person looking for a Security Operations Remote Jobs

Get Remote Security Operations Jobs in your mailbox.

432 exciting remote jobs on file from 2500+ top remote companies.

  • Hot new jobs of this week
  • 432 active jobs from past weeks to consult
  • Segmented for USA, Europe or Worldwide.
  • Personally selected for you by our experienced remote hiring managers.


A selection of jobs from the previous newsleterrs.

Airfocus GmbH is hiring a Remote Information Security Manager (m/f/d)

Your mission
To reach the next level in information security, we are looking for a motivated Information security manager (m/f/d) who will help us to handle and manage security requirements, monitor our compliance with ISO27001, lead new security-related initiatives (e.g. SOC 2), and be the person to talk to our customer and respond to all vendor security questionnaires. In this role, you will directly report to the CTO and CRO.

What you'll do:
  • You lead the implementation or enhancement of information security controls and ensure that the policies and controls are in compliance with applicable law, regulatory, industry, customer, and business requirements.
  • You investigate and resolve issues, create reports, conduct security assessments and drive security programs within the company and its processes and employees.
  • You support our sales team with all information security related questions during the proposal and negotiation processes.
Your profile
  • You have a Bachelor’s or Master’s degree in IT security, information systems, computer science, technology management, or an apprenticeship in similar fields and a first good idea of privacy and IT security-related questions. Alternatively, any other degree and at least one year of working experience with Information Security Management Systems.
  • You enjoy solving problems and are passionate & extremely driven to build a great company.
  • You are a self-driven project manager who can manage the different workstreams of an ISO 27001 and/or SOC 2 certification in a structured manner.
  • Ability to communicate with colleagues at all levels throughout the business to develop strong relationships with different stakeholders.
  • You are fluent in written and spoken English, German is a plus.
  • Availability - ASAP.
Why us?
  • Boost your personal development and gain new skills in an exhilarating space.
  • Competitive compensation based on prior experience.
  • Remote first team: Work from our cool HQ in Hamburg or anywhere in Europe - forever!
  • Flexible working hours.
  • Equipment support: MacBook Pro or notebook and monitor of your choice.
  • Learning budget: We enjoy learning and growing while working on hard problems together. Every year you can spend your learning budget on your professional development (courses, books, classes).
  • Healthy (and non-healthy!) snacks and beverages (if you're in Hamburg).
  • Annual airfolks meet-ups!
About us
At airfocus, we're reimagining the way teams make decisions. From how they prioritize their never-ending list of features, ideas, and projects to how they create beautiful yet effective roadmaps, the work we do is shaping the future of collaboration and strategy. To get there, we’ve brought together a collective of optimists and doers to tackle challenges along this ride. We believe in learning by doing – and that there is no better classroom than real-world experience.

We strive for product excellence, a superior user experience, and great storytelling because we believe those are the best ways to create value for our customers and employees. Our team is made up of talented individuals who are highly motivated to grow our company and themselves – and have fun in the process.

Join us and help shape an amazing company. From Hamburg, or wherever you best get stuff done.

See more jobs at Airfocus GmbH

Apply for this job

Brightside is hiring a Remote Senior Information Security Engineer

Senior Information Security Engineer - Brightside Health - Career PageSee more jobs at Brightside

Apply for this job

Nuspire, LLC is hiring a Remote Security Engineer

Security Engineer - Nuspire, LLC - Career PageSee more jobs at Nuspire, LLC

Apply for this job

Nuspire, LLC is hiring a Remote Security Operations Center (SOC) Manager

Security Operations Center (SOC) Manager - Nuspire, LLC - Career PageNuspire was highlighted as a "Michigan's key IT story” in its 'Upper Hand' com

See more jobs at Nuspire, LLC

Apply for this job

BlueVoyant is hiring a Remote Cyber Security Consultant Europe

Cyber Security Consultant Europe - BlueVoyant - Career Page

See more jobs at BlueVoyant

Apply for this job

+30d

Field Investigator

ACI Federal™Washington, DC Remote

ACI Federal™ is hiring a Remote Field Investigator

Responsibilities

Primary duties include, but are not limited to, conducting background investigations for the purpose of determining employment suitability of persons who require access to sensitive or classified U.S. Government information. The predominant casework is in support of the Defense Counterintelligence and Security Agency (DCSA). Casework for other contracts will be assigned based on investigator performance and business need.

Investigators will conduct face-to-face interviews with the subject and their neighbors, employers, friends, and family. Investigators will also perform record searches at police agencies, courthouses, educational and financial institutions, and medical/mental health facilities. Investigators report all obtained information in a clear and concise report on an issued government computer system.

No expenses during casework such as tolls, parking, etc., will be reimbursed, however, a GFE computer is provided. Investigators work from their own homes with remote access to a contractor liaison and are paid per task completed. Contract Investigators must be willing to regularly work within a 50-mile radius from their home, with travel to greater distances based on company need with negotiated premium payments. Occasionally the company seeks volunteers for nationwide travel up to 4 weeks at a time that Independent Contractors can bid on buckets of work at a premium rate.

This position is based on a productivity system with investigators paid for finished product, per week. Investigators travel to and from appointments and record collection sites.

As a federal contractor regardless of the laws in your state, marijuana use is prohibited with this position.

