We Are Praetorian Praetorian is defined by raw intensity, fearless candor, and a relentless drive. This is who we are. We are looking for high-performing, mission-aligned individuals. We prioritize performance over politics and purpose over transaction. This environment is built for those who seek ownership and impact. Is Praetorian the right fit for you? If you are someone who obsesses over the problem, defaults to open communication, and wants to work with a team that refuses to accept mediocrity—then you have found your home. The Mission Praetorian is an expert-driven offensive security company. Our mission is to prevent breaches before they occur. We help organizations shift from an "assume breach" mentality to adopting offensive security as a core strategy of prevention. We don’t just find bugs; we solve the root cause. We are building a future without compromise, and we need people who run toward the fire. Staff Security Engineer – Corporate Security (multiple openings) (Austin, TX). DUTIES: Lead technical execution of advanced security assessments such as staff augmentation initiatives, detection engineering exercises, threat hunts, risk-informed product security engagements, attack path mapping exercises, assumed breach scenarios, red team simulations, purple team engagements, and GRC compliance assessments. Lead risk-informed threat modeling sessions, defensive enablement, and tabletop exercises for enterprise-scale systems incorporating distributed architectures. Research emerging attack vectors and vulnerabilities and develop novel exploitation techniques. Create new methodologies for security testing of emerging technologies. Build custom security testing tools and frameworks for automated vulnerability discovery. Design training programs for security engineers covering emerging threats, attack techniques, and defensive strategies. Develop documentation for mitigation strategies and security implementation guides, specifically aimed at upskilling junior, senior, and lead security engineers Lead security architecture reviews of CI/CD pipelines, cloud, on-premises, and hybrid infrastructures, and container orchestration platforms. Provide expert technical guidance to all security engineers working on complex security architecture and design decisions directly impacting client project deliverables. Host company-wide knowledge sharing sessions and Office Hours to create learning opportunities where engineers from all security domains can receive guidance on security topics that extend beyond immediate project work. Lead technical discovery sessions with customer stakeholders and provide expert guidance on testing approach selection based on their security objectives and technical environment. REQUIREMENTS: - Master’s in Computer Science, Engineering, Cybersecurity or related field plus 4 years of experience OR bachelor's degree plus 6 years of experience in cybersecurity specifically in: - Cloud Security Architectures (at least two of AWS, Azure or GCP) - Product/Application Security Testing (Web, Mobile) - Secure Code Review - Programming languages (C, Bash, Python, Assembly, Go, PowerShell, JavaScript) - External and Internal Network Penetration Testing - Reverse Engineering - Vulnerability Research and Exploit Development - Command and Control (C2) channel frameworks (Sliver, CobaltStrike, Mythic) - Threat modeling - Attack path mapping - Threat hunting - Table top exercises - Purple team exercises - Must include 3 years of experience with: - Securing containerization technologies (Docker) and registry platforms DockerHub, ACR, ECR, & GCR - Securing orchestration technologies (Kubernetes) and cluster management platforms AKS, EKS, & GKE - Identity technologies for at least 3 of Azure AD, Auth0, OKTA, and Google Identity - Privilege access management solutions (CyberArk, BeyondTrust & Thycotic) and secrets management platforms (HashiCorp Vault & Cloud-Native KMSs) - Must include 3 years of experience with the following security frameworks: MITRE ATT&CK, MITRE DEF3ND, NIST CSF, CIS 18 - At least one of the following foundational offensive security certifications (OSCP, PNPT) - At least one of the following advanced certifications (CRTO, OSEP, CRTL, OSED) - Domestic travel required up to 15% of time to client sites - Fully Remote APPLY TO: Praetorian Security Inc via email at leonardo.dinic@praetorian.com Why Praetorian? We offer a culture built on high performance and deep ownership. - Elite Talent: Work alongside the top 1% of the industry—composed exclusively of high performers who raise the bar. - Our DNA: We are defined by action, grit, and uncompromising transparency. We move fast, take on hard problems, and choose clarity over comfort—because that’s how meaningful work gets done. - Impact: Your work directly protects the world's most critical organizations. Want to go deeper? Explore our New Hire Survival Guide to dive into Praetorian's mission, vision, values, and culture.

