastructure issues.
• Collaborate with SRE, platform, and security teams to integrate PKI and secrets management into cloud-native services.
• Participate in on-call rotations, incident response, and operational improvement initiatives.
• Document PKI architecture, operational procedures, and security best practices

What You Bring

• 7+ years of experience in infrastructure, platform, SRE, or security engineering roles.
• Strong experience managing and securing Kubernetes clusters and containerized workloads in production environments.
• Hands-on experience with PKI platforms, certificate lifecycle management, secrets management, and encryption technologies.
• Experience operating cloud-native security solutions such as AWS KMS, Azure Key Vault, HashiCorp Vault, EJBCA, Smallstep, or Venafi.
• Strong understanding of Linux systems, networking, distributed systems, and Kubernetes security best practices.
• Experience with automation, scripting, Infrastructure-as-Code, and CI/CD pipelines for PKI and infrastructure operations.
• Familiarity with IAM and access management platforms such as Okta, Entra ID, Keycloak, or similar solutions.
• Experience with monitoring, logging, alerting, and troubleshooting distributed infrastructure and security systems.
• Strong communication and collaboration skills across engineering, operations, and security teams.
• Passion for building secure, scalable, and reliable infrastructure platforms.

Benefits that Benefit You

• Competitive salary and 401k with employer match
• Discretionary paid time off
• Paid parental leave for all
• Medical, Dental, Vision plans
• Fitness Programs
• Emotional & Mental Wellness support
• Learning & Development programs
• And yes, we have snacks in our offices

Benefits listed herein may vary depending on the nature of your employment and the location where you work.

Your Impact 

As a Senior Security Operations Engineer, you’ll play a key role in ensuring the reliability, performance, and scalability of our security infrastructure. You'll solve complex technical problems, improve our systems through thoughtful automation, and work closely with cross-functional teams to support our services as they scale. You’ll provide hands on execution capabilities for new initiatives in the Identity space, primarily to build out, maintain and support for PKI solutions at scale and provide auxiliary execution support for user identity and access management (IAM) initiatives. Your work will have a direct impact on uptime, efficiency, and the overall developer experience—contributing to our mission to deliver high-quality mission critical systems at speed.

What You’ll Do

Location: This role is based out of our Scottsdale, AZ office and follows a hybrid schedule. We rely on in-person collaboration and ask that team members work onsite Tuesdays through Fridays, with the flexibility to work remotely on Mondays, unless there is an approved workplace accommodation. We believe that connection fuels innovation, and our in-office culture is designed to foster meaningful teamwork, mentorship, and shared success.

Reports to: Manager, InfoSec Engineering
Direct Reports: 0

• Design, deploy, and operate PKI infrastructure supporting secure authentication, encryption, and certificate lifecycle management.
• Manage certificates, secrets, keys, and trust stores, including issuance, renewal, rotation, and revocation.
• Build, maintain, and secure Kubernetes clusters hosting PKI and secret management services.
• Automate PKI and secret management workflows using Infrastructure-as-Code, CI/CD pipelines, and Kubernetes-native tooling.
• Monitor and troubleshoot PKI, certificate, secret, and Kubernetes infrastructure issues, performing root cause analysis and remediation.
• Collaborate with other teams to integrate PKI and secrets management into cloud-native applications and services.
• Maintain operational documentation, runbooks, and disaster recovery procedures for PKI and Kubernetes environments.
• Ensure PKI and Kubernetes platforms meet security, reliability, and compliance requirements.
• Build and operate secure, reliable, and scalable PKI and secrets management infrastructure.
• Design and implement PKI solutions supporting 24x7 production and enterprise environments.
• Manage certificates, secrets, encryption keys, and access controls across Kubernetes-based platforms.
• Deploy, maintain, and secure Kubernetes clusters hosting PKI and secret management services.
• Automate certificate lifecycle, secret rotation, and infrastructure operations using CI/CD and Infrastructure-as-Code.
• Troubleshoot and resolve PKI, certificate, secret, and Kubernetes infrastructure issues.
• Collaborate with SRE, platform, and security teams to integrate PKI and secrets management into cloud-native services.
• Participate in on-call rotations, incident response, and operational improvement initiatives.
• Document PKI architecture, operational procedures, and security best practices