Essential Functions:

Sit for long periods of time, stand, walk, move about residential, inner city or other facilities, bend, stoop, and climb stairs, including non-ADA compliant environments; navigate transportation, drive a vehicle for a long duration; demonstrate sufficient hand, arm and finger dexterity to operate computer keyboard and other office equipment for a long duration; lift and move up to 10 pounds; speak for extended periods of time and hear sufficiently to communicate in person and over the phone; record, read and transcribe words and numbers with a high degree of accuracy; perform in a manner that prevents errors and omissions, maintain visual ability including close vision, distance vision, peripheral vision, depth perception and to adjust focus sufficiently to complete computer work; ability to write for long periods of time; meet expectations for attendance and punctuality; able to pay attention to details; able to concentrate; interact professionally with other persons, cooperatively and productively; successfully manage a constant, moderate noise level; work independently; carry out assignments to completion within parameters of general instructions, prescribed routines and standard practices; successfully manage stressful work situations; ability to work overtime to meet multiple deadlines consistently.

Qualifications

  • Direct field investigations experience conducting DCSA/NBIB background investigations in the past 12 months with proof of NTS certification
  • Provide a cover letter explaining in detail why you are the ideal candidate for this position. Applications without a cover letter may not be considered
  • Minimum active favorable T5 preferred
  • U.S. citizenship
  • Ability to professionally and effectively interact with a variety of individuals
  • Ability to work in a fast-paced changing environment with limited supervision
  • Excellent organizational, scheduling and prioritization skills
  • Maintain high level of confidentiality, ethics and integrity
  • Proficient writing and communication skills
  • Intermediate typing (40+ WPM recommended) and computer skills
  • A valid driver's license and reliable transportation are required. May use public transportation if available and practical. Driving is an essential function of the job and Motor Vehicle Records may be checked as part of the hiring process or at any time during employment. Candidates with poor driving history will not be considered.
  • Required to carry sufficient motor vehicle insurance, specifics of which may change from time to time.

See more jobs at ACI Federal™

Apply for this job

+30d

Security Engineer

PlaysonRemote job, Remote

Playson is hiring a Remote Security Engineer

????Playson is a B2B game provider with 10 years of experience on the market. Since 2012 we have ambitiously developed worldwide recognition in the industry. Nowadays, our main focus is on regulated European Markets and we operate in 20+ different jurisdictions. As of 2022, we are continuously working on enhancing our portfolio, encompassing best practices in order to meet the highest standards of technology, design, support and interoperability.

We are looking for a Security Engineer. It is a position in the NOC Stream, which is responsible for infrastructure maintenance.

The importance of the role is in:
???? Product security assessment

???? Penetration testing

???? Incidents monitoring, analysis, and investigation

???? Vulnerability management

???? DLP policies implementation

See more jobs at Playson

Apply for this job

Zealogics.com is hiring a Remote Software Security Analyst, Manager

Software Security Analyst, Manager - Zealogics.com - Career Page

See more jobs at Zealogics.com

Apply for this job

NowSecure is hiring a Remote Application Security Analyst

Application Security Analyst - NowSecure - Career PageMore enterprises and government agencies trust NowSecure than any other as the simplest, fastest path to continuous security, mobile app security testing and expert certification, including 4 of top 5 banks, 4 of top 5 Federal Agencies, top retail & media brands and the top penetration testing serv

See more jobs at NowSecure

Apply for this job

Latitude, Inc. is hiring a Remote Cybersecurity Analyst (Clearance)

Growing government contractor looking to bring on a Cybersecurity Analyst. Qualified candidates will need to have an active DOD Secret clearance. Position allows 95% telecommute. On-site visits twice a month could be expected. 
 

Qualifications

5+ years of experience in performing assessments on federal systems, including validating and justifying compliance or non-compliance

Experience in leading response activities with IT services department

Experience with NIST 800-37, NIST 800-53, or Intelligence Community Directive 503 requirements

Ability to support system security and authorization processes

Ability to obtain and maintain a Public Trust or Suitability/Fitness determination based on client requirements

Bachelor's degree in Computer Science, Cybersecurity, or Information Technology

CISSP or CISM Certification

Experience performing assessments in IT Security Federal Consulting

Knowledge of risk and how to measure risk for IT systems

Knowledge of IT systems used in healthcare or health research

Possession of excellent verbal and written communication skills

Applicants selected will be subject to a government investigation and may need to meet eligibility requirements of the U.S. government client


Responsibilities

Serve as a senior security controls assessor for appointed systems

Conduct independent comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within or inherited by an IT system to determine the overall effectiveness of the controls

Conduct assessment interviews and test and manage evidence

Capture and refine information security requirements for new systems or for enhanced functionality on an existing system and ensure that the requirements are effectively integrated into information systems throughout the System Development Life Cycle (SDLC)

Provide support for proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies

See more jobs at Latitude, Inc.

Apply for this job

Nuspire, LLC is hiring a Remote Fusion Center - Security Engineer

Fusion Center
Engineering –
Security Engineer

www.nuspire.com/careers

About Nuspire:                                                                      
Nuspire is a leading managed security services provider (MSSP) founded over 20 years ago to revolutionize the cybersecurity experience by taking an optimistic and people-first approach. Our deep bench of cybersecurity experts uses world-class threat intelligence as part of a Fusion Center to detect, respond, and remediate advanced cyber threats.

