• Own the cybersecurity expertise (subject matter expert) for Grid Automation within a given territory / region. • Assist the Sales Operations teams in responding to demo requests, RFPs, and other Bid/Tender requests. • Stay connected with the market dynamics, engage with GA customers to understand their cybersecurity needs / pain-points, and translate them into new cybersecurity sales opportunities. • Present the Grid Automation cybersecurity offerings to customers in a variety of locations – including trade shows and events. • Develop sophisticated cybersecurity designs for customer environments. • Understand competitors’ offerings, industry trends, customers’ behavior. • Be available to be “hands-on” at customer sites to assist in the design, configuration, and installation of a variety of cybersecurity offerings. • Promote the GA cybersecurity offerings with utility and industrial customers and the GA sales organization. • Drive productive interactions with GA region teams, other GA Product Managers, R&D and product development, Technical Application Engineering, and Commercial teams. • Develop, coach, and mentor the regional cybersecurity delivery teams (customer engineers) to strengthen their overall technical and business capabilities. • Develop and conduct training on a variety of cybersecurity topics for the Regions and GA staff as needed.

Who We AreFounded in 2012 by 3 expert hackers with no investment capital, Trail of Bits is the premier place for security experts to boldly advance security and address technology’s newest and most challenging risks. It has helped secure some of the world's most targeted organizations and devices. Our combination of novel research with practical solutions reduces the security risks that our clients face from emerging technologies. Our work helps drive the security industry and the public understanding of the technology underlying our world. Cybersecurity preparedness is a moving target. Companies like ours are the tip of the spear in the fight against attackers. Our research-based and custom-engineering approach ensures that our client’s capabilities are at the forefront of what’s available. For companies and technologies that live and die by their security, a proactive, tailored approach is required to keep one step ahead of attackers. Democratizing security information is essential. As part of our business, we provide ongoing informational support through blogs, whitepapers, newsletters, meetups, and open-source tools. The more the community understands security, the more they’ll understand why a company like ours is so unique and valuable. RoleTrail of Bits seeks a Security Engineer, Application Security within our growing Software Assurance practice. You will conduct comprehensive security assessments of client software with a focus on low-level code analysis, examining system architecture, security boundaries, access controls, and platform security mechanisms. On any given day, you might analyze vulnerabilities in application code, automate the detection of security misconfigurations in cloud environments, assess privilege escalation capabilities, or review security boundaries in complex systems. Working alongside other security engineers, you'll contribute to client projects while building impactful tools. In short, your work will land at the intersection of Vulnerability Research and Application Security. In addition to working with leading technology companies in the private sector, you will have opportunities to collaborate with our Research & Engineering team to help secure funding from government agencies for advanced security research that bridges vulnerability research and application security, advancing the state of the art both within our team and industry at large. Please note that only applications completed via our Careers page will be considered for further review. What You’ll Achieve - Security Assessment: Conduct comprehensive low-level code security assessments across applications, examining vulnerabilities in system services, access control implementation, inter-process communication, and platform security controls while developing mitigation strategies. - Security Tool Development: Design and implement custom security tools for automated vulnerability detection, focusing on both application-specific and general security testing needs to bridge the gap between vulnerability research and application security. - Architecture Review: Perform detailed architecture reviews and threat modeling of complex software systems and cloud environments, identifying potential security weaknesses in areas such as data flows, authentication mechanisms, and API security while providing remediation guidance. - Client Engagement: Work directly with industry-leading teams to review their application infrastructure and architecture, helping secure their environments through deep technical analysis and recommendations. - Research & Innovation: Contribute to the advancement of application security, developing new methodologies and tools while staying up to date with the latest security developments in both traditional and emerging technology ecosystems. What You’ll Bring - Application Security Expertise: Extensive experience in software security, with demonstrated ability to identify and mitigate application and system-level vulnerabilities in code across complex enterprise software and understanding of security controls. - Assessment Experience: Track record of conducting technical security assessments of software, including software and system hardening, security policy analysis, and implementing effective security measures; Experience with Android, iOS, and/or