What You Bring

• 7+ years of experience in infrastructure, platform, SRE, or security engineering roles.
• Strong experience managing and securing Kubernetes clusters and containerized workloads in production environments.
• Hands-on experience with PKI platforms, certificate lifecycle management, secrets management, and encryption technologies.
• Experience operating cloud-native security solutions such as AWS KMS, Azure Key Vault, HashiCorp Vault, EJBCA, Smallstep, or Venafi.
• Strong understanding of Linux systems, networking, distributed systems, and Kubernetes security best practices.
• Experience with automation, scripting, Infrastructure-as-Code, and CI/CD pipelines for PKI and infrastructure operations.
• Familiarity with IAM and access management platforms such as Okta, Entra ID, Keycloak, or similar solutions.
• Experience with monitoring, logging, alerting, and troubleshooting distributed infrastructure and security systems.
• Strong communication and collaboration skills across engineering, operations, and security teams.
• Passion for building secure, scalable, and reliable infrastructure platforms.

Benefits that Benefit You

• Competitive salary and 401k with employer match
• Discretionary paid time off
• Paid parental leave for all
• Medical, Dental, Vision plans
• Fitness Programs
• Emotional & Mental Wellness support
• Learning & Development programs
• And yes, we have snacks in our offices

Benefits listed herein may vary depending on the nature of your employment and the location where you work.

Your Impact 

As a Senior Security Operations Engineer, you’ll play a key role in ensuring the reliability, performance, and scalability of our security infrastructure. You'll solve complex technical problems, improve our systems through thoughtful automation, and work closely with cross-functional teams to support our services as they scale. You’ll provide hands on execution capabilities for new initiatives in the Identity space, primarily to build out, maintain and support for PKI solutions at scale and provide auxiliary execution support for user identity and access management (IAM) initiatives. Your work will have a direct impact on uptime, efficiency, and the overall developer experience—contributing to our mission to deliver high-quality mission critical systems at speed.

What You’ll Do

Location: This role is based out of our Seattle, WA office and follows a hybrid schedule. We rely on in-person collaboration and ask that team members work onsite Tuesdays through Fridays, with the flexibility to work remotely on Mondays, unless there is an approved workplace accommodation. We believe that connection fuels innovation, and our in-office culture is designed to foster meaningful teamwork, mentorship, and shared success.

Reports to: Manager, InfoSec Engineering
Direct Reports: 0

• Design, deploy, and operate PKI infrastructure supporting secure authentication, encryption, and certificate lifecycle management.
• Manage certificates, secrets, keys, and trust stores, including issuance, renewal, rotation, and revocation.
• Build, maintain, and secure Kubernetes clusters hosting PKI and secret management services.
• Automate PKI and secret management workflows using Infrastructure-as-Code, CI/CD pipelines, and Kubernetes-native tooling.
• Monitor and troubleshoot PKI, certificate, secret, and Kubernetes infrastructure issues, performing root cause analysis and remediation.
• Collaborate with other teams to integrate PKI and secrets management into cloud-native applications and services.
• Maintain operational documentation, runbooks, and disaster recovery procedures for PKI and Kubernetes environments.
• Ensure PKI and Kubernetes platforms meet security, reliability, and compliance requirements.
• Build and operate secure, reliable, and scalable PKI and secrets management infrastructure.
• Design and implement PKI solutions supporting 24x7 production and enterprise environments.
• Manage certificates, secrets, encryption keys, and access controls across Kubernetes-based platforms.
• Deploy, maintain, and secure Kubernetes clusters hosting PKI and secret management services.
• Automate certificate lifecycle, secret rotation, and infrastructure operations using CI/CD and Infrastructure-as-Code.
• Troubleshoot and resolve PKI, certificate, secret, and Kubernetes infrastructure issues.
• Collaborate with SRE, platform, and security teams to integrate PKI and secrets management into cloud-native services.
• Participate in on-call rotations, incident response, and operational improvement initiatives.
• Document PKI architecture, operational procedures, and security best practices