 

Position Description:

The Engineer role is a 24x7x356 mid to senior level role that is the top escalation point in our Security Engineering organization for client issues and configurations. Engineers execute highly technical changes and client requests in a timely manner, respecting change windows and client requests.  Engineers provide mentorship, guidance, and review tickets for their junior team members.  In addition to operational tasks, Engineers work on projects, documentation, procedure changes and become NOC subject matter experts for particular Nuspire technologies.

 

The ideal candidate will have at least 2-5 years of hands-on experience with firewall configuration and troubleshooting, network architecture and design, and a strong understanding of networking concepts.

 

Responsibilities:

  • Configure and troubleshoot advanced client requests for Nuspire’s managed products and services
  • Process and remediate connectivity and availability issues for clients
  • Identify and develop documentation and knowledge base articles for operations and engineering teams
  • Document all actions in cases to effectively communication information internally and externally to clients
  • Open support cases with vendors as required
  • Perform and document root cause analysis
  • Work on projects as assigned by leadership
  • Submit appropriate bug, support, and feature requests
  • Perform large-scale and small-scale firmware upgrades for clients
  • Attend relevant meetings
  • Participate in 24/7 on-call rotation schedule
  • Perform global change requests and script pushes across platforms
  • Maintain and expand working knowledge of current managed technologies and network security landscape

 

Minimum Qualifications:

  • This position requires at least 5 years of hands-on technical networking experience
  • Advanced experience and knowledge with next-generation firewall technologies (Palo Alto, Fortigate, Cisco, etc)
  • Advanced knowledge of networking concepts (TCP/IP, Routing, Switching)
  • Advanced knowledge of network defenses such as firewalls, IDS/IPS, Proxies
  • Advanced experience with scripting
  • Advanced knowledge of troubleshooting routing and switching issues
  • Experience with supporting EDR platforms
  • Experience supporting SIEM platforms
  • Strong system administration experience
  • Strong time management skills
  • Ability to delegate and set tasks
  • Excellent verbal and written communication skills
  • Strong critical thinker

 

 

Preferred Skills:

  • Ability to review packets with tools such as Wireshark and TCPdump
  • Advanced understanding of the TCP/IP packet framework
  • Experience with Linux operating systems
  • Experience in configuring software defined networks
  • Ability to explain technical details to non-technical audiences

 

Education/Certifications/Training Required:

  • Bachelors’ Degree in Computer Science, Information Security Assurance, or equivalent experience

 

Education/Certifications/Training Preferred:

  • GIAC, GCIH, GMON, OSCP, CEH, CEPT
  • CCNA, CCNP, CCIE
  • CISSP

Work conditions/environment:

  • Great experience and growth with a global leader in managed security and network services
  • Recognized in Top 25 list of MSSPs according to MSSP Alert
  • Locations in: Commerce Twp., MI – Walled Lake, MI – Centennial, CO
  • Nuspire provides a top work environment, as recognized by Crains Detroit, Golden Bridge "Best   and Brightest," Corp! Magazine and The Detroit News.
  • Full benefits including but limited to: 6 different Blue Cross Medical HMO and PPO Options, Mutual of Omaha Dental, Vision, Short-term and Long-term disability, Life Insurance, 401k and Monthly PTO accrual from your first day of employment, along with many opportunities to earn additional PTO through monthly employee awards and participation in ‘Nuspire Good Time’ Events.
  • ‘Nuspire Good Time’ events 2x per month to build team cohesion. 
  • Nuspire is an Equal Opportunity Employer

 

Awards & Recognition

  • MSSP Alert listed Nuspire in the Top 30 of their Top 200 MSSPs of 2019
  • Best & Brightest Places to Work in Metro Detroit 8-time Winner 2011, 2014 – 2020
  • Best & Brightest Places to Work National 4-time Winner 2011, 2017 - 2019
  • Cyber Security Excellence Award Winner for Best Cyber Security Company 2017 - 2019
  • Gartner Inc. included Nuspire in “2010 & 2011 Magic Quadrant for MSSPs, North America”
  • Selected as a “Top Workplaces” winner in 2009, 2010, 2011 and 2015
  • INC Magazine “One of America’s Fastest-Growing Private Companies”
  • Nuspire was highlighted as a "Michigan's key IT story” in its 'Upper Hand' commercials featuring Jeff Daniels.
  • TMCnet.com Tech Culture Award, 2016
  • Corp! Magazine’s ‘Economic Bright Spot’ winner, 2017

 


About Nuspire Employee Culture:
Nuspire has signed managed services solutions contracts in South America, Europe and Asia while continuing to expand its network operations centers and data centers in North America.  This continued growth over 20 consecutive years allows employees to have constant opportunities to expand their role and responsibilities within the organization.

At the core of Nuspire's business model is its emphasis on the human component of business. Nuspire provides network management, monitoring, and security as a service to large organizations and the people, expertise, and experience are critical to our success.  This ideal is not only reflected in how Nuspire delivers services to its customers but also in how it treats its employees. The culture is focused on building team cohesion and employee career growth through a blending of traditional programs and unique outside of the box experiences.

Nuspire strives to be an industry leader; the employees it hires have the drive and talent to be leaders in their field. Nuspire's employee culture reinforces these ideals; rewarding excellence while providing a unique and exciting business environment.  To find out more, please visitwww.nuspire.com.

