• Identify, analyze, track, and communicate new and emerging federal, state, and sponsor research security legislation, policies, requirements, and resources. • Interpret complex regulatory guidance and provide clear recommendations to University leadership, researchers, and staff. • Facilitate compliance with federal, state, sponsor, and institutional research security requirements, including health research–specific compliance obligations and implementation of requirements related to health research data. • Provide high-level support related to research security aspects of sponsored projects. • Conduct initial reviews of international outside activities and agreements to assess research security and compliance considerations. • Support the development, revision, and implementation of University policies, guidance documents, and resources related to research security. • Develop educational materials and provide outreach, training, and advisory support to researchers and staff to promote awareness and compliance. • Serve as a subject matter expert on research security matters and advise internal stakeholders on risk mitigation and best practices. • Provide program management for sponsored projects, including coordinating project activities, engaging researchers and stakeholder groups, supporting recruitment efforts, and developing reports, products, and resources. • Coordinate user testing and stakeholder feedback processes to inform project deliverables and continuous improvement efforts. • Manage multiple priorities in a dynamic regulatory environment while maintaining accuracy and attention to detail.

• You will aid our Product Managers in developing secure and resilient product designs. • You’ll become a respected advisor to our software engineers and you’ll help them solve security & compliance problems without limiting product functionality or adding tech debt. • You will design, build, and introduce security tooling that improves assurance of code in our pipelines and accelerates time to deployment of code. • You’ll focus on training and education with your software engineering counterparts to improve velocity and security of our developed code. • You’ll conduct threat modeling exercises and work closely with product & engineering to address the risks that you’ve identified. • Your input as a security practitioner will be valuable for our Product Management team as we develop tooling to help our clients’ security and IT teams manage their use of our platforms.

Role Description We are seeking a highly skilled IGA Engineer to join the ICAM Cyber Modernization project team. This candidate is responsible for the design, architecture, implementation, and integration of an enterprise identity governance administration solution. - Strong understanding of legacy and modern authentication principles and policies. - Experience in identity/lifecycle management and access management, including both infrastructure and specific configuration knowledge. - Hands-on experience within three or more of the following technologies: - Identity Governance Administration - Identity & Access Management - Active Directory - EntraID - SSO - IT Service Management (ITSM) - Scripting/development experience with two or more of the following: - REST API - LDAP - SQL - PowerShell - Object-oriented Programming As an IGA Engineer, you will be responsible for managing and supporting Identity Governance and Administration solutions for the Department. You will work closely with various teams to ensure that identity and access management processes align with the department's security policies and compliance requirements. This role will involve strategically designing, configuring, maintaining, and troubleshooting IGA systems to ensure efficient and secure identity management. Qualifications - U.S. Citizenship Mandatory: Candidates for this position are required to be a US Citizen and will be subject to a background investigation. Benefits - Comprehensive benefits package. - Competitive pay. Company Description Since 1999, ITEC has delivered mission-critical support to the DoD and Intelligence Community. Now part of ManpowerGroup Public Sector (MGPS), we continue that work with expanded capabilities.

