• Gestionar y administrar de forma integral las identidades y los accesos corporativos (IAM) garantizando el principio de mínimo privilegio. • Gestionar y auditar los PATHs y los flujos de autorización para el acceso a la información crítica. • Supervisar la gestión de plataformas antimalware corporativas y asegurar la protección de los endpoints. • Planificar, desplegar y controlar los agentes de seguridad a través de la infraestructura tecnológica del banco. • Administrar y asegurar la infraestructura de redes (Networking), identificando vulnerabilidades y aplicando soluciones técnicas. • Implementar y asegurar el cumplimiento de los frameworks de seguridad corporativos e internacionales. • Elaborar informes, métricas y cuadros de mando interactivos utilizando Power BI para la monitorización continua del estado de la seguridad. • Coordinar acciones y mantener reuniones periódicas de alineación con los equipos tecnológicos ubicados en Latinoamérica.

Role Description Istari Digital delivers a model-based digital engineering platform used by defense and aerospace organizations to design and operate mission-critical systems. Our platform is deployed into classified and high-security environments, where cybersecurity is foundational—not optional. We are hiring a Cybersecurity Solutions Architect to serve as the technical face of Istari to federal customers. You will own the question: “Does this platform meet our security requirements – and how?” What You’ll Do - Lead security discussions in pre-sales engagements - Translate customer requirements into: - Clear architectural explanations - Concrete engineering requirements - Support: - RFP/RFI responses - Security questionnaires - Accreditation alignment (RMF readiness) - Identify and communicate security gaps early (before they become deal blockers) - Build secure reference architectures for classified deployments - Partner with engineering to shape roadmap based on federal security needs Qualifications - Active TS clearance with SCI eligibility - Deep understanding of: - NIST 800-53 / 800-171 - RMF / ATO processes - 3+ years of experience working with: - DoW, IC, or SAP programs - AWS, Azure, or Google Public Sector (especially GovCloud / compliance / security) - Prior work in Intelligence Community or SAP environments - Candidates with only commercial-sector experience or without exposure to federal security processes are not an ideal fit for this role. What Makes You a Strong Fit - You can confidently say: “Yes, we meet your requirements – and here’s exactly how.” - You understand both Technical architecture and Government accreditation realities Company Description We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.

Role Description Tyto Athene is hiring a Security Engineer, AWS & GCP to join our team of cloud, security, and compliance experts. This role is primarily focused on day‑to‑day security engineering, including system hardening, vulnerability remediation, cloud operations, and security tool management across AWS & GCP environments. In addition to regular business‑hours responsibilities, engineers participate in a structured after‑hours 24×7 on‑call rotation (primary or backup) to support response to incidents, alerts, and escalations for customers operating under FedRAMP, FISMA, and NIST 800‑53 frameworks. Responsibilities: - Perform systems administration and maintenance including patching, vulnerability scanning, compliance scanning and remediation, backups, and recovery for cloud workloads. - Support AWS & GCP environments, including Windows and Linux virtual machines, container workloads, and cloud services such as EC2, EBS, S3, RDS, WorkSpaces (AWS), Compute Engine, Cloud Storage, Cloud SQL (GCP), and Active Directory or equivalent identity services. - Configure, update, and maintain security tools for endpoint protection, log collection, vulnerability scanning, and compliance monitoring. - Troubleshoot issues across network, compute, application, and identity layers by reviewing logs, collecting data, and analyzing system behavior. - Implement hardening and compliance controls using CIS Benchmarks, DISA STIGs, and FedRAMP requirements. - Remediate vulnerabilities identified by tools such as Tenable, Trivy, OpenSCAP, Anchore, Twistlock, and others. - Provide quality assurance feedback during system deployments to ensure architecture meets compliance and operational requirements. - Collaborate with Security Analysts to ensure uninterrupted delivery of security services to customers. - Create and maintain documentation including network diagrams, dataflow diagrams, SOPs, and security tool configuration guides. - Support client communications, deliverables, and issue resolution with strong verbal and written communication skills. - Support and mentor junior engineers as and when required. After‑Hours 24×7 On‑Call Rotation: - Serve as primary or backup on‑call engineer during assigned rotation. - Respond to after‑hours security alerts, infrastructure incidents, outages, and ConMon events. - Perform initial triage, containment, and stabilization using established