See more jobs at Nuspire, LLC

Apply for this job

Nozomi Networks is hiring a Remote Product Security Engineer - EMEA

**REMOTE work possibility within Switzerland and Italy** And we also offer relocation package to Switzerland!

Position Description:

You will be an individual contributor inside the Engineering team, leading the product security efforts of Nozomi Networks. You will lead the projects to evolve and maintain a robust product security strategy. In your day by day work you will be able to involve other Nozomi Networks employees and external contractors as deemed necessary.

 

Key Responsibilities:

  • Penetration and vulnerability assessment review and validation
  • Conducting risk assessment, penetration testing, code reviews, and static analysis or other security validation of specific projects
  • Composition analysis review
  • CVE reviews
  • Security validation
  • Reviews and development of specific security features
  • Projects and research work as needed

Skills to be successful in this role:

  • Proven experience in a combination of risk management, information security, and IT jobs
  • Software development background, proven experience with SDLC
  • Ability to find security problems in code and design.
  • Knowledge of common information security management frameworks, such as ISO/IEC 27001 and NIST
  • Good knowledge of crypto algorithms
  • A good understanding of network and web-related protocols (such as TCP/IP, UDP, IPSEC, HTTP, HTTPS, etc.)
  • Good knowledge of a scripting language and Unix operating system
  • High level of English proficiency, both spoken and written
  • Ability to operate in settings with strong confidentiality and data privacy protocols
  • Professional security management certification is a strong advantage
  • Experience with at least one of the major cloud computing vendors
  • Experience in Agile software development desirable

Our values:

  • Automate everything, so that humans can concentrate on the interesting stuff
  • Continuous personal improvement, we encourage to attend conferences and offer training classes
  • Shipping high quality software is our main concern 

 

Nozomi Networks is the leader of industrial cybersecurity.  Whether our clients need fast product enhancements, onsite engineering support, or rapid deployment across continents, we deliver. We accelerate digital transformation by providing exceptional network visibility, threat detection and operational insight for OT and IoT environments.

By hitting the ‘Apply Now’ button and submitting your application, you agree with the storage and handling of your data by us in accordance with our Privacy Policy.

See more jobs at Nozomi Networks

Apply for this job

Precise Solutions is hiring a Remote IT - Senior Security Analyst

At Precise Solutions, we are looking for top talent consultants to bring on as employees of our organization and service our clients in the various Life Sciences Industries.  We are much more than a staffing firm! Precise Solutions provides competitive compensation packages with benefits, health insurance, paid time off, and employer-based 401k contributions. 

We currently have an immediate need for the following:

Job Title: Senior Security Analyst

Location:  Remote US Central Standard Time (Illinois)

Compensation: $65.00 per hour based on experience, plus benefits (Paid Time off, Company 401k contributions, health, dental, and vision insurance).  Total Annual Compensation including benefits is $150.000

Note: Please do not submit resumes with candidate photos.

Description:

Client is looking for a Information Security is looking for a highly motivated, diligent, and skillful analyst to join the Attack Surface Management (ASM) team. The client’s Application Security team protects the clients’ patients, data, and brand by identifying vulnerabilities and threats to our organization and working to drive remediation of identified security risks.  Application Security is a capability of ASM within the larger Cyber Security Operations (CSO) function. Join us as Associate Security Analyst, Application Security to support and improve our efforts to identify and reduce the clients’ attack surface and help our business continue to have remarkable impacts on people’s lives.

The Associate Application Security Analyst is a key member of the Attack Surface Management team and works with internal and external groups to identify and drive remediation of information security risks across all the clients’ web application environments. The Application Security Analyst will:

 

  • Maintain awareness of the latest critical information security vulnerabilities, threats, and exploits
  • Provide guidance on existing and emerging threats in the web and mobile application space as they apply within the client’s environment
  • Facilitate application demonstration sessions with developers and application owners to educate the Application Security team on application functionality prior to performing technical security assessments
  • Assist in conducting and facilitating security reviews, as directed by senior team members, throughout the application development lifecycle, including tasks such as:
    • Performing and improving security assessments for the client’s applications across the enterprise
    • Documenting application security vulnerabilities within the client’s tracking system
    • Communicating vulnerabilities to application stakeholders
    • Assist in communicating technical application security concepts to customers, including developers, architects, and managers
    • Assist in training customer staff on application security and remediation of application security code defects
    • Identify enhancements to tools, standards, and processes; provide input into policies and procedures, and contribute to the implementation and refinement of the strategy for the Application Risk program on a global basis

      Qualifications*
    • 1-2 years of direct enterprise-level software development experience in any of the following:
      • Java/JSP
      • Net Framework (C#, VB, ASP)
      • Web Applications (N-Tier)
      • Mobile/Application Services
      • 1-2 years of direct application security and/or security developer experience
      • Demonstrate knowledge of web application vulnerabilities and web application business logic flaws and threats
      • Demonstrate understanding of application architectures and technology, including web applications, mobile technology, data encryption, and identity and access management.
      • Hands-on Experience with manual vulnerability testing and static code analysis is strongly desired.
      • Experience with tools such as Burp Suite, ZAP Proxy, Metasploit, and other open-source security tools
      • Candidate must have an understanding of security controls such as Authentication, Authorization, Access Control, Cryptography, and Network Protocols along with security standards: OWASP Top 10, SANS 25, NIST, and CVE
      • Written and verbal communication skills are critical
      • Adept at communicating concepts to diverse audiences with varying skill sets
      • Certification such as OSCP, OSWE, or ECSA is a plus

        This position is part of the client’s Information Security & Risk Management (ISRM) team. We are here to put our partners in a position to succeed. We do it by providing the knowledge, tools, and support they need to effectively use data and technology while also effectively managing risk.

