Role Description Owns and manages the development of InfoSec engineering designs and implementation. Identifies security issues and risks, and develops mitigation plans for cloud implementations. Architect, design, implement, support, and evaluate security-focused tools and services. Oversee assessment and mitigation of system security threats/risks throughout the program life cycle; validation of system security requirements definition and analysis; establishing system security designs; implementing security designs in hardware, software, data, and procedures; verification of security requirements; performing system certification and accreditation planning and testing and liaison activities, and supporting secure systems operations and maintenance. In this role, you will support the implementation and maintenance of secure cloud environments while working closely with engineering, development, and program teams. You will contribute to strengthening the overall security posture of cloud-based systems by supporting security engineering activities, implementing security controls, and ensuring compliance with applicable federal and DoD cybersecurity standards. Responsibilities - Support the design, implementation, and maintenance of secure cloud architectures in accordance with program and security requirements. - Assist in the development, integration, and testing of security controls across cloud infrastructure, applications, and data environments. - Conduct risk and vulnerability assessments and assist with developing mitigation strategies. - Implement and maintain security configurations to ensure the confidentiality, integrity, and availability of systems. - Support development and maintenance of security documentation including System Security Plans (SSPs), security control assessments, and contingency plans. - Assist with system security engineering activities throughout the system lifecycle including requirements analysis, design validation, and security testing. - Perform security scans and vulnerability assessments using approved tools and document findings and remediation recommendations. - Support security compliance activities in accordance with federal and DoD cybersecurity frameworks. - Participate in incident response activities and assist in investigation and remediation of security events. - Collaborate with cloud engineers, system administrators, and program stakeholders to ensure security requirements are implemented effectively. - Monitor systems and environments for potential security risks and assist in remediation efforts. - Support certification and authorization activities and processes. - Provide technical support to operational strategies aligned with program initiatives to optimize processes, enhance productivity, and ensure quality across program functions. - Ensure 100% of planned hours are worked and recorded. - Identify and forward to leadership any opportunities that could lead to growth within your work area. - Participate in growth efforts as requested. - Ensure all contractual deliverables are met or exceeded to the customer's satisfaction. - Complete personal PDP and attend Staff Meeting and Storytime (with camera on). - Build productive and positive professional relationships with clients within the program. - Execute all contract requirements as assigned in accordance with the contract-specific LCAT and requirements. - Maintain active status of all required DoD 8570/8140 industry certifications in good standing through required Continuing Education (CE) units. - Perform other related duties as assigned. Qualifications - Active Secret Clearance. - Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or a related field with at least 4 years of relevant experience. - Knowledge of cybersecurity principles, frameworks, and best practices. - Experience with risk assessment methodologies and security compliance standards. - Familiarity with security testing tools such as vulnerability scanners and SIEM solutions. - Basic understanding of network protocols, firewalls, and system security configurations. - Ability to analyze security policies and develop recommendations for improvement. - DoD 8570 / 8140 IAT Level II certification. - At least one cloud certification. Preferred Additional Qualifications - Experience with NIST, FISMA, or DoD security frameworks. - Familiarity with cloud security best practices and secure software development. - Hands-on experience with security incident response and threat detection tools. - Strong analytical and problem-solving skills with attention to detail. - Experience with Agile development methodologies. Benefits - Competitive compensation. - Health and wellness programs. - Income protection. - Paid leave. - Retirement and savings. - Learning and development opportunities.

Role Description Stefanini is looking for a Security Automation Engineer --Remote. The eBusiness Security Access Gateway team is seeking an automation engineer to join a team of security engineers to create and improve Infrastructure and Configuration as Code (IaC and CaC). - Collaborate with the eBusiness engineering team to understand secure Authentication, Authorization, Web Gateway, and API services. - Reduce manual processes, build CI/CD pipelines, and reduce overall time to market. - Assist with further development of automated deployments inclusive of IBM Security Products. - Design and develop the code required to build and maintain Access Management Services. - Enhance and develop stronger automation processes, including full CI/CD pipelines. - Improve Change Management (CM) practices by ensuring all changes are captured in source control. - Enable automated rebuilds, rehydrating environments, and rapid recovery from ransomware or other critical incidents. - Create new automated health checks and reduce time spent by administrators on manual tasks. - Integrate system monitoring for auto incident creation and self-healing based on environmental health. - Streamline work intake requests by integrating with Service Now. - Future development efforts will enable 'no touch deployment' to further reduce time to market. - Knowledge sharing and continuously seeking improvement opportunities. Qualifications - Ansible Tower - GitLab - Python - OpenShift and/or Kubernetes - Unix/Linux - Shell scripting - Identity and Access Management Systems (IAM) - Experience with RESTful APIs - Argo CD - Agile Requirements - Knowledge of modern authentication and authorization protocols including: - OAuth 2.0 - Open ID Connect (OIDC) - Federation (SAML 2.0) - System for Cross-domain Identity Management (SCIM) - Lightweight Directory Access Protocol (LDAP) - Experience with IBM Security products - SQL - JavaScript - ServiceNow - PKI Experience - RedHat Enterprise Linux (RHEL) - Ansible Automation Hub and Ansible Galaxy - Nexus Education/Experience - Bachelor's Degree or equivalent experience/Master's Degree may be preferred or with 5+ years of relevant work experience. Company Description The Stefanini Group is a global provider of offshore, onshore and near shore outsourcing, IT digital consulting, systems integration, application, and strategic staffing services to Fortune 1000 enterprises around the world. Our presence is in countries like the Americas, Europe, Africa, and Asia, and more than four hundred clients across a broad spectrum of markets, including financial services, manufacturing, telecommunications, chemical services, technology, public sector, and utilities. Stefanini is a CMM level 5, IT consulting company with a global presence.