runbooks. - Investigate and respond to alerts generated. - Escalate complex issues to senior engineers, architects, or compliance teams. - Document incidents, actions taken, and recommended improvements. - Contribute to automation improvements and runbook enhancements. Qualifications - Six (6) or more years of IT engineering and/or cybersecurity experience, with at least three (3) years working in a dedicated cloud security engineering or similar position. - Hands‑on experience with both AWS and Google Cloud Platform (GCP). - Ability to diagnose and resolve issues across Linux and Windows systems, network infrastructure, and cloud services. - General systems administration and vulnerability management experience, including system patching and hardening, identity and access management (IAM), and related tasks. - Experience working in a DevSecOps environment, integrating security practices into cloud and infrastructure workflows. - Familiarity with ITSM ticketing systems such as Gitlab (preferred), Jira, ServiceNow, etc. - Ability to work independently during both business hours and on‑call periods. - Strong written and verbal communication skills for customer interaction and incident documentation. - Hands‑on experience with one or more of the following tools: - Splunk Enterprise - Tenable Security Center/Nessus - Invicti/Acunetix - Appgate - Okta - GitLab - Palo Alto Networks Firewalls - TrendMicro Deep Security - Trivy - Anchore - Terraform - CloudFormation - Ansible Requirements - Bachelor's Degree in Computer Science or other relevant field. - Experience supporting federal/government-facing customers or consulting engagements, ensuring compliance and operational requirements. - Experience with FedRAMP, FISMA, or NIST 800‑53 compliance frameworks. - Prior on‑call, SRE, SOC, or incident response experience. - Relevant AWS or Google Cloud Platform certifications. - Security+ or other relevant industry security certification. - Experience with infrastructure‑as‑code or automation tooling. - Experience with Kubernetes is highly desirable. Location Remote (US) Clearance Must be a US Citizen with the ability to obtain a security clearance. Compensation Compensation is unique to each candidate and relative to the skills and experience they bring to the position. The salary range for this position is typically between $115,000-$130,000. This does not guarantee a specific salary as compensation is based upon multiple factors such as education, experience, certifications, and other requirements, and may fall outside of the above-stated range. Benefits - Health/Dental/Vision - 401(k) match - Paid Time Off - STD/LTD/Life Insurance - Referral Bonuses - Professional development reimbursement - Parental leave

What you can expect We are seeking a Senior AI Security Assurance Engineer to lead the offensive verification of our AI systems and pipelines. This role will serve as the dedicated AI security lead within the Security Assurance organization, reporting directly to the Head of Security Assurance. While not a traditional covert red team position, the role requires similar deep adversarial thinking and the ability to evaluate AI systems with the mindset of a determined skeptic. Your mission: verify and innovate. You’ll be responsible for independently evaluating, challenging, and validating the security, safety, and integrity of all AI initiatives across the company, including AI embedded in products, internal AI use cases, training pipelines, model lifecycle management, and supporting infrastructure. This is not a compliance role, it’s a hands-on, experimental one. At Zoom, Security Assurance encompasses Offensive Security (product, infrastructure, hardware, red team), PSIRT, Product Vulnerability Management, and Bug Bounty. This role will also operate across all of these domains as the organization’s primary authority on AI-related risk and capabilities/implementation. You will be the AI expert in efforts to develop scalable, intelligent systems that automate and amplify Security Assurance at Zoom. You’ll both break and build, challenging assumptions in our AI infrastructure, features, and tools while creating tools to continuously expose and mitigate critical risk. About the Team The Security Assurance team at Zoom is an adversarial, high-leverage group focused on finding and reducing the company’s most critical security risks. We work from an attacker’s mindset and operate well beyond checklists, audits, and standard SDLC gates, targeting the vulnerabilities and systemic failures that escape existing controls. The team covers offensive security (vulnerability research, red teaming, hardware security), PSIRT, product vulnerability management, bug bounty, and emerging AI security. We apply deep technical rigor and clear risk judgment to drive concrete product and platform changes. We value evidence over assumptions and curiosity over comfort. This team is for truth-seekers who want their work to measurably reduce risk at global scale. Responsibilities - Leading adversarial verification of AI systems: Design and execute deep, unconstrained