 

 

See more jobs at Precise Solutions

Apply for this job

CENTERPOINT is hiring a Remote Lead Information System Security Officer (ISSO) (Remote)

Duties & responsibilities may include but are not limited to:

  • Lead a team of up to 4 other ISSOs.
  • Conduct Security Assessment & Authorization or re-Authorization in accordance with NIST SP 800-37 Rev 1, the LC Security Assessment and Authorization Guidance, and Information Technology Security Directive 5-410.1.
  • Conduct security Continuous Monitoring in accordance with NIST SP 800-53a, LC Information Security Continuous Monitoring Guidance, and Information Technology Security Directive 5-410.1.
  • Attend project team meetings and work with project team members to securely operate systems in LC environment(s).
  • Attend ad-hoc, daily, weekly, monthly meetings with IT system project staff, Information System Business Owners, Authorizing Official, and others to discuss IT security matters related to the system they are supporting.
  • Support various OCIO initiatives regarding the system they support (i.e., Data Center relocation efforts, new tool implementations, etc.).

Required Qualifications:

  • Minimum of 5 years of Information Assurance-related experience.
  • Ability to effectively and clearly communicate both orally (in common English narration) and in writing (to include technical documentation).
  • Ability to manage multiple projects, work under pressure and tight deadlines, work independently, and work in a team environment.
  • Proficiency in Microsoft® Office 2016 or later with particular emphasis on Microsoft® Word®, Excel®, PowerPoint®, and Project®.
  • United States citizenship.

Certification Requirement: At least one DoD 8570-approved IAT II certification: CCNA Security, CySA, GICSP, GSEC, Security+, CND, or SSCP.

Education Requirement: Bachelor’s degree in Computer Science, Information Systems, Engineering or related field, or equivalent experience.

Clearance Requirement: Ability to obtain a favorable determination from LOC Tier 2 (Moderate-Risk Public Trust) Background Investigation.

CENTERPOINT is an equal opportunity employer. All qualified applicants receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin.

See more jobs at CENTERPOINT

Apply for this job

CENTERPOINT is hiring a Remote Senior Information System Security Officer (ISSO) (Remote)

Duties & responsibilities may include but are not limited to:

  • Conduct Security Assessment & Authorization or re-Authorization in accordance with NIST SP 800-37 Rev 1, the LC Security Assessment and Authorization Guidance, and Information Technology Security Directive 5-410.1.
  • Conduct security Continuous Monitoring in accordance with NIST SP 800-53a, LC Information Security Continuous Monitoring Guidance, and Information Technology Security Directive 5-410.1.
  • Attend project team meetings and work with project team members to securely operate systems in LC environment(s).
  • Attend ad-hoc, daily, weekly, monthly meetings with IT system project staff, Information System Business Owners, Authorizing Official, and others to discuss IT security matters related to the system they are supporting.
  • Support various OCIO initiatives regarding the system they support (i.e., Data Center relocation efforts, new tool implementations, etc.).

Required Qualifications:

  • Minimum of 4 years of Information Assurance-related experience.
  • Ability to effectively and clearly communicate both orally (in common English narration) and in writing (to include technical documentation).
  • Ability to manage multiple projects, work under pressure and tight deadlines, work independently, and work in a team environment.
  • Proficiency in Microsoft® Office 2016 or later with particular emphasis on Microsoft® Word®, Excel®, PowerPoint®, and Project®.
  • United States citizenship.

Certification Requirement: At least one DoD 8570-approved IAT II certification: CCNA Security, CySA, GICSP, GSEC, Security+, CND, or SSCP.

Education Requirement: Bachelor’s degree in Computer Science, Information Systems, Engineering or related field, or equivalent experience.

Clearance Requirement: Ability to obtain a favorable determination from LOC Tier 2 (Moderate-Risk Public Trust) Background Investigation.

CENTERPOINT is an equal opportunity employer. All qualified applicants receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin.

See more jobs at CENTERPOINT

Apply for this job

Maania Consultancy Services is hiring a Remote Senior Application Security Engineer - Remote

Hi,

looking for a Senior Application Security Engineer, Remote. If you are interested please send me your updated resume and expected salary range.

Job Role: Senior Application Security Engineer.
Job Type: Full-time/Permanent.
Location:100% Remote.
Work Authorization: US Citizens.
Clearance:Public Trust Clearance.

Basic Qualifications:
- 3+ years of experience with one or more of the following programming languages: Java, Python, .NET, or C#
- 3+ years of experience with using the design and implementation of enterprise-wide security controls to secure applications, systems, network, or infrastructure services
- 3+ years of experience with supporting Veracode Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and IDE Plug-in environments
- Experience with Eclipse, JDeveloper, including pipeline development, or Visual Studio
- Experience with securing enterprise web applications and OWASP Top 10, CVSS, CWE, WASC, and SANS-25
- Knowledge of web protocols and a command-line tool
- Knowledge of federal compliance standards, including NIST 800-53, FIPS, or FedRAMP
- Knowledge of Linux or UNIX environments, including navigating and troubleshooting basic website connectivity issues
- Ability to obtain a security clearance

See more jobs at Maania Consultancy Services

Apply for this job

LTG is hiring a Remote Senior Network Security Engineer (PeopleFluent) UK, REMOTE

Senior Network Security Engineer will report directly to PeopleFluent’s Director of Hosting Services. An exemplary candidate will have experience managing security projects and has a strong technical background in both networking and security.

