This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description As our Senior Application Security Engineer, you will be the primary owner and driver of our application security program. You’ll work hands‑on with engineering teams to embed secure development practices, improve tooling and automation, and guide security considerations for new features, architectures, and services. This is a high‑impact role where you’ll shape the future of AppSec at a company that values security as a core part of product quality. What You’ll Do - Application Security Ownership - Lead and evolve the company’s application security strategy, roadmap, and day‑to‑day operations. - Serve as the primary AppSec partner for numerous dev teams working on Ruby on Rails web apps, React Native mobile apps, and various other projects including Python and Go. - Provide security guidance during design, development, and code review for new features and projects. - Drive adoption of secure coding practices and threat‑modeling across engineering teams. - Tooling & Automation - Manage and optimize existing AppSec tooling, including: - GitHub Advanced Security (SAST, SCA, Secret Scanning) - Invicti (DAST) - Hadrian (ASM) - AppDome (mobile application security) - Cloudflare WAF - Improve automation and integration of security tools into CI/CD pipelines. - Identify and implement additional tools or processes to strengthen the security posture. - Secure SDLC & Developer Enablement - Build and maintain secure development standards, playbooks, and training materials. - Partner with engineering teams during sprint planning and feature design to proactively address risks. - Conduct security reviews, code assessments, and vulnerability triage with development teams. - Cloud & DevOps Collaboration - Work with DevOps to ensure secure AWS infrastructure deployments and configurations. - Contribute to hardening efforts across ECS, IAM, networking, and supporting cloud services. - Assist in designing and maintaining secure CI/CD workflows. - Incident & Vulnerability Management - Lead or support investigation and remediation of application‑level vulnerabilities. - Monitor, prioritize, and track findings from SAST/DAST/ASM tools. - Collaborate with engineering to ensure timely and effective remediation. Qualifications - 3–7+ years of experience in Application Security, Product Security, or related engineering roles. - Strong understanding of secure coding practices, common vulnerabilities (OWASP Top 10), and modern SDLC. - Experience working with cloud‑native applications, ideally in AWS. - Understanding of SSL certificates & cryptographic key management. - Hands‑on experience with SAST, DAST, WAFs, and/or mobile application security tools. - Ability to partner effectively with developers and influence secure design decisions. - Familiarity with GitHub‑based workflows and CI/CD pipelines. Requirements - Development experience with Ruby on Rails or similar dynamic languages. - Knowledge of AWS ECS/EKS, container security, secrets management and infrastructure‑as‑code (CloudFormation, Terraform). - Experience building or maturing an AppSec program from early stages. - SOAR Automation & Scripting experience. - Experience working in a PCI compliant environment working with annual reporting needs. Benefits - High ownership role where you define the AppSec roadmap. - Modern engineering environment with strong leadership support for security. - Opportunity to influence architecture, tooling, and culture across the entire development organization. - Competitive compensation, benefits, and growth opportunities. - Considerable employer contributions for health, dental, and vision programs. - Generous PTO, paid holidays, and paid parental leave. - 401(k) matching program. - Merit advancement opportunities. - Career development & training. - Team spirit and culture that cultivates an environment of community, connection, and belonging.