macOS system internals a plus. - Technical Capabilities: Deep understanding of system internals and security boundaries, experience with manual code reviews, static and dynamic analysis tools, expertise in secure development practices, experience with binary analysis and reverse engineering, and understanding of memory corruption vulnerabilities and mitigations. - Programming Proficiency: Strong knowledge of multiple programming languages such as Rust, Golang, Kotlin, Swift, Objective-C, JavaScript/TypeScript, Python, Ruby, C and/or C++ for both security analysis and tool development. - Communication Skills: Ability to effectively communicate complex security concepts to diverse stakeholders and deliver clear, actionable recommendations. The base salary for this full-time position ranges from $100,000 to $200,000 excluding benefits and potential bonuses. Various factors influence our salary ranges, including the specific role, level of seniority, geographic location, and the nature of the employment contract. An individual's specific work location, unique skills, experience, and relevant educational background will determine the final offer within this range. The presented salary range encompasses the starting salaries for all U.S. locations. For a precise salary estimate tailored to your preferred location, please discuss it with your recruiter during the hiring process. Trail of Bits, Inc. participates in E-Verify, the US federal electronic employment eligibility verification program. Learn more. Only applications completed via our Careers page will be considered for further review. When you apply, you'll be added to our newsletter so you can stay updated on company news and opportunities. You can opt out anytime. BenefitsBenefits, Perks & WellnessTrail of Bits is our people, not a place. With over 100+ employees working from every time zone across the globe, our remote-first culture is built on autonomy and trust (and backed by smile-worthy benefits) for full-time employees: Empowered Living: - Competitive salary complemented by performance-based bonuses. - Fully company-paid insurance packages, including health, dental, vision, disability, and life. - A solid 401(k) plan with a 5% match of your base salary. - 20 days of paid vacation with flexibility for more, adhering to jurisdictional regulations. Nurturing New Beginnings: - 4 months of parental leave to cherish the arrival of new family members. - Our team is global and remote-first. However, if you are interested in moving to NYC, we offer $10,000 in relocation assistance to support your transition. Work & Life Enrichment: - $1,000 Working-from-Home stipend to create a comfortable and productive home office. - Annual $750 Learning & Development stipend for continuous personal and professional growth. - Company-sponsored all-team celebrations, including travel and accommodation, to foster community and recognize achievements. Community Impact: - Philanthropic contribution matching up to $2,000 annually.

College Board – Technology – Security Location: This is a fully remote role. Candidates who live near CB offices have the option of being fully remote or hybrid (Tuesday and Wednesday in office). Type: This is a full-time position   About the Team  The Security Engineering team partners across the Technology division to reduce risk and enable secure, scalable systems at College Board. We design and operate the tools, standards, and review processes that help teams build securely by default—covering areas such as application security, data protection, and cloud environments. Our team operates with a mindset of trust and verification, pairing strong engineering practices with pragmatic governance. We value candid feedback, continuous improvement, and close collaboration with stakeholders to translate security requirements into practical, adoptable solutions that drive measurable risk reduction. About the Opportunity   As a Senior Security Engineer, you will play a key role in ensuring the College Board systems are following established best practices. This will include a combination of managing security focused technologies as well as ensuring that non security focused applications are configured to reduce risk for the organization In this role, you will combine hands-on security engineering with collaborative governance. You will work directly with delivery teams to perform practical, risk reviews, assessing architectures, data flows, and misuse risks—while also helping evolve the organization’s security review practices so they remain effective and drive risk reduction through standardization. Your work will turn real-world experience into clear standards, guidance, and secure-by-default patterns to help the organization become predictable and repeatable rather than ad hoc. You will have meaningful latitude to shape how applications are configured to ensure that organizational and industry best practices are met. You will have visible impact by reducing shadow IT risk, preventing sensitive data exposure, and improving time-to-approval through pragmatic, engineering-friendly security guidance. Success in this role requires close collaboration with Information Security partners, teams across the Technology division, and stakeholders in other divisions to translate emerging risk into shared understanding, aligned expectations, and durable security outcomes.   