Responsibilities

  • Own the design, implementation, and maintenance of our network and security infrastructure.
  • Hammer out routine change requests on networking and firewall devices.
  • Continuously improve our security posture with advanced threat detection and recovery methodologies (SIEM).
  • Collaborate with our team, partners, and vendors to integrate best practice methodologies at all levels within the hosting network.
  • Serve as the technical leader for various network and security projects. Projects include MFA, rolling out OTP devices, and optimizing log analysis/alerting.
  • Participate in compliance and security audits and advocate for strong security discipline.
  • Work collaboratively with colleagues in Corporate IT and Product Development to facilitate best security practices related to user access, data transfer, and product deployment to minimize risks to our hosted environments.
  • Serve as a member of PeopleFluent’s 24/7 Response Team by participating in on-call rotations and off hours escalations to keep our systems up and running.

What you need to be successful in this role:

  • You communicate when you need help, don’t understand requirements, think there’s a better path forward, etc. Open communication is key to the success of our team.
  • You must be able to work in a fast paced environment and maintain your cool.
  • You must understand and be able to support high availability networks.
  • You have a deep understanding of security and networking best practices.
  • You are well versed in subnet masking, VLANs, NAT.
  • You are well versed in routing configurations (OSPF, static, etc).
  • You have hands-on experience with firewall technologies, WAFs, and IDS/IPS. The type of device matters less than a deep understanding of how these devices function and their best practices.
  • You can create and organize great documentation, usually without being prompted. We are huge fans of clear and concise documentation.
  • You are capable of performing network analysis and proactive monitoring.

Nice to haves:

  • You’ve been through ISO and SOC audits and understand the how and why of security practices and building solid audit trails.
  • Experience with point to point circuits, MPLS, VPNs, and tunneling in general.
  • Experience with Load balancers (such as F5s).
  • You have both public cloud and on premises infrastructure experience.
  • Automation of your daily activities is second nature.


About the company:

PeopleFluent provides flexible cloud solutions that put learning at the heart of talent strategy. As a market leader in integrated talent management and learning solutions, PeopleFluent helps companies hire, develop, and advance a skilled and motivated workforce. Deployed separately or as a suite, our Recruiting, Onboarding, Performance, Succession, Compensation, and Learning solutions deliver a superior user experience that guides managers and employees with contextual learning – right in the flow of work.

PeopleFluent Learning is part of Learning Technologies Group plc (LTG).

For more information, visit www.peoplefluent.com.


We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state or local protected class.



EOE, including disability/vets


See more jobs at LTG

Apply for this job

Shopify is hiring a Remote Director of Security Engineering (Remote, North America)

Company Description

At Shopify, we build products that help entrepreneurs around the world to start and grow their businesses. We’re the world’s fastest growing commerce platform and we have no plans of slowing down!

Job Description

We’re looking for an experienced security leaderto join Shopify’s Trust team and lead our Active Defence team. 

Shopify has grown rapidly over the last number of years. Through a series of safeguards, the Trust team has created a safe environment for employees to do their best work without risking our merchants' trust. The Active Defence team is always monitoring for risk and when bad behaviours are detected (internally and externally), the team jumps into action to remediate the situation. 

As the Director of Security Engineering for the Active Defence team, you’ll be responsible for defining and growing the security incident response and security operations strategy, roadmap and team. You’ll be expected to scale the incident response function using technology, automation and best practice.

This is a trailblazing team! You will have the creative freedom to make a real difference and the chance to work with the best talent. Sounds like the place for you? Read on, and we'd love to hear from you!


Responsibilities: 

Here’s what you can expect from the role - an opportunity to:

  • Lead engineering and operations teams to enhance our security incident response capability and perform scalable security alert management.

  • Build and establish the methodology and tooling to operate security incident response and alert management at scale. 

  • Use data to define and develop metrics to tell the security incident response story.

  • Organize and run regular game day and crisis scenarios exercises.

  • Be willing to roll up your sleeves and participate in critical security incident response and mitigation efforts. 

  • Provide direction, mentorship and support to a team of incident responders, security analysts, security engineers and security support specialists.

  • Grow the team through hiring and development. 

  • Champion the incident response craft, along with leaders from other Shopify teams.

  • Work with senior stakeholders and be a security advocate at Shopify. 

Qualifications

While we don’t need you to have specific experience with our technology stack, this is a leadership position that requires that you have: 

  • Demonstrated proficiency in building and operating security incident response and security operations programs in a technical environment. 

  • Experience being the lead technical responder or participating in large scale and complex security incident response in a cloud-based or zero trust environment, leveraging strong analytical and data literacy skills to find the needle in the haystack.

  • Proven management and leadership skills, allowing you to develop and mentor others.

  • Experience executing broader security strategies while building credibility with your team.

  • Familiarity working with senior stakeholders across the organization, both technical and non technical, to develop roadmaps, integrate with larger company initiatives and deliver business and security value. 

  • Experience working in a SaaS company.
     

It would be great if you had experience in some of the following:

  • Knowledge of and/or experience with technologies such as Google Cloud Platform, Kubernetes, Splunk, Okta, Google Workspace, GitHub, etc… .

  • Working with large datasets to gather insights and validate assumptions.

