This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description This role is a senior leadership position responsible for shaping and executing the organization’s information security strategy while ensuring IT operational excellence. The Chief Information Security Officer (CISO) oversees the security and technology landscape, including risk management, compliance, endpoint security, and governance across global operations. This position leads cross-functional teams, develops policies, and drives initiatives that protect critical systems and data while enabling business growth. The CISO provides advisory support to executive leadership, coordinates audits and regulatory compliance programs, and cultivates a culture of security awareness throughout the organization. The ideal candidate balances technical expertise with strategic vision, thrives in a fast-paced environment, and fosters collaboration across departments to manage complex security and IT challenges. This is a fully remote role requiring strong communication and leadership skills to coordinate across multiple time zones and teams. - Lead the development and execution of enterprise-wide information security and IT programs aligned with business priorities. - Partner with executive leadership, legal, compliance, and business units to manage risk, regulatory requirements, and security policies. - Oversee IT operations, including infrastructure, systems architecture, cloud and hybrid environments, and endpoint security management. - Direct incident response, business continuity, disaster recovery, and security incident preparedness programs. - Manage vendor and third-party security relationships, audits, and assessments. - Develop, mentor, and manage a team of IT and security professionals, fostering professional growth and high performance. - Monitor emerging threats and industry trends to proactively enhance security posture and organizational readiness. - Ensure compliance with relevant laws, regulations, and industry standards such as SOC 2, NYDFS, GDPR, DORA, and NIST frameworks. Qualifications - 8+ years of hands-on technical security experience, including 4+ years leading teams and programs. - Experience with global, cross-functional teams and security compliance initiatives. - Knowledge of systems architecture, cloud and hybrid environments, DevOps practices, and secure AI implementation. - Strong understanding of security standards and frameworks (SOC 2, NYDFS Part 500, DORA, GDPR, NIST CSF). - Practical experience securing remote work environments and managing endpoint security. - Excellent oral and written communication, organizational, and time management skills. - BS or MS in Computer Science, Computer Security, Computer Engineering, or related field. - Preferred: CISM or CISSP certification, experience in fintech or crypto industries, and familiarity with audit/advisory practices. Benefits - Fully remote role with flexible work arrangements across U.S. time zones. - Competitive salary with potential for stock options and variable incentives. - 100% employer-paid medical, dental, vision, life, and disability coverage. - Professional development reimbursement and access to continuous learning opportunities. - Home office allowance, internet/cell reimbursement, and subscription perks (e.g., Amazon Prime, Spotify). - Participation in crypto payment and match programs where applicable. - Generous vacation policy, including sabbatical options and personal holiday selection. - Opportunity to lead and shape a global security and IT strategy in a fast-growing organization. Company Description

With a career at The Home Depot, you can be yourself and also be part of something bigger. Position Purpose: This role is a key technical position on the SaaS Security team, responsible for the integration, development, and automation of the SaaS Security program. The CyberSecurity Engineer II will focus on the technical onboarding of SaaS applications into security tooling, developing custom solutions to enhance data visibility and reporting, and automating security processes to enable the program to scale across the enterprise. Key Responsibilities: - 100% Deliver Execution & Problem Solving - Collaborate with Enterprise Technology to configure and integrate cybersecurity systems that mitigate risk; Troubleshoot and quickly resolve escalated incidents; Design, build, configure, maintain, monitor cybersecurity threat defense capabilities and user access management; Coordinate integration and collaboration with managed security providers; Investigate and recommend corrective actions related to incidents Direct Manager/Direct Reports: - This position typically reports to Manager or Sr. Manager - This position has 0 Direct Reports Travel Requirements: - No travel