This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description You’ll triage and remediate security alerts across Openly’s attack surface, build detection automations, and serve as a key security partner for our AI initiatives — including multi-agent platforms, LLM tools, and agentic API workflows. Responsibilities - Investigate and respond to security events; communicate findings to risk decision makers - Build and maintain security tools, automations, runbooks, dashboards, and detection infrastructure - Proactively hunt for threats and stay current on cybersecurity best practices - Perform threat modeling and security architecture reviews for AI agent platforms - Design security controls for identity flows (OAuth/OIDC, Okta, Auth0, Entra ID) within agentic systems - Harden LLM gateways and MCP connectors against prompt injection, tool abuse, and token leakage - Embed security into AI builds from design through deployment Qualifications - BS in Computer Science, IT, or equivalent experience - 6+ years in technical roles; 4+ years in Security Engineering/Operations; 2+ years in an adjacent field (IT, DevOps, etc.) - Broad security knowledge: endpoint, email, network, identity, cloud, vulnerability management, IR, threat intel - Experience with EDR, MDR, SIEM, CSPM, and email security tools - Securing AI systems and agentic workflows, including MCP security risks (prompt injection, tool abuse, unauthorized access) - Securing multi-agent orchestration: agent delegation, tool-use layers, session data protection, guardrail enforcement - Deep knowledge of OAuth 2.0/OIDC, token security, and IdP administration (Okta, Auth0, Google Workspace, Entra ID) - Hardening human-in-the-loop workflows, async AI execution, and conversation memory stores - Experience with GCP/AWS, Python, Terraform, and Git Requirements - Strategic thinking - Clear communication - Innovation - Comfort with ambiguity - Systems architecture - Team mentorship Benefits - Remote-First Culture - We supported #remotelife long before it was a given. We'll keep promoting it. - Competitive Salary & Equity - Comprehensive Medical, Dental, and Vision Plan Offerings - Life and disability coverage including voluntary options - Parental Leave - up to 8 weeks (320 hours) of paid parental leave based on meeting eligibility requirements - 401K Company Contribution - Openly contributes 3% of the employee's gross income, even if the employee does not contribute. - Work-from-home stipend - We provide a $1,500 allowance to spend on setting up your home workplace - Annual Professional Development Fund: Each employee has $2,000 in professional development (PD) funds to spend on activities or resources annually. - Be Well Program - Employees receive $50 per month to use towards your overall well-being - Paid Volunteer Service Hours - Referral Program and Reward

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description This position offers a remote work arrangement while requiring occasional in-person attendance for business meetings and events. This position offers a base salary range of $147,081.00 - $245,138.00 per year, depending on experience and qualifications, plus bonus based on company performance. One of the MANY work perks at Sheetz is quarterly employee bonuses based on company performance! And there’s more – A LOT more… like competitive salaries, PTO and parental leave, 401k match and employee stock ownership, limitless professional development and growth opportunities, tuition reimbursement, full medical, vision and dental coverage, and snack discounts! Provides strategic leadership and enterprise oversight of cybersecurity programs enterprise wide. Establishes and executes the organization’s cybersecurity strategy, governance, risk, and compliance framework to protect company systems, data, and technology assets while enabling secure business growth. Partners with executive leadership to manage cyber risk, strengthen security posture, lead incident response, and promote a security-first culture aligned with organizational objectives. Responsibilities - Lead the development and implementation of the organizations cybersecurity strategy, establishing cybersecurity governance, risk, and compliance (GRC) frameworks and policies. - Proactively assess evolving cybersecurity and technology landscapes to stay ahead of emerging threats. - Facilitate the execution of growth and technology strategies by ensuring that technology adoption is resilient and secure. - Conduct internal assessments of compliance with cybersecurity policies and advise executive management on cybersecurity risk. - Act as the primary liaison for external audits and coordinates logistics, access, and response with third-party auditors. - Develop cybersecurity capabilities and talent in relation to emerging threats, laws and regulations, and organizational goals. - Build relationships with senior business decision makers and engage to collaboratively define the risk appetite for the organization. - Lead cybersecurity incident response (IR), including engagements with third-party entities and law enforcement. - Responsible for the effective use of cybersecurity assets and manages the cybersecurity budget. - Foster a security-aware culture collaborating with senior leaders to establish cybersecurity champions across the organization. Qualifications - Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field required. - Master’s degree in Information Security, Business Administration, or related discipline preferred. - Minimum 10 years of progressive experience in cybersecurity, information security, or IT security required. - Minimum 5 years of leadership or supervisory experience required. - Experience leading enterprise cybersecurity programs, incident response, and risk management initiatives required. - Experience in retail, multi-site operations, or highly distributed environments preferred. - Experience presenting to executive leadership and board-level stakeholders preferred. - Certified Information Systems Security Professional (CISSP) preferred. - Certified Information Security Manager (CISM) preferred. - Certified Information Systems Auditor (CISA) preferred. - Certified in Risk and Information Systems Control (CRISC) preferred. - GIAC certifications or equivalent preferred. - Cloud security certifications (CCSP, AWS Security, Azure Security) preferred. - General Office Equipment. Accommodations Sheetz is committed to the full inclusion of all qualified individuals. Sheetz is committed to considering all applicants regardless of disability who can perform all essential job duties with or without accommodations.