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description GEM Technologies is seeking an experienced Palo Alto Networks Subject Matter Expert to assist our engineering team with complex firewall and security architecture challenges. This role is not a full-time position. We are looking for a trusted escalation resource who can provide expert guidance when advanced issues arise and help mentor our engineers so they can build internal expertise. - Assist senior engineers with complex Palo Alto firewall troubleshooting - Review firewall configurations and recommend best practices - Help design and validate advanced security architectures - Provide guidance on Panorama, VPNs, routing, NAT, and security policies - Mentor our engineers so they can independently manage similar issues in the future Typical Engagement: - On-demand consultation (remote) - Estimated 5–15 hours per month - Occasional scheduled working sessions with our engineering team Qualifications - Must be located in the United States - 7+ years network security experience - Strong expertise with Palo Alto Networks firewalls - Experience with Panorama and large rule bases - Strong troubleshooting and architecture skills Requirements - PCNSE certification (preferred) - Experience working with MSPs or multiple client environments (preferred) - Ability to explain solutions and mentor engineers (preferred) Benefits - Compensation: $100–$250 per hour depending on experience and certifications - Final rate will depend on experience, certifications, and scope of engagement

SitusAMC is where the best and most passionate people come to transform our client’s businesses and their own careers. Whether you’re a real estate veteran, a passionate technologist, or looking to get your start, join us as we work together to realize opportunities for everyone, we proudly serve. At SitusAMC, we are looking to match your unique experience with one of our amazing careers, so that we can help you realize your potential and career growth within the Real Estate Industry. If you are someone who can be yourself, advocate for others, stay nimble, dream big, own every outcome, and think global but act local – come join our team! This role is responsible for overseeing the strategy, implementation, and governance of identity and access management across corporate and client environments. This role ensures secure, complaint, and efficient access to systems and applications, safeguarding critical assets and data. The AVP will lead initiatives to strengthen identity security, enforce access controls, and maintain compliance with organizational and regulatory standards. This role possesses a deep technical expertise in IAM platforms, strong leadership skills, and the ability to collaborate effectively with business and technology stakeholders. Essential Job Functions: - Define and maintain the IAM strategy, roadmap, and reference architecture covering workforce, privileged, non-human, and application identities. - Champion Zero Trust principles—strong authentication, continuous evaluation, least privilege, and just-in-time access. - Align IAM programs with enterprise security architecture, cloud adoption, data protection, and digital transformation initiatives. - Establish governance for identity lifecycle, access policies, and compliance with internal standards and external regulations (SOX, HIPAA, PCI DSS, GDPR, ISO 27001). - Own joiner–mover–leaver (JML) processes and ensure accurate, timely provisioning and deprovisioning integrated with HRIS and directories. - Implement and maintain RBAC/ABAC models, role mining, segregation of duties (SoD), and toxic combination controls. - Govern federation standards (SAML, OIDC/OAuth2), app onboarding, token lifecycles, and session management. - Optimize user experience while maintaining security for workforce, partners, and service accounts. - Enforce least privilege, credential vaulting, session recording, and JIT elevation for admins and high-risk roles. - Govern break-glass procedures and reduce standing privileges across servers, network devices, cloud control planes, and DevOps toolchains. - Govern identities, roles, and policies across cloud providers (Azure, AWS, GCP) and SaaS platforms. - Implement controls for workload identities, service principals, managed identities, and API authentication. - Maintain IAM controls to meet regulatory requirements and internal policies. - Prepare for audits, produce evidentiary artifacts, and manage remediation plans. - Conduct periodic access reviews, entitlement clean-up campaigns, and report residual risk to leadership. - Lead day-to-day operations of IAM platforms ensuring availability, scalability, and incident response. - Establish SLAs/OLAs, runbooks, and knowledge articles; drive MTTR improvements and change management discipline. - Oversee identity data quality, directory hygiene, and deprovisioning efficacy to minimize orphaned accounts. - Coordinate with Security, HR, Legal, Compliance, IT Operations, App Owners, and Data Governance for end-to-end alignment. - Communicate complex identity risks and trade-offs to executive stakeholders in business terms. - Maintain user accounts and permissions for corporate and client systems, including proprietary platforms. - Resolve access-related issues (e.g., MFA failures, provisioning errors) within established SLAs. - Document resolutions for compliance and knowledge sharing. - Benchmark against industry best practices and drive IAM capability maturity (e.g., NIST/CMMI frameworks). - Conduct post-incident reviews and prioritize backlog for continuous improvement. - Other activities as may be assigned by your manager. Qualifications/ Requirements: - Bachelor’s degree in related field or equivalent combination of education and experience - Minimum of 6+ years of industry and/or relevant experience, typically with 1+ years in a Senior Associate level role or external equivalent. - Hands-on experience with IAM platforms such as Microsoft Entra ID (Azure AD), SailPoint, CyberArk, Okta, or similar. - Proven track record in implementing SSO, MFA, RBAC/ABAC, and Privileged Access Management (PAM) solutions. - Experience managing identity lifecycle processes (JML) and integrating with HR systems and directories. - Strong background in cloud identity management (Azure, AWS, GCP) and