required. Physical Requirements: - Most of the time is spent sitting in a comfortable position and there is frequent opportunity to move about. On rare occasions there may be a need to move or lift light articles. Working Conditions: - Located in a comfortable indoor area. Any unpleasant conditions would be infrequent and not objectionable. Minimum Qualifications: - Must be eighteen years of age or older. - Must be legally permitted to work in the United States. - 3+ years of experience in Information Security, IT, or software development. - Experience with scripting or development languages (e.g., Python, PowerShell, JavaScript). - Experience working with APIs (REST, SOAP). - Understanding of fundamental cybersecurity principles. Preferred Qualifications: - Bachelor's degree in Computer Science, Information Systems, or a related field. - Experience in a cloud or SaaS security role. - Hands-on experience with identity protocols (SAML, OAuth, OIDC, SCIM). - Experience building dashboards or reports in data visualization tools (e.g., Tableau, Power BI, Grafana). - Security certifications such as CompTIA Security+, GCLD, or GCSA. Minimum Education: - The knowledge, skills and abilities typically acquired through the completion of a bachelor's degree program or equivalent degree in a field of study related to the job. Preferred Education: - No additional education Minimum Years of Work Experience: - 2 Preferred Years of Work Experience: - No additional years of experience Minimum Leadership Experience: - None Preferred Leadership Experience: - None Certifications: - None Competencies: - Action Oriented - Collaborates - Communicates Effectively - Customer Focus - Drives Results For California, Colorado, Connecticut, Rhode Island, Nevada, New York City, Ithaca (NY), Westchester County (NY), and Washington residents: The pay range for this position is between $90,000 - $170,000

With a career at The Home Depot, you can be yourself and also be part of something bigger. Position Purpose: The SaaS Security Manager is responsible for leading a team that continuously assesses and improves the security posture of The Home Depot’s SaaS applications across the enterprise. This role owns the SaaS Security program, establishes standards and guardrails for SaaS platforms, and partners with product, engineering, and enterprise teams to protect customer, associate, and company data in third-party cloud services. Key Responsibilities: - 100% Deliver Execution, Plans & Aligns, Develop Others - Collaborate across teams to reduce vulnerabilities, risks, and incident management; Drive execution of solution delivery; Guide teams in strategy, alignment, analysis, and execution to ensure priorities, objectives/deliverables are met; Provide leadership, mentoring, and coaching to direct reports Direct Manager/Direct Reports: - This position typically reports to Sr. Manager or Director - This position has 6-10 Direct Reports Travel Requirements: - No travel required. Physical Requirements: - Most of the time is spent sitting in a comfortable position, and there is frequent opportunity to move about. On rare occasions, there may be a need to move or lift light articles. Working Conditions: - Located in a comfortable indoor area. Any unpleasant conditions would be infrequent and not objectionable. Minimum Qualifications: - Must be eighteen years of age or older. - Must be legally permitted to work in the United States. - 5+ years of experience in Information Security, with at least 2 years focused on Cloud or SaaS security. - 2+ years of people management or technical leadership experience. - Proven experience securing major enterprise SaaS platforms (e.g., Google Workspace, Microsoft 365, Salesforce, ServiceNow, Slack, Atlassian). Preferred Qualifications: - Bachelor's degree in Computer Science, Information Systems, or a related field. - Industry certifications: CISSP, CISM, CCSP, or vendor-specific certifications (e.g., Salesforce Certified Security Specialist). - Experience with scripting/automation (Python, PowerShell) to automate governance tasks. - Experience implementing Data Loss Prevention (DLP) policies across SaaS environments. Minimum Education: - The knowledge, skills and abilities typically acquired through the completion of a bachelor's degree program or equivalent degree in a field of study related to the job. Preferred Education: - No additional education Minimum Years of Work Experience: - 8 yrs Preferred Years of Work Experience: - No additional years of experience Minimum Leadership Experience: - 2+ yrs Competencies: - Leadership: Proven ability to lead, motivate, and develop a team of security professionals. - Technical Expertise: - Strong knowledge of Identity protocols: SAML, OIDC, SCIM, and OAuth. - Familiarity with API security and interconnected SaaS risks (shadow IT, third-party app integrations). - Strategic Thinking: Ability to prioritize risks in a fast-paced environment and translate technical security risks into business language for stakeholders. - Communication: Excellent written and verbal communication skills. - Collaboration: Proven ability to work effectively with cross-functional teams (IT, HR, Sales, etc.) to achieve common goals. For California, Colorado, Connecticut, Rhode Island, Nevada, New York City, Ithaca (NY), Westchester County (NY), and Washington residents: The pay range for this position is between $170,000 - $240,000

