Title: Director, Senior Cyber Architect - Digital Asset Security Job Description: locations New York, NY Princeton, NJ Atlanta, GA time type Full time job requisition id R261045 About this role Key Responsibilities - Architect and Design Secure Systems Develop end-to-end security architecture for digital asset platforms, including wallets, custody solutions, and transaction processing systems. - Blockchain Integration Design and implement secure blockchain-based solutions for asset tokenization, smart contracts, and distributed ledger technologies. - Payment & Investment Systems Ensure secure integration with payment gateways, clearing systems, and investment management platforms while maintaining compliance with financial regulations. - Risk Assessment & Compliance Conduct threat modeling, vulnerability assessments, and ensure adherence to industry standards . - Technology Leadership Collaborate with engineering, product, and compliance teams to define security requirements and best practices across the organization. - Innovation & Scalability Evaluate emerging technologies and frameworks to enhance security posture and system resilience. Required Qualifications Education - Bachelor’s or Master’s in Computer Science, Cybersecurity, or related field. Experience - 10+ years in cybersecurity architecture, with at least 5 years in financial services or fintech. - Proven experience with blockchain platforms (Ethereum, Hyperledger, etc.) and cryptographic protocols. - Strong knowledge of payment processing systems, digital wallets, and investment management workflows. Technical Skills - Expertise in secure software development, encryption, key management, and identity/access management. - Familiarity with cloud security (AWS, Azure) and containerization (Docker, Kubernetes). Certifications - CISSP, CISM, or equivalent preferred. Preferred Attributes - Strategic thinker with ability to balance security, usability, and business objectives. - Strong communication skills for engaging with executive stakeholders and technical teams. - Experience in regulatory compliance (SEC, FINRA, GDPR). For New York, NY Only the salary range for this position is USD$215,000.00 - USD$275,000.00 . Additionally, employees are eligible for an annual discretionary bonus, and benefits including healthcare, leave benefits, and retirement benefits. BlackRock operates a pay-for-performance compensation philosophy and your total compensation may vary based on role, location, and firm, department and individual performance. For Princeton, NJ and Atlanta, GA Only the salary range for this position is USD$200,000.00 - USD$250,000.00 . Additionally, employees are eligible for an annual discretionary bonus, and benefits including healthcare, leave benefits, and retirement benefits. BlackRock operates a pay-for-performance compensation philosophy and your total compensation may vary based on role, location, and firm, department and individual performance. Our benefits To help you stay energized, engaged and inspired, we offer a wide range of benefits including a strong retirement plan, tuition reimbursement, comprehensive healthcare, support for working parents and Flexible Time Off (FTO) so you can relax, recharge and be there for the people you care about. Our hybrid work model BlackRock’s hybrid work model is designed to enable a culture of collaboration and apprenticeship that enriches the experience of our employees, while supporting flexibility for all. Employees are currently required to work at least 4 days in the office per week, with the flexibility to work from home 1 day a week. Some business groups may require more time in the office due to their roles and responsibilities. We remain focused on increasing the impactful moments that arise when we work together in person – aligned with our commitment to performance and innovation. As a new joiner, you can count on this hybrid model to accelerate your learning and onboarding experience here at BlackRock. About BlackRock At BlackRock, we are all connected by one mission: to help more and more people experience financial well-being. Our clients, and the people they serve, are saving for retirement, paying for their children’s educations, buying homes and starting businesses. Their investments also help to strengthen the global economy: support businesses small and large; finance infrastructure projects that connect and power cities; and facilitate innovations that drive progress. This mission would not be possible without our smartest investment – the one we make in our employees. It’s why we’re dedicated to creating an environment where our colleagues feel welcomed, valued and supported with networks, benefits and development opportunities to help them thrive. For additional information on BlackRock, please visit @blackrock | Twitter: @blackrock | LinkedIn: www.linkedin.com/company/blackrock BlackRock is proud to be an equal opportunity workplace. We are committed to equal employment opportunity to all applicants and existing employees, and we evaluate qualified applicants without regard to race, creed, color, national origin, sex (including pregnancy and gender identity/expression), sexual orientation, age, ancestry, physical or mental disability, marital status, political affiliation, religion, citizenship status, genetic information, veteran status, or any other basis protected under applicable federal, state, or local law. View the EEOC’s Know Your Rights poster and its supplement and the pay transparency statement. BlackRock is committed to full inclusion of all qualified individuals and to providing reasonable accommodations or job modifications for individuals with disabilities. If reasonable accommodation/adjustments are needed throughout the employment process, please email. All requests are treated in line with our privacy policy. BlackRock will consider for employment qualified applicants with arrest or conviction records in a manner consistent with the requirements of the law, including any applicable fair chance law