What You Bring

• 7+ years of experience in infrastructure, platform, SRE, or security engineering roles.
• Strong experience managing and securing Kubernetes clusters and containerized workloads in production environments.
• Hands-on experience with PKI platforms, certificate lifecycle management, secrets management, and encryption technologies.
• Experience operating cloud-native security solutions such as AWS KMS, Azure Key Vault, HashiCorp Vault, EJBCA, Smallstep, or Venafi.
• Strong understanding of Linux systems, networking, distributed systems, and Kubernetes security best practices.
• Experience with automation, scripting, Infrastructure-as-Code, and CI/CD pipelines for PKI and infrastructure operations.
• Familiarity with IAM and access management platforms such as Okta, Entra ID, Keycloak, or similar solutions.
• Experience with monitoring, logging, alerting, and troubleshooting distributed infrastructure and security systems.
• Strong communication and collaboration skills across engineering, operations, and security teams.
• Passion for building secure, scalable, and reliable infrastructure platforms.

Benefits that Benefit You

• Competitive salary and 401k with employer match
• Discretionary paid time off
• Paid parental leave for all
• Medical, Dental, Vision plans
• Fitness Programs
• Emotional & Mental Wellness support
• Learning & Development programs
• And yes, we have snacks in our offices

Benefits listed herein may vary depending on the nature of your employment and the location where you work.

This is a hybrid role (4 days in office / 1 day remote)

Interactive Brokers is looking for a motivated, IT security, risk or audit professional with experience working in financial services, or similar regulated environment.

Responsibilities:

The role’s primary focus will be to:

• Support compliance coverage of the firm’s technology enterprise
• Design testing and complete reviews for Cyber, information security, and privacy initiatives.
• Guide stakeholders across security engineering and cyber defence teams
• Support incident response efforts and related documentation
• Implement internal control enhancements and appropriately solution potential compliance matters.
• Draft business requirements to create and improve surveillance and compliance tools.
• Assist coordinate responses to regulatory inquiries from foreign and US regulators.
• Draft and implement firm policies, controls and written supervisory procedures.

Qualifications

• 5-7 years’ experience working with IT risk or security teams
• Solid academic background with a Bachelors or Masters in Cybersecurity, Computer Science, Data Sciences or Information Systems preferred
• Experience with incident management, developing incident playbooks and table tops
• Experience working with SIEM tools or working knowledge of such tools
• Experience with log analysis
• Experience with privacy and data protection
• Ability to work both independently as well as in a small-team environment, and to multi-task with minimal supervision
• Strong working knowledge of industry standards from NIST, ISO, COBIT, ISACA, EDM, etc Knowledge of SEC, FINRA, CFTC, CME, NFA, US and foreign regulations is a plus.
• Knowledge of attack frameworks and kill chain methodology.

Company Benefits & Perks

This is Hybrid role (4 days in office /1 day remote)

About your Team:

The Information Security Policy Manager develops, maintains, and communicates IBKR's information security policies aligned to regulatory requirements, industry best practices, and IBKR’s control environment and risk appetite. This role is responsible for IBKR’s formal information security policy library, ensuring IBKR’s security program is supported by well-considered policy mandates.