  • Participating in an on-call rotation.

  • Leveraging technology to automate manual work.

Additional Information

We know that applying to a new role takes a lot of work and we truly value your time. Marina is looking forward to reading your application!

This posting will close on Thursday, May 5, 2022 at 11:59PM EDT.

Shopify is now permanently remote, and we’re working towards a future that is digital by design. That location you see above? Consider it merely an example of hundreds of potential locations Shopify is hiring. Learn more here:https://www.shopify.com/careers/work-anywhere

Our belief is that a strong commitment to diversity & inclusion enables us to truly make commerce better for everyone. We encourage applications from Indigenous peoples, racialized people, people with disabilities, people from gender and sexually diverse communities, and/or people with intersectional identities. Please take a look at our Sustainability Reports to learn more about Shopify’s commitments to our communities, and our planet.

At Shopify, we understand that experience comes in many forms. We’re dedicated to adding new perspectives to the team - so if your experience is this close to what we’re looking for, please consider applying.

See more jobs at Shopify

Apply for this job

Shopify is hiring a Remote Director of Security Engineering (Remote, Europe)

Company Description

At Shopify, we build products that help entrepreneurs around the world to start and grow their businesses. We’re the world’s fastest growing commerce platform and we have no plans of slowing down!

Job Description

We’re looking for an experienced security leader to join Shopify’s Trust team and lead our Active Defence team. 

Shopify has grown rapidly over the last number of years. Through a series of safeguards, the Trust team has created a safe environment for employees to do their best work without risking our merchants' trust. The Active Defence team is always monitoring for risk and when bad behaviours are detected (internally and externally), the team jumps into action to remediate the situation. 

As the Director of Security Engineering for the Active Defence team, you’ll be responsible for defining and growing the security incident response and security operations strategy, roadmap and team. You’ll be expected to scale the incident response function using technology, automation and best practice.

This is a trailblazing team! You will have the creative freedom to make a real difference and the chance to work with the best talent. Sounds like the place for you? Read on, and we'd love to hear from you!


Responsibilities: 

Here’s what you can expect from the role - an opportunity to:

  • Lead engineering and operations teams to enhance our security incident response capability and perform scalable security alert management.

  • Build and establish the methodology and tooling to operate security incident response and alert management at scale. 

  • Use data to define and develop metrics to tell the security incident response story.

  • Organize and run regular game day and crisis scenarios exercises.

  • Be willing to roll up your sleeves and participate in critical security incident response and mitigation efforts. 

  • Provide direction, mentorship and support to a team of incident responders, security analysts, security engineers and security support specialists.

  • Grow the team through hiring and development. 

  • Champion the incident response craft, along with leaders from other Shopify teams.

  • Work with senior stakeholders and be a security advocate at Shopify. 

Qualifications

While we don’t need you to have specific experience with our technology stack, this is a leadership position that requires that you have: 

  • Demonstrated proficiency in building and operating security incident response and security operations programs in a technical environment. 

  • Experience being the lead technical responder or participating in large scale and complex security incident response in a cloud-based or zero trust environment, leveraging strong analytical and data literacy skills to find the needle in the haystack.

  • Proven management and leadership skills, allowing you to develop and mentor others.

  • Experience executing broader security strategies while building credibility with your team.

  • Familiarity working with senior stakeholders across the organization, both technical and non technical, to develop roadmaps, integrate with larger company initiatives and deliver business and security value. 

  • Experience working in a SaaS company.
     

It would be great if you had experience in some of the following:

  • Knowledge of and/or experience with technologies such as Google Cloud Platform, Kubernetes, Splunk, Okta, Google Workspace, GitHub, etc… .

  • Working with large datasets to gather insights and validate assumptions.

  • Participating in an on-call rotation.

  • Leveraging technology to automate manual work.

Additional Information

We know that applying to a new role takes a lot of work and we truly value your time. Marina is looking forward to reading your application!

This posting will close on Thursday, May 5, 2022 at 11:59PM EDT.

Shopify is now permanently remote, and we’re working towards a future that is digital by design. That location you see above? Consider it merely an example of hundreds of potential locations Shopify is hiring. Learn more here:https://www.shopify.com/careers/work-anywhere

Our belief is that a strong commitment to diversity & inclusion enables us to truly make commerce better for everyone. We encourage applications from Indigenous peoples, racialized people, people with disabilities, people from gender and sexually diverse communities, and/or people with intersectional identities. Please take a look at our Sustainability Reports to learn more about Shopify’s commitments to our communities, and our planet.

At Shopify, we understand that experience comes in many forms. We’re dedicated to adding new perspectives to the team - so if your experience is this close to what we’re looking for, please consider applying.

See more jobs at Shopify

Apply for this job

+30d

Cloud Security Engineer

DNAnexusMountain View, CA, USA, Remote

DNAnexus is hiring a Remote Cloud Security Engineer

Company Description

DNAnexus is the leading cloud-based SaaS company serving the global life science community. DNAnexus’ health informatics platform serves customers across a spectrum of industries — government, biopharmaceutical, clinical diagnostics, healthcare, and academic research in 33 countries with compliant protection of data, privacy, and intellectual property. The platform provides a secure and collaborative environment where genomics, multi-omics, and real world data can be combined with clinical data at scale, providing new insights that can lead to improved diagnostics, new targeted therapies and better patient care.