EnerSys is a global leader in stored energy solutions for industrial applications. We have over thirty manufacturing and assembly plants worldwide servicing over 10,000 customers in more than 100 countries. Worldwide headquarters are located in Reading, PA, USA with regional headquarters in Europe and Asia. We complement our extensive line of Motive Power and Energy Systems with a full range of integrated services and systems. With sales and service locations throughout the world, and over 100 years of battery experience, EnerSys is the power/full solution for stored DC power products. Job Purpose The Application Security Engineer is responsible for strengthening the security of our applications, platforms, and development processes. This position partners with software engineers, DevOps teams, and security professionals to embed security into the full software development lifecycle. Collaborate within an expanding Cybersecurity team, and work closely with internal EnerSys teams to ensure new and continued compliance with cybersecurity frameworks and required programs and initiatives. Base Salary Range: $117,200.00 - $146,600.00 per year Compensation may vary based on applicant's work experience, education level, skill set, and/or location. Essential Duties and Responsibilities • Serve as a primary liaison between the Cybersecurity and development teams, ensuring security is integrated into design, development, deployment, and operations. • Conduct application security assessments, code reviews, API testing, threat modeling, and penetration testing to identify vulnerabilities. • Define, maintain, and enforce secure coding standards, patterns, and best practices. • Integrate and manage security tooling within CI/CD pipelines, including SAST, DAST, SCA, IaC scanning, and container security solutions. • Support secure architecture reviews for cloud‑native applications, microservices, and containerized workloads. • Support threat modeling, risk assessments, and security architecture reviews for applications. • Ensure that all security practices meet regulatory and compliance requirements. • Develop and deliver cybersecurity training programs for development teams to promote awareness and adherence to best practices. • Ensure application security practices align with regulatory and compliance frameworks (e.g., NIST CSF, ISO 27001, IEC 62443). • Keep up to date on emerging threats, incorporating threat intelligence into security practices and providing proactive defenses. • Monitor and respond to application security threats, incidents and vulnerabilities. • Stay up to date on regulatory developments and industry trends. • Manage and maintain third-party vendor and consultant relationships . • Perform other duties as assigned. SUPERVISORY RESPONSIBILITIES: N/A Qualifications To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Must have an active passport and be willing to travel internationally. Education and/or Experience • A degree in a technical field (Computer Science, Information Systems, or Cybersecurity) is preferred but not required. • 5+ years of experience in Information Security, with at least 3 years focused on application security, secure development, or DevSecOps. • Strong understanding of OWASP Top 10, OWASP ASVS, SANS Top 25, and secure SDLC methodologies. • Hands-on experience with application security testing tools (e.g., Burp Suite, Fortify, Checkmarx, Veracode, Fortify, ZAP.). • Experience with threat modeling, penetration testing, and secure software development practices. • Practical experience with cloud platforms (AWS or Azure) and cloud-native security controls. • Familiarity with Kubernetes security, container hardening, and runtime protection. • Experience conducting threat modeling, penetration testing, and secure architecture reviews. • Strong communication skills with the ability to influence and collaborate across technical and non-technical teams. • Relevant certifications (e.g., CISSP, CSSLP, OSCP, GWAPT, CEH, GIAC Cloud Security) other relevant certifications is preferred. Reasoning Ability • Problem management / resolution skills; project management skills; generally accepted security principles. • Ability to analyze data, resources, and schedules to make decisions that affect a project on a regular basis. TRAVEL REQUIRED: Up to 15% General Job Requirements - This position will work in an office setting, expect minimal physical demands. EnerSys provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. Know Your Rights Know Your Rights (Spanish) We use artificial intelligence to screen, assess and select applicants for open positions, including for the purposes of reviewing and ranking application materials and scoring answers to application questions. Accordingly, decisions about your application and eligibility for employment with EnerSys may be made based exclusively on the automated processing of the personal information that you submit in your application materials.

As a Network Security Engineer here at Honeywell, you will oversee the daily operations of our perimeter security technologies across global data centers and cloud environments, including firewall and proxy services. You will serve as a key technical resource—proactively identifying potential risks, proposing solutions, and ensuring seamless service delivery across interconnected infrastructure. You will collaborate closely with internal customers by responding to service requests and supporting secure operations across the enterprise. You will report directly to our Cybersecurity Manager and you’ll work remotely. Honeywell helps organizations solve the world's most complex challenges in automation, the future of aviation and energy transition. As a trusted partner, we provide actionable solutions and innovation through our Aerospace Technologies, Building Automation, Energy and Sustainability Solutions, and Industrial Automation business segments – powered by our Honeywell Forge software – that help make the world smarter, safer and more sustainable.