Job DetailsLevel: ExperiencedJob Location: Beshenich Muir Associates LLC BMA Corporate Office - Huntsville, AL 35805Position Type: Full TimeEducation Level: Not SpecifiedTravel Percentage: Occasionally Job Shift: DayJob Category: Professional ServicesBMA is seeking a Cybersecurity Engineer to support the DLA JETS Cybersecurity Technology Support program. This is a fully remote position and contingent on contract award. Job Summary BMA is seeking a Cybersecurity Engineer (CE) to support our DLA Cybersecurity Technology Support contract. The CE provides specialized cybersecurity (CS) engineering support to the DLA J61 Cybersecurity Technology Group to assist with the integration, sustainment, and operational support of enterprise CS technologies. The CE applies information assurance (IA) and cybersecurity engineering principles to analyze security requirements, resolve technology and workflow issues, and support the planning, design, development, testing, demonstration, and integration of CS systems across the enterprise. The CE supports a broad portfolio of CS platforms, with particular emphasis on Web Application Firewall (WAF) technologies and related enterprise cybersecurity tools. This role supports the implementation, configuration, maintenance, and continuous improvement of systems used to protect DLA information systems, applications, and infrastructure in accordance with DoD and DLA cybersecurity requirements. The CE works closely with DLA cybersecurity personnel, system administrators, network engineers, tool owners, and mission stakeholders to ensure cybersecurity technologies are properly engineered, maintained, tested, documented, and aligned with operational and compliance requirements. Key Responsibilities: CS Engineering Support Provide security engineering support for the planning, design, development, testing, demonstration, and integration of cybersecurity technologies supporting the DLA Cybersecurity Technology Group. Analyze IA and cybersecurity requirements and apply systematic engineering approaches to resolve technical and operational issues. Support integration of cybersecurity tools, applications, appliances, sensors, and platform-related hardware and software across the enterprise. Evaluate system workflows, technical configurations, and operational processes to improve efficiency, reliability, and security. WAF Engineering and Sustainment Support the sustainment and operational engineering of F5 BIG-IP Application Security Manager and related WAF technologies protecting DLA websites and web applications. Work with DLA website stakeholders to gather requirements and develop, configure, test, deploy, and maintain WAF policies. Support patching, upgrades, preventive maintenance, bug fixes, firmware updates, and maintenance releases for WAF environments. Assist in tuning and optimizing WAF functionality to improve security effectiveness and reduce operational risk. IA and Security Compliance Analyze existing and emerging DLA information systems and IT infrastructure to assess compliance with DoD and Federal IA policy. Review system design documentation, proposed policies, and draft changes to identify areas of non-compliance and recommend remediation actions. Support Security Test and Evaluation, IA assessments, and technical reviews to validate compliance with cybersecurity requirements. Develop and document implementation standards, security engineering guides, and supporting procedures for cybersecurity tools and environments. Platform Integration and Technical Support Support operational integration and sustainment of cybersecurity platforms used by DLA, including technologies related to WAF, GRC workflow, SIEM/ELM, IDS/IPS, vulnerability management, insider threat, UBA, and comply-to-connect capabilities. Assist with troubleshooting, maintenance, configuration changes, and technical analysis of cybersecurity toolsets and associated infrastructure. Support test environments and production deployments to ensure systems are stable, secure, and operationally effective. Provide technical recommendations for product enhancements, lifecycle management, and implementation