 What will be your responsibilities within IBKR: 

• Maintain and extend IBKR’s information security policy library to align with regulatory requirements, business risk appetite, industry-accepted risk frameworks, and IBKR’s control environment.
• Coordinate and drive the development, review, and update of information security policies and standards based on identified need and defined maintenance intervals.
• Map IBKR’s security policies to, and analyze gaps against, applicable risk and regulatory frameworks and laws, such as DORA, FFIEC, NIST CSF.
• Support security-related external assessments, audits, and regulatory examinations by providing evidence of compliance.
• Partner with the Information Security Controls Manager to ensure policies are supported by appropriate controls and testing procedures.
• Evaluate security controls, identify opportunities for improvement, and communicate constructive recommendations.
• Other duties, as assigned

 What required skill’s you need:

• 7+ years of experience in information / cyber security experience, including 3+ years developing and managing information security policies in a regulated industry (preferably financial services) and 3+ years hands-on, technical cybersecurity roles.
• Fluent understanding of regulatory requirements affecting cybersecurity, including DORA, SEC, FFIEC, and common regulations issued in Europe (EBA) and APAC (SFC, MAS).
• Working familiarity with common security frameworks, including NIST CSF and ISO 27001/27002.
• Prior experience as owner of policies or technical standards documentation.
• Experience as lead responder to regulatory examinations, audit requests, and client due diligence questionnaires related to policy and compliance.
• Proven ability to write clear, actionable policies addressing complex regulatory and technical requirements, grounded in industry accepted practices and risk management concepts, and based on existing controls and technology environments
• Experience working with GRC (Governance, Risk, and Compliance) tooling a plus.
• Experience building cross functional consensus as an individual contributor
• Bachelor’s degree in Information Security, Computer Science, Information Technology or a related field, or equivalent experience
• CISM certification a plus.

 To be successful in this position, you will have the following:

• Strong critical thinking, analytical, organizational, time management, and writing and editing skills – all with attention to detail.
• Track record of building bridges with technology practitioners and translating complex technical concepts into simple, accessible language for business audiences.
• A self-motivated, open, collaborative, client-centric, consensus-building problem-solving mentality
• Ability to exercise good judgment when solving problems with incomplete information

Company Benefits & Perks

Position Overview:
Seeking a Security Analyst to join our Security Operations Center (SOC), focusing on incident response and threat detection. This role involves working with enterprise SIEM platforms, EDR solutions, and incident management tools to protect IBKR's global trading infrastructure.

Key Responsibilities:

• Triage and investigate security alerts using SIEM/EDR tools
• Execute incident response playbooks
• Perform malware analysis and IOC identification
• Create incident tickets and maintain documentation
• Conduct initial forensic data collection
• Support security event correlation and analysis
• Monitor suspicious endpoint activities
• Participate in 24x7 incident response coverage

Required Technical Skills:

• Experience with SIEM (SentinelOne/Splunk/MS Sentinel)
• EDR platforms (SentinelOne/MS Defender/Crowdstrike
• Incident ticketing systems (ServiceNow/JIRA)
• Windows/Linux log analysis
• Network traffic analysis
• Malware detection tools
• IOC collection and analysis
• Basic forensic tools

Required Experience:

• 5+ years SOC/IR experience
• L1/L2 alert analysis background
• Experience with incident playbooks
• Exposure to MITRE ATT&CK framework
• Understanding of kill chain methodology
• Basic threat intelligence usage

Technical Environment:

• SIEM platforms
• EDR solutions
• TIP platforms
• Forensic tools
• Network monitoring tools
• Vulnerability scanners
• Incident management systems

Work Requirements:

• Rotating shifts (24x7 SOC)
• Incident response handling
• Alert triage and escalation
• Documentation and reporting
• Team collaboration

Growth Path:

• Advanced IR certification support
• Threat hunting training
• Digital forensics exposure
• Technical skill development
• Senior analyst progression

Company Benefits & Perks: 

• Competitive salary package.
• Performance-based annual bonus (cash and stocks).
• Hybrid working model (3 days office/week).
• Group Medical & Life Insurance.
• Modern offices with free amenities & fully stocked cafeterias.
• Monthly food card & company-paid snacks.
• Hardship/shift allowance with company-provided pickup & drop facility*
• Attractive employee referral bonus.
• Frequent company-sponsored team-building events and outings.

* Depending upon the shifts.