In this role, you will: Enable cross-functional delivery and execution (40%) - Collaborate closely across delivery teams to align on security controls and enable secure implementation. - Participate in and frequently lead working sessions to unblock teams—translating policy into practical implementation steps that fit Agile delivery. - Run periodic spot checks and audits to validate that governance, security conditions, and monitoring remain effective over time, including re-review cadences for production use cases. - Contribute to team ceremonies, documentation, and continuous improvement to keep the program efficient, measurable, and trusted. Lead security governance and guidance (35%) - Serve as the primary security review partner for use-case assessments working collaboratively with Information Security, Technology teams, and governance stakeholders to continuously refine and improve the security review process based on real implementations, incidents, and emerging risks. - Lead hands-on security assessments for use cases, including data classification and handling, threat modeling, vendor and model risk considerations, and misuse testing. - Define, evolve, and maintain secure-by-default standards, patterns, templates, and reference guidance (e.g., documentation expectations, security checklists, and decision records), shaping how security reviews and guardrails operate in practice as adoption matures while reducing review friction and cycle time. - Define and drive enterprise security expectations for usage, including telemetry, logging, and monitoring requirements that enable detection, investigation, and prevention of misuse across sanctioned systems. Monitor and reduce shadow IT (25%) - Establish a program to identify and reduce shadow IT by working with IT and Security teams on discovery signals (proxy/DNS/app discovery, endpoint telemetry) and remediation paths. - Produce actionable reporting for leadership including use-case coverage, review outcomes, risk themes, time-to-approve, exceptions, and remediation status. - Partner with Security Operations to implement and tune misuse detections and alerting (e.g., sensitive-data prompts, abnormal usage spikes, repeated jailbreak attempts, suspicious tool calls) About you, you have: - 7+ years in security engineering, application security, cloud security, or security architecture, with demonstrated ownership of work that scales across multiple teams. - Practical experience assessing and securing systems, including application-layer risks, data exposure concerns, and common misuse scenarios. - Practical experience securing modern software systems (APIs, cloud services, CI/CD) and applying those security fundamentals . - Comfort operating in ambiguous, fast-moving environments where standards, tooling, and processes are still being defined and refined. - Strong ability to influence and drive change across organizations, balancing speed of delivery with clear guardrails and measurable risk reduction. - Experience partnering with non-security stakeholders (e.g., product, legal, risk, procurement, operations) to translate security requirements into practical, adoptable guidance. - Confidence presenting security requirements and tradeoffs to stakeholders, and turning ambiguous problems into repeatable processes and standards. - Effective communicator and technical leader, able to provide actionable feedback, mentor peers and junior engineers, and participate in interviews to evaluate engineering talent. - Ability to travel 3–5 times per year to College Board offices. - Authorization to work in the United States. All roles at College Board require: - A passion for expanding educational and career opportunities and mission-driven work - Authorization to work in the United States for any employer - Curiosity and enthusiasm for emerging technologies, with a willingness to experiment with and adopt new solutions and a comfort learning and applying new digital tools independently and proactively.  - Clear and concise communication skills, written and verbal - A learner's mindset and a commitment to growth: welcoming diverse perspectives, giving and receiving timely, respectful feedback, and continuously improving through iterative learning and user input. - A drive for impact and excellence: solving complex problems, making data-informed decisions, prioritizing what matters most, and continuously improving through learning, user input, and external benchmarking. - A collaborative and empathetic approach: working across differences, fostering trust, and contributing to a culture of shared success. About Our Process  - Application review will begin immediately and will continue until the position is filled. This role is expected to accept applications for a minimum of 5 business days. Preferred application deadline is Sunday, November 30th. Please keep in mind that College Board offices will be closed November 27th – November 28th and December 25th – January 2nd so it is better to apply sooner than later. - While the hiring process may vary, it generally includes: resume and application submission, recruiter phone/video screen, hiring manager interview, performance exercise such as live coding, a panel interview, a conversation with leadership and reference checks. What We Offer At College Board, we offer more than just a paycheck—we provide a meaningful career, a supportive team, and a comprehensive package designed to help you thrive. We’re a self-sustaining nonprofit that believes in fair and competitive compensation, grounded in your qualifications, experience, impact, and the market. A Thoughtful Approach to Compensation - The hiring range for this role is $153,000 - $166,000 - Your exact salary will depend on your location, experience, and how your background compares to others in similar roles at the College Board. - We aim to make our best offer upfront—rooted in fairness, transparency, and market data. - We adjust salaries by location to ensure fairness, no matter where you live. You’ll have open, transparent conversations about compensation, benefits, and what it’s like to work at College Board throughout your hiring process. Check out our careers page for more. #LI-DC1 #LI-REMOTE