Role Description We are seeking an experienced Engineering Leader to head the Cloud Antivirus Department at Imunify360, overseeing three specialized teams that form the core of Imunify's malware detection, analysis, and cloud scanning infrastructure. This role combines deep technical expertise in malware analysis and distributed systems with strong people management and strategic product vision. The department is responsible for protecting millions of websites on shared hostings through the Imunify360/ImunifyAV product line, processing tens of millions of files through a cloud-based antivirus pipeline, and maintaining the malware signature lifecycle from creation to deployment. Teams Under Management - Malware Team: On-server malware scanning and detection stack: signature-based and heuristic scanners, real-time file monitoring, malware cleaner, signature server, release engineering and rollout. - Cloud Antivirus (CloudAV) Team: Cloud-based malware analysis infrastructure: large-scale Airflow data processing cluster (24+ nodes), PHP emulator sandbox, automated signature generation, file classification pipelines, storage and hardware capacity planning. - Malware Processing Team: Malware analysis operations: sample triage, signature creation, false negative/false positive remediation, ML-assisted classification, vendor integrations, and remediation tooling. Key Responsibilities - Product & Strategy: - Introduce, own and constantly improve key metrics for antivirus products. - Define and prioritize the product roadmap across all three teams. - Drive product initiatives to achieve challenging key metrics. - Collaborate with Product Management on VIP customer requirements and competitive analysis. - Introduce more AI tools & instruments within malware detection lifecycle. - Technical Leadership & Architecture: - Own the end-to-end malware detection pipeline: from file ingestion through cloud analysis to on-server verdict delivery and cleanup. - Drive architectural decisions for distributed data processing (Airflow DAGs, async Python, ClickHouse, MongoDB, Redis, Kafka). - Oversee migration and modernization initiatives (e.g., AI malware analysis, AI rules creation). - Design and implement performance optimizations for cloud processing throughput (10M+ brand new samples added daily). - Manage infrastructure capacity planning: compute nodes, Ceph storage clusters, database scaling. - People Management: - Lead 3 teams across multiple time zones. - Hire, mentor, and grow engineers and team leaders for 3 teams. - Coordinate cross-team dependencies with Server Team, Web Protection Team, QA, Infrastructure, and Support. - Operational Excellence: - Ensure signature release quality through automated testing pipelines. - Monitor and improve detection rates, false positive rates, and cleanup success metrics. - Respond to production incidents (certificate expiries, infrastructure failures, processing bottlenecks). - Manage vendor and partner technical integrations. Goals for the First 6 Months - Understand the full pipeline end-to-end: from file ingestion from clients' servers, pipelines processing in the cloud, verdict delivery, and on-server scanning/cleanup. - Maintain momentum on active initiatives: e.g. Rust migration. - Establish relationships with cross-functional stakeholders (Server Team, Web Protection Team, Product, Support, Infrastructure). - Identify and address the top 3 detection quality or infrastructure bottlenecks. - Define the department key metrics and start tightening them to excellence. Qualifications - Past experience leading security products / labs with / researches. - 8+ years of software engineering experience, with 3+ years in a management role leading multiple teams. - Deep expertise in malware analysis and antivirus technologies: static/dynamic analysis, signature-based detection, heuristic engines, file classification. Requirements - Strong background in distributed systems and data engineering: experience with workflow orchestration (Airflow, Luigi, or similar), message queues (Kafka, RabbitMQ), and large-scale data processing. - Experience with infrastructure at scale: managing compute clusters, storage systems (Ceph, S3), databases (ClickHouse, MongoDB, PostgreSQL, Redis). - Strong understanding of CI/CD pipelines: Jenkins, GitLab CI, containerized deployments (Docker). - Experience with monitoring and observability: Grafana, Sentry, log aggregation. - Experience in the web hosting security domain (cPanel, Plesk, shared hosting environments). - Background in machine learning applied to malware detection (transformers, LLMs for code analysis). - Experience with GCP (Secret Manager, Cloud Storage). - Familiarity with PHP internals and PHP emulation for dynamic analysis. - Track record of building and scaling cloud antivirus / threat intelligence platforms. - Experience managing geographically distributed teams. Technical Stack - Languages: Python (primary), Rust, PHP, SQL. - Orchestration: Apache Airflow, Celery, Redis. - Databases: ClickHouse, MongoDB, PostgreSQL, Redis. - Storage: Ceph, S3-compatible storage. - Infrastructure: Bare metal (Atman DC), Nebula, Docker, GCP. - CI/CD: Jenkins, GitLab. - Monitoring: Grafana, Redash, Sentry. Benefits - A focus on professional development. - Interesting and challenging projects. - Fully remote work with flexible working hours, that allows you to schedule your day and work from any location worldwide. - Paid 24 days of vacation per year, 10 days of national holidays, and unlimited sick leaves. - Compensation for private medical insurance. - Co-working and gym/sports reimbursement. - Budget for education. - The opportunity to receive a reward for the most innovative idea that the company can patent.