assessments of AI models, pipelines, and agents, testing guardrails, safety layers, and data boundaries through offensive experimentation. - Uncovering gaps between promise and practice: Identify where AI security, safety, or privacy controls fail under pressure. Surface the mismatch between claims and reality. - Assessing the full AI lifecycle: Evaluate data, training, and deployment pipelines for risks like model poisoning, prompt injection, or fine-tuning abuse. - Developing AI-powered security discovery systems: Research, prototype, and operationalize machine learning–driven approaches to automatically detect, predict, and prioritize vulnerabilities and behavioral deviations in Zoom’s products and platform. - Automating and scaling offensive operations: Build AI-based frameworks to scale red teaming, vulnerability discovery, and bug bounty triage. Use LLMs, anomaly detection, and pattern learning to enhance automation and coverage. - Adapting cutting-edge research: Integrate the latest findings from offensive security research, autonomous agents, and AI-driven vulnerability analysis into Zoom’s security assurance programs. - Shaping AI security methodologies: Build frameworks for continuous AI-driven adversarial testing, automated validation, and system monitoring that scale across teams and products. - Translating findings into impact: Communicate verified risks and systemic weaknesses clearly to engineering and leadership, pairing technical insight with strategic direction. - Staying ahead of the curve: Track evolving AI architectures, attack vectors, and defenses, turning new research into offensive and defensive capability. What we’re looking for - Have deep understanding of generative AI systems (transformers, diffusion models, multi-agent frameworks) and their security failure modes. - Have experience building or adapting novel AI/ML methods to real-world security problems. - Demonstrate proficiency in Python, ML frameworks (PyTorch, TensorFlow, Hugging Face, LangChain), and modern cloud/data environments. - Be skilled at uncovering the true behavior and limitations of AI and platform systems through experimentation, code review, and automated adversarial techniques. - Be skilled at setting direction, advising peers, and communicating high-impact risks to executives. - Be unafraid to challenge assumptions or expose uncomfortable truths in service of user and system safety. - Demonstrate experience in red teaming, exploit development, or vulnerability research. Salary Range or On Target Earnings: Minimum: $124 000,00 Maximum: $271 200,00 In addition to the base salary and/or OTE listed Zoom has a Total Direct Compensation philosophy that takes into consideration; base salary, bonus and equity value. Note: Starting pay will be based on a number of factors and commensurate with qualifications & experience. We also have a location based compensation structure; there may be a different range for candidates in this and other locations At Zoom, we offer a window of at least 5 days for you to apply because we believe in giving you every opportunity. Below is the potential closing date, just in case you want to mark it on your calendar. We look forward to receiving your application! Anticipated Position Close Date: 03/30/26 Ways of Working Our structured hybrid approach is centered around our offices and remote work environments. The work style of each role, Hybrid, Remote, or In-Person is indicated in the job description/posting. Benefits As part of our award-winning workplace culture and commitment to delivering happiness, our benefits program offers a variety of perks, benefits, and options to help employees maintain their physical, mental, emotional, and financial health; support work-life balance; and contribute to their community in meaningful ways. Click Learn for more information. About Us Zoomies help people stay connected so they can get more done together. We set out to build the best collaboration platform for the enterprise, and today help people communicate better with products like Zoom Contact Center, Zoom Phone, Zoom Events, Zoom Apps, Zoom Rooms, and Zoom Webinars. We’re problem-solvers, working at a fast pace to design solutions with our customers and users in mind. Find room to grow with opportunities to stretch your skills and advance your career in a collaborative, growth-focused environment. Our Commitment​ At Zoom, we believe great work happens when people feel supported and empowered. We’re committed to fair hiring practices that ensure every candidate is evaluated based on skills, experience, and potential. If you require an accommodation during the hiring process, let us know—we’re here to support you at every step. If you need assistance navigating the interview process due to a medical disability, please submit an Accommodations Request Form and someone from our team will reach out soon. This form is solely for applicants who require an accommodation due to a qualifying medical disability. Non-accommodation-related requests, such as application follow-ups or technical issues, will not be addressed. #LI-Remote