We are hiring an experienced Security Software Engineer (Staff or Senior) for our Infrastructure Security team to design and build scalable security controls and services within MongoDB Atlas multi-cloud infrastructure. The team sits within the Site Reliability Engineering organization and works with other engineering teams to ensure that our infrastructure adheres to the highest security standards. This role can be based out of our Austin, Seattle or San Francisco offices, or work fully remotely on standard East Coast business hours. Responsibilities: - Design and build core security primitives and services that protect MongoDB Atlas compute, networking, and identity across AWS, Azure, and GCP - Build secure-by-default infrastructure using Linux security mechanisms (AppArmor, SELinux, seccomp, cgroups), Kubernetes, and eBPF to enforce runtime policies and gain deep visibility into systems behaviour - Develop APIs, automation, and tooling that manage security posture at scale (CSPM, vulnerability management, workload identity) and provide monitoring, logging, and alerting pipelines that integrate with our tooling (Grafana, Splunk, Victoria Metrics.) - Integrate security into our CI/CD and infrastructure-as-code workflows (Terraform) so that security controls are versioned, reviewed, and deployed just like any other code - Lead complex projects end‑to‑end, from problem discovery and design docs to implementation, rollout, and long‑term ownership - Collaborate with SRE, platform and product engineering teams to define secure architectures for new infrastructure and services Qualifications: You might be a great fit if you match some of the following: - 5+ years of experience in Software Engineering, Site Reliability Engineering, or similar roles, preferably with relevant security work - Proficiency with at least one programming language (Java, Golang, Rust, Python, or C/C++) and experience with infrastructure-as-code tools (Terraform) to automate security configurations and processes - A deep understanding of Linux and networking concepts, including low-level fundamentals, and how they work together in complex systems - Experience building security-related features or platforms such as runtime monitoring, CSPM, or vulnerability management - Experience with a cloud provider (AWS, GCP, or Azure) and their security best practices and building blocks - Hands-on experience with Kubernetes and its security ecosystem (e.g. RBAC, OPA/Gatekeeper, Kyverno, eBPF, Falco, Tetragon) - A systems mindset: you think about failure modes, performance, observability, and operability alongside security and correctness - Strong communication skills and the ability to explain complex security concepts and tradeoffs to both technical and non-technical stakeholders About MongoDB MongoDB is built for change, empowering our customers and our people to innovate at the speed of the market. We have redefined the database for the AI era, enabling innovators to create, transform, and disrupt industries with software. MongoDB’s unified database platform—the most widely available, globally distributed database on the market—helps organizations modernize legacy workloads, embrace innovation, and unleash AI. Our cloud-native platform, MongoDB Atlas, is the only globally distributed, multi-cloud database and is available across AWS, Google Cloud, and Microsoft Azure. With offices worldwide and nearly 60,000 customers—including 75% of the Fortune 100 and AI-native startups—relying on MongoDB for their most important applications, we’re powering the next era of software. Our compass at MongoDB is our Leadership Commitment, guiding how and why we make decisions, show up for each other, and win. It’s what makes us MongoDB. To drive the personal growth and business impact of our employees, we’re committed to developing a supportive and enriching culture for everyone. From employee affinity groups, to fertility assistance and a generous parental leave policy, we value our employees’ wellbeing and want to support them along every step of their professional and personal journeys. Learn more about what it’s like to work at MongoDB, and help us make an impact on the world! MongoDB is committed to providing any necessary accommodations for individuals with disabilities within our application and interview process. To request an accommodation due to a disability, please inform your recruiter. MongoDB, Inc. provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type and makes all hiring decisions without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. Req ID: 2263171228 MongoDB’s base salary range for this role is posted below. Compensation at the time of offer is unique to each candidate and based on a variety of factors such as skill set, experience, qualifications, and work location. Salary is one part of MongoDB’s total compensation and benefits package. Other benefits for eligible employees may include: equity, participation in the employee stock purchase program, flexible paid time off, 20 weeks fully-paid gender-neutral parental leave, fertility and adoption assistance, 401(k) plan, mental health counseling, access to transgender-inclusive health insurance coverage, and health benefits offerings. Please note, the base salary range listed below and the benefits in this paragraph are only applicable to U.S.-based candidates. MongoDB’s base salary range for this role in the U.S. is: $127,000—$249,000 USD