Liftoff is a leading AI-powered performance marketing platform for the mobile app economy. Our end-to-end technology stack helps app marketers acquire and retain high-value users, while enabling publishers to maximize revenue across programmatic and direct demand. Liftoff’s solutions, including Accelerate, Direct, Monetize, Intelligence, and Vungle Exchange, support over 6,600 mobile businesses across 74 countries in sectors such as gaming, social, finance, ecommerce, and entertainment. Founded in 2012 and headquartered in Redwood City, CA, Liftoff has a diverse, global presence. About Liftoff Security Team The Liftoff security team is dedicated to protecting Liftoff’s customers, users, and employees. Our team architects Liftoff’s security posture, designs and builds infrastructure and security improvements, consults with other teams as they develop and launch new products and features, and proactively plans for the unknown. Our work spans the entire company and technology stack, from infrastructure to web and mobile applications, as well as IT systems. We collaborate with key stakeholders to balance business needs while minimizing security risks. Our approach to security is deeply rooted in software engineering principles, emphasizing automation and the development of well-designed security tools. Responsibilities - Establish secure software development standards and integrate security-minded thinking into the development process. - Create frictionless paths for engineering teams to securely build and deploy software. - Perform security assessments of systems and services to ensure compliance with security best practices. - Partner with key stakeholders across the organization to build a culture of security-minded builders. - Assess vendors to ensure their internal security controls meet Liftoff’s security requirements and their products enable secure employee usage. - Triage incoming threat events and vulnerabilities and ensure timely remediation and resolution of the issues. - Conduct post-incident reviews, document findings, and implement necessary remediations. - Develop tooling and automation to detect and mitigate active security threats within our systems. Requirements - 5+ years of experience in security engineering or software engineering. - Experience collaborating with cross-functional teams to deliver impactful security initiatives. - Comfortable reading, writing, and maintaining code in multiple languages. - Strong understanding of application security best practices. - Ability to quickly understand complex engineering architectures and systems. - Demonstrated ability to prioritize security efforts using a risk-based approach. - Proficiency in Go, Python, Clojure, or JavaScript. - Experience working on or collaborating with high-velocity, high-performing software engineering teams. - Proven track record of scaling cloud infrastructure security. - Excellent written and verbal communication skills. Working at Liftoff is fast-paced, fun, and challenging, and we thrive on innovation. Come join our team and help shape the future of the mobile app ecosystem. If this role sounds interesting to you, we would love to hear from you! Locations: This role is eligible for full-time remote work in one of our entities/states and Canada: CA, CO, ID, IL, FL, GA, MA, MI, MN, MO, NJ, NV, NY, OR, PA, TX, UT, and WA. We are a remote-first company with US hubs in Redwood City, Los Angeles, and New York City. Travel Expectations: We offer several opportunities for in-person team gatherings, including but not limited to project meetings, regional meetups, and company-wide events. We expect our employees to attend these gatherings at least once per quarter. These gatherings provide essential opportunities for collaboration, communication, and team building. Compensation: Liftoff offers all employees a full compensation package that includes equity and health/vision/dental benefits associated with your country of residence. Base compensation will vary based on the candidate's location and experience. The following are our base salary ranges for this role: - SF Bay Area, Los Angeles/Orange County, NYC, Seattle: $220,000 - $240,000 - All other California and Washington state locations, Austin, Boston, Denver, Portland: $202,400 - $220,800 - All other cities and towns in our approved states: $189,200 - $206,400 #LI-EL1 We use Covey as part of our hiring and/or promotional process for jobs in NYC and certain features may qualify it as an AEDT. As part of the evaluation process, we provide Covey with job requirements and candidate-submitted applications. We began using Covey Scout for Inbound on January 22, 2024. Please see the independent bias audit report covering our use of Covey here. Liftoff offers a fast-paced, collaborative, and innovative work environment where employees are empowered to grow and make an impact. We’re shaping the future of the mobile app ecosystem—join us and help accelerate what’s next. Liftoff’s compensation strategy includes competitive salaries, equity, and benefits designed to support employee well-being and performance. We benchmark compensation based on role, level, and location to ensure fairness and market alignment. Benefits may include medical coverage, wellness stipends, and additional perks based on your country of residence. Liftoff is an equal opportunity employer. We are committed to creating an inclusive environment for all employees and applicants regardless of race, ethnicity, national origin, age, marital status, disability, sexual orientation, gender identity, religion, veteran status, or any other characteristic protected by applicable law. Agency and Third Party Recruiter Notice: Liftoff does not accept unsolicited resumes from individual recruiters or third-party recruiting agencies in response to job postings. No fee will be paid to third parties who submit unsolicited candidates directly to our hiring managers or Recruiting Team. All candidates must be submitted via our Applicant Tracking System by approved Liftoff vendors who have been expressly requested to make a submission by our Recruiting Team for a specific job opening. No placement fees will be paid to any firm unless such a request has been made by the Liftoff Recruiting Team and such a candidate was submitted to the Liftoff Recruiting Team via our Applicant Tracking System.