federation protocols (SAML, OAuth 2.0, OpenID Connect). - Proficiency in PowerShell or other scripting languages for IAM automation. - Knowledge of Windows Server, Active Directory, and modern authentication technologies. - Familiarity with Zero Trust principles, identity threat detection, and risk-based access controls. - Understanding of regulatory frameworks such as SOX, HIPAA, PCI DSS, GDPR, ISO 27001. - Experience preparing for audits and maintaining evidentiary artifacts for IAM controls. - Proficiency in IAM technologies and protocols, including SAML, OAuth 2.0, OpenID Connect, and MFA solutions. - Strong knowledge of Microsoft Active Directory, Azure AD/Entra ID, and Windows operating systems (including Windows 11). - Experience with IAM automation using scripting languages such as PowerShell or Python. - Familiarity with regulatory and audit requirements (SOX, HIPAA, PCI DSS, GDPR, ISO 27001) and ability to maintain evidentiary artifacts. - Understanding of Zero Trust principles and identity-centric security frameworks. - Ability to analyze complex identity challenges, exercise sound judgment, and develop strategic solutions. - Skilled in troubleshooting identity-related issues and resolving conflicts with diplomacy and professionalism. - Exceptional oral, written, and technical communication skills for engaging stakeholders at all levels. - Strong interpersonal skills to influence and collaborate across IT, Security, and business teams. - Preferred Certifications (Optional): CISSP, CISM, Microsoft Certified: Identity and Access Administrator, SailPoint, CyberArk, or Okta certifications. - Requires attending any department provided training. - Requires the ability to work shifts outside of normal working hours - Requires the ability for extended travel in the event of a catastrophic event - Requires the ability to be on call and support a 24x7x365 operations - Requires the ability to support both planned and unplanned events #LI-AS1 #LI-Remote Note: This job description is not intended to be all inclusive or exclusive. At any time, employees may perform other related duties as required to meet the ongoing needs of the organization and participate in additional trainings. SitusAMC does not accept unsolicited resumes from staffing agencies, search firms or any third parties. Any unsolicited resume submitted to SitusAMC in any manner will be considered SitusAMC property, and SitusAMC will not pay a fee for any placement resulting from the receipt of an unsolicited resume. The annual full time base salary range for this role is $80,000.00 - $120,000.00 Specific compensation is determined through interviews and a review of relevant education, experience, training, skills, geographic location and alignment with market data. Additionally, certain positions may be eligible to receive a discretionary bonus as determined by bonus program guidelines, position eligibility and SitusAMC Senior Management approval. SitusAMC offers PTO and paid holidays, the terms of which are set forth in the program policies. All full time employees also are eligible to participate in various benefit plans, including medical, dental, vision, life, disability insurance and 401K; in each case in accordance with the terms of the applicable plans. Pay Transparency Nondiscrimination Provision SitusAMC is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, national origin, disability, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws. Know Your Rights, Workplace Discrimination is Illegal

• Drive the generation services and technologies business to meet or exceed quarterly and annual quota objectives in partnership with the account and domain teams. • Follows the Optiv Standardize Sales Operating Processes (SOPs) to achieve consistent success. • Maintain advanced knowledge of the client’s security environment, business operations, security needs, and risk appetite. • Identify their security concerns and how they correlate to Optiv’s strategic solutions across the assigned domain and holistic cyber security programs. • Identify cross-sell and upsell opportunities across clients and Optiv's partner relationships. • Qualify lead and partner with internal colleagues to determine scope, proposal management, and follow through to closure. • Participate in sales opportunities across Optiv's entire portfolio. • Actively participate in the Field Center of Excellence and position Optiv services and our key Network/SASE/OT technology partners and their products to deliver value to clients. • Collaborate with service delivery to ensure the team has necessary supporting domain specialty materials that presents a consistent and comprehensive approach. • Effectively work with multiple client personas across the security team, as well as other relevant personas to develop security strategy and define roadmaps to execute on security strategy aligned business goals, budgetary spend, and metrics based on return of investment. • Maintain advisory relationships with key stakeholders at clients by facilitating thought leadership, support, information, and guidance in conjunction with sales partners. • Maintain strong working relationships with relevant Optiv technology partners, based on client spend, and Optiv focus. • Design and solution complete security programs to meet client objectives across technology and services including; facilitating new discussions by leveraging peer and industry network contacts performing requirements gathering analysis, and technology selection criteria coordinating demonstrations and security technology evaluations. • Interface and partner with the internal Optiv teams, particularly service delivery liaisons, to align client expectations with the entire Optiv solution portfolio to ensure service delivery excellence and client satisfaction. • Listen for client feedback and continually share with internal teams to evaluate and cultivate continuous improvement. • Participate in account planning, forecasting, and pipeline management activities. • Participate in managing and prioritizing the proposal process to create business proposals, contracts, and respond to RFI/RFP’s. • Actively pursue personal development by maintaining and obtaining technical capabilities, soft skills, and security specific knowledge through formal education, certification, and other avenues.