The Security Mission

Our customers depend on the secure and reliable operation of the DNAnexus platform to run their business.  From clinical research to large-scale multi-omics computation, our platform is essential to tackle some of the most exciting opportunities in human health.  With DNAnexus, organizations can stay a step ahead in leveraging genomics to achieve their goals.  DNAnexus brings it all together on a single secure, resilient, and  scalable platform.

Key Company Highlights

  • Founded in 2009 by leading Stanford genomic scientists, headquartered in Mountain View, CA, 140+ employees.
  • Generating significant revenue, global footprint, ramping rapidly; with Enterprise customers including Ancestry, Regeneron, Natera, Johns Hopkins, FDA, Myriad Genetics, St Jude among others.
  • FedRAMP Moderate ATO (“Authorized-To-Operate”) platform with current certifications in ISO27001, and HITRUST.
  • Engaged on a 5 year, $20M contract with the FDA to power the precisionFDA collaborative omics environment in the cloud.
  • Well funded by Tier-1 investors including Blackstone Group, Foresite Capital, Google Ventures, Perceptive Advisors, Northpond Ventures and TPG Capital, among others.
  • Massive, evolving market opportunity that hasn’t been adequately addressed yet.
  • Passionate and proven executive leadership team with deep genomics, big data/analytics, and cloud expertise.   

Job Description

Through close collaboration with DevOps, Site Reliability Engineering, and Software Engineering colleagues, you’ll design, recommend, and implement security controls that operate at the edge, cloud fabric, and workload container level.  You’ll leverage both open source and cloud-provider managed services to mature our existing controlset in a FedRAMP Moderate and GxP compliant environment.

You’ll have a key role in our incident response and business continuity plans and operate in a peer group with our Site Reliability and Release Engineering teams.  Together, you’ll build architectures that scale and define the next target state for life science and genomic analytics.  You’ll also partner with our Detection and Response team to provide instrumentation and control recommendations to prevent fraud and improve the resilience of our platform.

The problems you will solve:

  • You’ll design security and control systems that easily replicate across regions and cloud providers.
  • As our business scales, the controls you design also need to scale, efficiency, resilience, and maintainability will be driving considerations in everything that you do.
  • You’ll work with engineering and DevOps colleagues to adopt cloud-native architectures for new systems and the refresh of existing systems.
  • You’ll be an essential part of our collaboration and relationship with our cloud service providers (CSP), and will lead the company in leveraging new technologies and services that our CSPs make available.  You’ll also participate in voice-of-customer engagements to give direct feedback to our CSP partners.
  • While constantly evaluating opportunities for control improve how to add and mature security controls without impacting deployment speeds and platform stability
  • Most importantly, you’ll develop close, collaborative relationships with other technical experts in our  Engineering, SRE, DevOps, IT, and Detection & Response functions.

Qualifications

  • You’ll need to have a working proficiency with python and terraform, and be able to bring examples of how you’ve solved problems using these languages in the past.
  • Your goto method for defining infrastructure components is in code and you’re familiar with deploying infrastructure via a CI/CD pipeline.  You’ll also support modifications& enhancements for that deployment pipeline.
  • You’ve worked with cloud-native infrastructure in the past.  At a minimum, this includes experience with AWS.  We’re also interested in your Azure and Google Cloud experience and you’ll have opportunities to continue developing those skills with us.
  • Prior experience in a regulated environment (ISO27001, SOC2 Type II, FedRAMP Moderate) and within the Lifesciences will give you a solid foundation for success in this role.

Personal Attributes and Values:

  • You personally enjoy contributing to the security community and driving our industry to do better.
  • Complex problems intrigue you and you leverage creative problem solving skills as well as the ability to ignite the creativity of others to solve these problems.
  • Flexible, nimble, and scrappy; startup mentality and willingness/ability to change direction quickly if best for the business.  You understand and can navigate the tradeoffs that allow us to manage our technical debt load.
  • You drive for efficiency and low-effort supportability in the infrastructure you build.  
  • Core to your approach is continual learning and self-development.  You ask others to help with your learning and support them in their learning.
  • You can extract lessons from failure and look at each project you undertake as an opportunity to improve and a fresh opportunity for success.
  • A self starter that can work independently and collaboratively across multiple workstreams without technical program management support. You place a priority and substantial focus on personal relationships with the other experts that you work with.
  • Able to earn the respect of the team on the basis of crisp execution, technical depth, hands-on style, and strategic decision making ability.
  • Takes a data centric, objective approach to decision making and has the ability to put aside personal preferences, historical bias, peer pressure and political influences to arrive at decisions on a reasoned, objectively-defensible basis.
  • A positive, energetic, can-do attitude. High EQ, hungry to succeed, achievement orientation, self-motivation.  Highly confident, yet humble and self-aware.
  • Entrepreneurial DNA; not afraid to take calculated risks, brings a mentality of rapid innovation and the desire to attain big goals.
  • High integrity, principles, and ethics.

Additional Information

Based in Mountain View, California, DNAnexus is experiencing rapid growth and is searching for the best talent to join our team. We recently completed a $200 million financing round to advance our growth globally to further serve leading healthcare and life science organizations. Key investors include Blackstone Group, Google Ventures, Perceptive Advisors, Northpond Ventures, TPG Biotech, and Foresite Capital.

We look forward to meeting you and learning more about your career objectives - apply today!

See more jobs at DNAnexus

Apply for this job


Other Job subscriptions you might be insterested in