• Protect critical information under international standards such as PCI DSS • Contribute to strengthening the organization's security

Title: Security Engineer Location: Bochum Type: Employee / Full-Time Workplace: onsite Category: IT Ops Job Description: Who is Sonar? Who is Sonar?   Sonar helps prevent code quality and code security issues from reaching production, amplifies developers' productivity in concert with AI assistants, and improves the developer experience with streamlined workflows. Sonar analyzes all code, regardless of who writes it — your internal team, genAI, or third parties — resulting in more secure, reliable, and maintainable applications. Rooted in the open source community, Sonar’s solutions support over 30 programming languages, frameworks, and infrastructure technologies. Today, Sonar is used by +7M developers and 400K organizations worldwide, including the DoD, Microsoft, NASA, MasterCard, Siemens, and T-Mobile.   We believe in developing great products that are supported by great internal teams and a strong culture.  We are highly committed to and obsessed with the company, users, each other, and our open source community. We have high standards and hold each other accountable for acting with positivity, dedication, thoughtfulness, empathy, and passion daily.    We are deliberate with our decisions with high clarity of intention. At the same time, we feel extreme urgency and move forward quickly.    And lastly, we are highly effective and operationally efficient. We operate collectively as One Team to accomplish our goals.   At Sonar, CODE is more than just an acronym – it's a mindset that defines daily operations.    Why You Should Apply:    At Sonar, we’re a group of brilliant, motivated, and driven professionals working hard to help supercharge developers to build better, faster. Sonar helps to continuously improve code quality and code security while reducing developer toil. This means that developers can focus on doing more of what they love and less of what they don’t. Our solutions don’t just solve symptoms of problems – we help fix issues at the source – for all code, whether it's developer-written, AI-generated, or from third parties.   We have a dynamic culture with employees worldwide and hub offices in the USA, Switzerland, the UK, Singapore, and Germany. Team members should be able to come to work every day, work on a product they are proud of, love what they do, and feel energized by their peers. With our roots deep in the open source community, we’re all about the mission: supercharge developers to build better, faster.   The Impact You Will Have: We are still at the beginning of our growth journey and are continuously introducing new processes, technologies, and tools. In this role, you will: - Be a pivotal engineering contributor to the design, implementation, and operation of security controls and automation across our identity platforms, endpoints, and core IT services. - Own key parts of our IdP and access automation stack (e.g., SSO, SCIM, group‑based access, JIT access), ensuring that users get the right access at the right time with strong controls and auditability. - Design and maintain security monitoring, alerting, and SIEM integrations that give us real‑time visibility into identity, endpoint, and SaaS risks. - Partner with IT Ops, Information Security, and Infrastructure Engineering to ensure security controls are deeply integrated into operations (incident management, change, and problem processes), not bolted on. - Use and champion AI tooling to make security operations more efficient — from alert triage and runbook execution to knowledge retrieval and reporting. - Help define and improve how we measure the reliability and effectiveness of our security controls (SLIs/SLOs, error budgets, and dashboards), making risk and performance visible and actionable to stakeholders.   What You Will Do Daily: - Security Monitoring, Alerting & SIEM Ownership: Working with the Information Security team, design, implement, and maintain alerting rules, dashboards, and runbooks across our SIEM and logging platforms, with a focus on identity, access, and SaaS security signals. Continuously tune alerts to reduce noise, improve fidelity, and align with error budgets and SLOs for critical security and identity services. - Endpoint Defense In Depth: Architect and implement our multilayer endpoint defence systems (e.g. Crowdstrike, Cyberark, Cloudflare, secure browser policies), balancing risk against usability in coordination with the Information Security team. - Identity Platform & Access Automation: Build and maintain automation for our identity platforms (e.g., SSO, SCIM provisioning, group‑based access policies, lifecycle workflows) in partnership with Information Security. Implement guardrails and policy‑as‑code for identity, ensuring changes are reviewed, tested, and auditable before reaching production. - Infrastructure as Code & Security Controls as Code: Use IaC and configuration management (e.g., Terraform, Ansible, or similar) plus scripting languages (e.g., Python, Go) to deploy and manage security tooling, integrations, and policies. Treat security controls (e.g., logging, scanning, hardening, secret management) as software artifacts that can be versioned, tested, and rolled back safely. - Observability & Integration with Core IT Operations: Ensure that logging, metrics, and tracing for security‑relevant systems (IdP, VPN, endpoint protection, critical SaaS) are robust, accurate, and integrated into our observability stack. Integrate security events and automations with ITSM and incident management workflows, enabling fast routing, triage, and resolution. - Incident Response & Post‑Incident Engineering: Participate in the on‑call rotation for relevant security and identity services. Lead or contribute to