Omilia operates a proprietary, end-to-end conversational AI cloud platform serving enterprise contact centres in regulated industries including banking, utilities, and telecoms. The platform is cloud-native on AWS, Kubernetes-orchestrated, multi-tenant and single-tenant, and holds government-grade certifications including FedRAMP, ISO 27001, SOC 2 Type II, PCI-DSS Level 1, HIPAA, and GDPR. The Director of Cloud Security will own the security posture of this platform end-to-end: from infrastructure hardening and threat modelling through to audit evidence production and customer- facing security assurance. Key Responsibilities Cloud Security Ownership • Define and execute Omilia’s cloud security strategy across all deployment models: multi-tenant SaaS, exclusive tenant, private cloud, and hybrid. • Own the AWS security architecture including IAM, VPC design, GuardDuty, Security Hub, CloudTrail, KMS key management, and secrets management. • Lead infrastructure hardening programmes using golden image pipelines, CIS Benchmarks, and automated compliance scanning. • Ensure network segmentation, tenant data isolation, and zero-trust principles are implemented and maintained across all environments. Compliance & Certification Leadership • Own the annual renewal and continuous readiness of FedRAMP, SOC 2 Type II, ISO 27001, PCI-DSS Level 1, HIPAA, and GDPR across the cloud platform. • Drive the EU AI Act compliance programme as it applies to high-risk AI system classifications relevant to Omilia’s deployments in regulated sectors. • Produce and maintain the security control evidence pack used in enterprise customer due diligence, RFP responses, and regulatory audits. • Act as primary technical liaison with external auditors, QSAs, and penetration testing firms. AI & Data Security • Define data security controls for voice data processing pipelines, including real-time PCI redaction, voice biometric data storage, and training data anonymisation. • Assess security implications of LLM and generative AI integrations (Pathfinder, miniApps, RAG pipelines) and establish guardrails for model input/output security. • Own the subprocessor security assessment programme and ensure DPA/Security Exhibit obligations are met across the third-party supply chain. Security Engineering & Operations • Lead vulnerability management: SAST/DAST integration in CI/CD, container image scanning, CVE triage, patch SLAs. • Own incident response for cloud-tier events: detection, containment, eradication, recovery, and post-incident review. • Define and operate security monitoring and SIEM coverage for the OCP platform, ensuring audit logs are immutable, queryable, and exportable. • Collaborate with engineering on secure SDLC practices, threat modelling for new features, and security review gates in the release process. Stakeholder Engagement • Support Sales and Customer Success in enterprise security questionnaires, customer security reviews, and contract security exhibit negotiations. • Represent cloud security posture to the CISO, CTO, and executive team; translate technical risk into business impact language. • Engage with CCaaS platform partners (NICE, Five9, Genesys, RingCentral) on integration security requirements and shared responsibility boundaries.

Job Title: RIT Co-op: Information Security - Identity Access Management Department: Information Security - Identity Access Management Location: Remote SUMMARY: As a participant in the RIT paid Co-Op you will gain exposure and experience in the healthcare field, covering a multitude of areas within Information Security & Identity Access Management. RESPONSIBILITIES: - Provides work experience directly related to student’s course of study and career interests. - Student is given specific responsibilities related to the field of study and department in which he/she is a co-op. - Allows student to learn through active engagement and meaningful activities. - Performs other duties as assigned. REQUIRED QUALIFICATIONS: - Student of RIT. - Background in the field of study which coincides with the department utilizing the co-op. PREFERRED QUALIFICATIONS: - Dependent upon the department utilizing the co-op, specific skills or qualifications may be preferred EDUCATION: LICENSES / CERTIFICATIONS: PHYSICAL REQUIREMENTS: S - Sedentary Work - Exerting up to 10 pounds of force occasionally Sedentary work involves sitting most of the time, but may involve walking or standing for brief periods of time. Jobs are sedentary if walking and standing are required only occasionally and all other sedentary criteria are met. For disease specific care programs refer to the program specific requirements of the department for further specifications on experience and educational expectations, including continuing education requirements. Any physical requirements reported by a prospective employee and/or employee’s physician or delegate will be considered for accommodations. PAY RANGE: $20.00 - $20.00 CITY: Rochester POSTAL CODE: 14617 The listed base pay range is a good faith representation of current potential base pay for a successful full time applicant. It may be modified in the future and eligible for additional pay components. Pay is determined by factors including experience, relevant qualifications, specialty, internal equity, location, and contracts. Rochester Regional Health is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex (including pregnancy, childbirth, and related medical conditions), sexual orientation, gender identity or expression, national origin, age, disability, predisposing genetic characteristics, marital or familial status, military or veteran status, citizenship or immigration status, or any other characteristic protected by federal, state, or local law.

• Design and implement security and defense-in-depth controls to prevent and limit vulnerabilities. • Conduct advanced security research on Solana and other Rust-based smart contract platforms. • Work closely with core contributors to perform in-depth internal security audits. • Work with external security audits in collaboration with top-tier third-party firms. • Effectively communicate security risks and solutions to both technical and non-technical stakeholders. • Uphold the highest standards of integrity, trust, and professionalism in all security practices.