• Lead end-to-end project planning • Facilitate kickoff workshops and design tailored rollout strategies • Act as a strategic advisor guiding customers on scaling security awareness programs • Partner with C-Level executives, HR, IT, and Communications teams • Cultivate internal champion networks and support communication planning • Define realistic success metrics and reporting structures • Monitor early-stage KPIs and continuously track progress • Deliver actionable reporting and data-driven recommendations

Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Are you passionate about security architecture and driven to protect against the latest threats? We are seeking a Security Architect who will join our team and take the lead on developing, implementing, and maintaining our security strategy within our Service Provider organization. As our Security Architect, you will work closely with our leadership team to design and implement effective security solutions that not only protect our business objectives and regulatory requirements, but also provide innovative solutions to stay ahead of emerging threats. You will conduct risk assessments and threat modeling to identify and prioritize risks to our business and IT assets, using your extensive experience in security architecture design and implementation within a Service Provider environment to create a cutting-edge security architecture framework. You will also work to maintain policies, standards, and guidelines related to information security within our organization, collaborating with cross-functional teams to implement security controls and technologies such as encryption, authentication, and authorization solutions. Your role will also involve conducting security reviews of vendors and third-party partners to ensure they meet our rigorous security standards, as well as performing regular security and risk reviews of our Service Provider environment to identify vulnerabilities and recommend remediation activities. At the forefront of security trends and technologies, you will advise our senior leadership team on the latest security best practices, and stay ahead of emerging security threats, always keeping our organization one step ahead. Join us on this exciting journey of securing our Service Provider organization and protecting our customer’s assets. Your Future at Kyndryl Every position at Kyndryl offers a way forward to grow your career, from a Junior Architect to Principal Architect – we have opportunities for that you won’t find anywhere else, including hands-on experience, learning opportunities, and the chance to certify in all four major platforms. Kyndryl currently does not require employees to be fully vaccinated against COVID-19, however, if you are hired to work at a client, customer, or partner location, you may be required to show proof of vaccination to align with their respective COVID-19 vaccination policies. Those who believe they are eligible may apply for a medical or religious accommodation prior to the start of employment. Who You Are You’re good at what you do and possess the required experience to prove it. However, equally as important – you have a growth mindset; keen to drive your own personal and professional development. You are customer-focused – someone who prioritizes customer success in their work. And finally, you’re open and borderless – naturally inclusive in how you work with others. Required Skills, Experience and Circumstances: • Minimum of 5+ years of experience in security architecture design and implementation within a Service Provider organization • Experience with security frameworks such as NIST CSF, ISO 27001, or CIS Controls • Deep understanding of security technologies, such as firewalls, intrusion detection and prevention systems, vulnerability scanners, and endpoint protection • Strong knowledge of cloud security concepts and technologies, such as Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP) Preferred Skills and Experience: • Relevant industry certifications such as CISSP, CISM, or CCSP • Bachelor's or Master's degree in Computer Science, Information Security, or a related field Compensation: The compensation range for the position in the U.S. is $88,680 to $168,480 based on a full-time schedule. Your actual compensation may vary depending on your geography, job-related skills and experience. For part time roles, the compensation will be adjusted appropriately. The pay or salary range will not be below any applicable state, city or local minimum wage requirement. There is a different applicable compensation range for the following work locations: California (San Francisco Bay Area): $106,440 to $202,200 California (All Other): $97,560 to $185,280 Colorado: $88,680 to $168,480 Massachusetts: $88,680 to $185,280 New York City: $106,440 to $202,200 Washington: $97,560 to $185,280 Washington DC: $97,560 to $185,280 This position will be eligible for Kyndryl’s discretionary annual bonus program, based on performance and subject to the terms of Kyndryl’s applicable plans. You may also receive a comprehensive benefits package which includes medical and dental coverage, disability, retirement benefits, paid leave, and paid time off. Note: If this is a sales commission eligible role, you will be eligible to participate in a sales commission plan in lieu of the annual discretionary bonus program. Applications will be accepted on a rolling basis. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Being You Diversity is a whole lot more than what we look like or where we come from, it’s how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we’re not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you – and everyone next to you – the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That’s the Kyndryl Way. What You Can Expect With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter – wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed. Get Referred! If you know someone that works at Kyndryl, when asked ‘How Did You Hear About Us’ during the application process, select ‘Employee Referral’ and enter your contact's Kyndryl email address.