post‑incident reviews, turning root causes into preventative engineering changes (new alerts, automations, guardrails, or documentation) that reduce MTTR and recurrence. - AI‑Enabled Security Operations: Use AI tooling (e.g., LLM‑based assistants, automation platforms) to accelerate alert triage, enrichment, and investigation, while keeping humans in control of decisions. Identify opportunities to embed AI in security and IT operations workflows (e.g., threat intelligence and alert correlation) and help implement these safely and effectively. The Experience You Will Need: - Security Engineering & Operations Background: Significant hands‑on experience (4–7 years) in security engineering, security operations, or closely related roles in modern, fast‑paced environments (e.g., SaaS, enterprise IT, cloud‑native infrastructure). - Identity & Access Management Expertise: Practical experience operating IdPs and IAM systems at scale (e.g., Okta, Azure AD, or similar), including SSO, MFA, lifecycle management, and least‑privilege policies. Experience designing and implementing automated provisioning and deprovisioning (e.g., SCIM, HRIS integrations, group‑based and role‑based access models). - SIEM, Logging & Observability: Proven experience with SIEM and observability platforms (e.g., ELK/EFK, Splunk, Datadog, or similar), including writing and tuning detection rules, building dashboards, and working with large‑scale log ingestion. Comfort working with SLIs/SLOs and error budgets for critical services, and using these to guide priorities for hardening and automation. - Automation & Infrastructure as Code: Strong experience with IaC and configuration management tools (e.g., Terraform, CloudFormation, Ansible, or similar) and with scripting/programming languages (e.g., Python, Go, or equivalent) to automate security and operational tasks. Track record of converting manual, repetitive operational work into reliable automation and self‑service capabilities. - Security Controls Implementation: Experience implementing and operating security controls as code: vulnerability scanning, configuration baselines, secret management (e.g., HashiCorp Vault), key rotation, and certificate management. - Incident Management & Cross‑Functional Collaboration: Demonstrated experience participating in or leading incident response, root cause analysis, and post‑incident follow‑through in partnership with IT Ops, Security, and Engineering. Strong communication skills in English, able to explain complex security and operational topics to both technical and non‑technical audiences. - AI Fluency: Comfortable using modern AI tooling (e.g., LLM‑based assistants, automation frameworks) as part of daily work for analysis, content generation, and workflow automation. Ability to reason about where AI is and isn’t appropriate in security and operations, balancing speed with risk and control. Why You Will Love It Here: - Our culture and mission set us apart. We have a dynamic work culture that values respect and kindness and embraces the right to fail (and get right back up again!).  - Great people make a great company. We value people skills as much as technical skills and strive to keep things friendly while still being passionate leaders in our domains.  - We have a flexible work policy that includes 3 days in-office and 2 days work-from-home each week for those located near our office locations; some locations such as Dubai, India, Japan and Australia operate fully remotely. - We have a growth mindset. We love learning and believe continuous education is critical to our success. In an ever-changing industry, new skills are necessary, and we're happy to help our team acquire them. - As the leader in our field, our products and services are as strong as our internal team members. - We embrace transparency with regular meetings, cascading messages and updates on the growth and success of our organization. Benefits of Working with Sonar: - Pension Scheme: 1st Pillar (Unterstützungskasse): Automatic, financed by Sonar, 3% of gross salary, an additional benefit in addition to your salary. - Pension Scheme:2nd Pillar (bAV): Voluntary, 15% contribution by Sonar from social security savings. - We encourage usage of our robust time-off allocations with 28 PTO days for our employees based out of the Geneva region, plus additional days based on seniority and circumstances. - Sonar recognizes holidays on working calendar days. If the holiday date occurs on a Saturday, we will recognize the day on the preceding Friday. If the holiday date occurs on a Sunday, we will recognize the day on the following Monday. - Public transport reimbursement of 60% for annual subscription. - Generous discretionary Company Growth Bonus, paid annually.   - Global workforce with employees in 20+ countries representing 35+ unique nationalities. - We have an annual kick-off somewhere in the world where we meet to build relationships and goals for the company. We Value Diversity, Equity, and Inclusion:   At Sonar, we believe that our diversity is our strength. We are a global company that values and respects different backgrounds, perspectives, and cultures.   We are committed to fostering a diverse and inclusive work environment where everyone feels valued and empowered to contribute their best. We are proud to be an equal opportunity employer and welcome all qualified applicants, regardless of race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.   All offers of employment at Sonar are contingent upon the precise results of a comprehensive background check and reference verification conducted before the start date.   We do not currently support visa candidates in the US.   Applications that are submitted through agencies or third party recruiters will not be considered.  We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.