improvements. Documentation, Testing, and Reporting Prepare implementation documentation, system test results, SOPs, technical reports, and engineering recommendations. Support development of training materials, technical briefings, and user guidance for cybersecurity tools and engineering processes. Document deficiencies, corrective actions, system changes, and engineering recommendations. Support reporting. Clearance Requirements There is a Secret Security clearance requirement for this position. Required Skills & Certifications Current DoD 8670.01/8140 IAM Level III certification that includes one or more of the following: ISACA CISM, ISC2 Certified Information Systems Security Professional (CISSP), GIAC/SANS GIAC Security Leadership Certification (GSLC), or EC-Council Certified Chief Information Security Officer (CCISO). DoD 8570/8140 CND-IS. Computing Environment Certification: F5 Certified Technology Specialist – ASM. 7+ years of relevant information technology experience supporting cybersecurity, information assurance, systems engineering, or related enterprise IT functions. Demonstrated experience applying engineering and analytical methods to resolve information assurance and cybersecurity technology issues. Experience supporting the planning, design, integration, testing, and sustainment of enterprise cybersecurity technologies. Experience with F5 BIG-IP ASM in enterprise environments. Experience supporting DoD or DLA cybersecurity operations. Experience with enterprise security tool integration and sustainment. Experience working in structured change management and maintenance environments. Experience with WAF sustainment. Experience with information assurance engineering. Experience with cybersecurity technology integration. Experience with system maintenance and testing. Experience with implementation documentation and SOP development. Experience with platform hardening, tuning, and lifecycle support. Familiarity with information assurance compliance, technical security controls, and cybersecurity support within a DoD or federal environment. Strong analytical, troubleshooting, documentation, and technical communication skills. Desired Skills & Certifications Experience supporting DoD or DLA program offices. Experience supporting DoD or DLA environments. Familiarity with DLA-specific cybersecurity governance frameworks. Familiarity with enterprise cybersecurity risk analysis and mitigation evaluation. Familiarity with network security architecture and vulnerability assessment. Familiarity with technical documentation and cybersecurity reporting. Current Project Management Professional (PMP) certification. Current Risk Management Professional certification such as one or more of the following: PMP-RMP, ISACA Certified in Risk and Information Systems Control (CRISC), ISACA Certified Information Systems Auditor (CISA), ISACA Certified Information Security Manager (CISM), ISC2 Certified in Governance, Risk and Compliance (CGRC), or Risk and Insurance Management Society (RIMS) Certified Risk Management Professional (RIMS-CRMP). Other Duties Able to travel within a week's notice. This job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice. Overview BMA is an employee-owned small business headquartered in Huntsville, AL that provides superior customer service by empowering all levels of our staff to make timely decisions to produce high-quality results. BMA fosters an environment of passion, precision, and dedication in order to fulfill our commitments to our partners, government, and country. Benefits We believe that our employees well-being is paramount to our success so our benefits package has been crafted with that in mind. We offer multiple healthcare coverage options to include low deductible, high deductible, and plans eligible for our Health Savings Account (HSA) option. Along with medical coverage, employees have dental, vision, accident & illness, short- and long-term disability all available to them. BMA proudly maintains a 401(k) plan with an industry leading 6% match that can include profit sharing based on company performance. Lastly, being an employee-owned company means that BMA offers a 100% Employee Stock Ownership Plan (ESOP), providing eligible employees the opportunity to earn stock in BMA, subject to plan eligibility and vesting requirements. AAP & EEO Statement Beshenich Muir & Associates, LLC (BMA) is an Equal opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regards to race, color, religion, religious creed, gender, sexual orientation, gender identity, gender expression, transgender, pregnancy, marital status, national origin, ancestry, citizenship status, age, disability, protected Veteran Status, genetics or any other characteristics protected by applicable Federal, State, or Local Law. Qualifications