**The benefits package is subject to change at the management's discretion.

The Senior Security Engineer is a senior-level role that reports directly to and serves as a technical expert for the Head of Security Engineering. This role is entrusted with protecting sensitive financial data and critical infrastructure across a complex hybrid technology landscape. The ideal candidate is a highly motivated and results-oriented security engineer with unparalleled expertise in strategic design and hands-on technical execution. This position demands a proven builder and problem-solver who excels at architecting resilient platforms, mentoring other engineers, and acting as a technical advisor to leadership. The principal will be instrumental in implementing the strategic vision for infrastructure security and will be responsible for providing technical expertise for complex design and operational challenges.

Key Responsibilities

• Provide expert guidance to the security architecture team to design and implement layered security architectures using Zero Trust and Defense-in-Depth principles.
• Act as a subject matter expert and technical authority for in-depth design and implementation details, providing technical support and guidance across the security organization.
• Data Loss Prevention: Provide technical expertise to the DLP team for in-depth design, implementation, and integration details. Drive implementation and integration projects for on-premise, remote, and SaaS based resources.
• Drive the security strategy for a large on-premises environment, ensuring secure integration with public cloud platforms.
• Architect and implement secure data transfer, endpoint protection, and patch management solutions.
• Architect and secure hybrid AWS and Azure environments, focusing on the critical "seam" between on-premises and cloud domains.
• Lead the automation of security operations using Python and Bash.
• Assist in design and implementation of Infrastructure as Code (IaC) with Terraform, container orchestration with platforms like Kubernetes, and the build-out of a Security Orchestration, Automation, and Response (SOAR) platform.
• Serve as the final technical escalation point, acting as Tier 3 engineering support for the most complex incident escalations.
• Assist in design and implementation of a Security Information and Event Management (SIEM) solution to centralize log correlation.
• Develop and oversee security compliance strategies, ensuring adherence to financial regulations (FINRA, SEC, PCI DSS) and security standards.

Required Technical Skills

• Cloud: Associate Architect-level knowledge of AWS and Azure security services.
• Identity & Access Management (IAM): Hands-on experience with on-premises and cloud identity platforms.
• On-Premises Security: Verifiable experience securing large on-premises networks. Hands-on expertise with secure data transfer, application allowlisting, and vulnerability scanning in connected environments.
• Architecture & Design: Mastery of Zero Trust, Defense-in-Depth, network segmentation, and firewall management.
• Automation & Tooling: Expertise in automation and orchestration tools (e.g., Python, Bash, Ansible), IaC (Terraform), and container orchestration (e.g., Kubernetes, OpenShift). Experience building and managing SOAR platforms.
• Secrets Management: Experience with secrets management platforms, including those from major cloud providers.
• Endpoint Security: Experience with endpoint automation and security solutions in both connected and disconnected environments.
• Incident Response: Hands-on experience with advanced forensic analysis, SIEM platforms like Splunk, and serving as a Tier 3 engineering expert for complex security tool failures and system vulnerabilities.

Required Experience

• 5+ years of experience in IT security, with a proven history of building and automating complex solutions.
• Demonstrated ability to design and implement vendor-agnostic solutions.
• Proven ability to provide technical leadership and act as a subject matter expert within engineering teams.
• Experience leading security projects and communicating with technical and non-technical stakeholders, including senior leadership.
• Verifiable experience securing disconnected networks and managing hybrid cloud connectivity.
• Demonstrated experience with financial regulations (FINRA, SEC, SOX, GLBA) and frameworks (PCI DSS, NIST, ISO 27001).
• Ability to design controls that generate the necessary audit trails and evidence for regulatory reporting.

Company Benefits & Perks: 

• Competitive salary package.
• Performance-based annual bonus (cash and stocks).
• Hybrid working model (4 days office/week).
• Group Medical & Life Insurance.
• Modern offices with free amenities & fully stocked cafeterias.
• Monthly food card & company-paid snacks.
• Hardship/shift allowance with company-provided pickup & drop facility*
• Attractive employee referral bonus.
• Frequent company-sponsored team-building events and outings.

* Depending upon the shifts.

** The benefits package is subject to change at the discretion of management. **