Role Description In this role, you will design and implement an identity management solution in a federal organization. You will work closely with your Agile delivery team and organizational stakeholders to understand the organization's needs and define IAM requirements. Then, you will develop, test, and deploy IAM functionality across identity systems. Job Responsibilities - Collaborate with your team to define and meet IAM system requirements. - Support creation of end-user training material. - Implement security policies, standards, and procedures related to IAM. - Develop, test, and deploy IAM features based on requirement gathering. Qualifications - Ability to obtain a US government security clearance. - At least 3 years of experience designing and implementing IAM solutions, such as Entra ID, PingFederate, PingDirectory, Okta, CyberArk, SailPoint, and Saviynt IGA. - Comprehensive knowledge of at least three of the following: - REST APIs - Structured Query Language (SQL) - Lightweight Directory Access Protocol (LDAP) - System for Cross-domain Identity Management (SCIM) - PowerShell Scripting - JavaScript or a similar programming language - Ability to do at least two of the following: - Design an access request workflow in an IGA solution - Enable role-based access control (RBAC) with an IGA solution - Provision access from an IGA solution through a standards-based method - Implement SOD policies within an IGA solution - General knowledge of Agile development methodologies Desired Skills - Experience implementing Saviynt IGA - Possession of a Saviynt IGA certification - Experience integrating Saviynt IGA with ServiceNow

Lightspark is building the open payment protocol for the Internet making money move like data: instantly, globally, and without friction. With enterprise tools like Grid, Node, and Spark, businesses can send and receive money instantly, securely, and at a fraction of the cost, anytime, anywhere. Lightspark is headquartered in Los Angeles, California, but serves the world. We are seeking a Senior Security Engineer with a rare combination of deep infrastructure roots, application security expertise, and a sophisticated understanding of blockchain protocols. In this role, you will be architecting the safety of a high-throughput, decentralized payment network. Your expertise spans the entire security spectrum: you have the operational rigor to secure mission-critical infrastructure and the technical depth to audit low-level code, all while maintaining an intuitive grasp of on-chain anomalies and decentralized threat vectors. WHAT YOU’LL BE DOING: - Secure Protocol Engineering: Perform deep-dive code audits and risk assessments of core protocol implementations and payment channel logic. You will prevent funds loss or state corruption by identifying edge cases in distributed systems. - Hardened Infrastructure: Architect and secure our cloud-native footprint (AWS/GCP), ensuring that validator nodes, signing services, and P2P networking are resilient against both traditional DDoS and protocol-specific eclipse attacks. - Application & Lifecycle Security: Build and maintain the Secure SDLC for our products. This includes automated security analysis (SAST/DAST) in CI/CD, managing high-stakes bug bounties, and performing manual penetration tests on our financial APIs. - Cryptographic Operations: Design and manage mission-critical Key Management Systems (KMS). You will lead the implementation of Multi-Party Computation (MPC), Threshold Signatures (TSS), and HSM integrations to secure private keys at scale. - Detection & Response: Develop specialized monitoring for both Cyber threats (unauthorized access, lateral movement) and On-chain threats (channel jamming, fee-siphoning, or routing anomalies). - Security Expert: Serve as the subject matter expert for engineering teams, bridging the gap between standard web security and crypto-native security WHAT WE ARE LOOKING FOR: - Experience: 6+ years in Security Engineering with a proven track record that spans Infrastructure, Application Security, and Blockchain/DeFi. - Crypto Understanding: Hands-on experience with cryptographic primitives (Elliptic Curve, Schnorr, Merkle Trees) and a fundamental understanding of Layer 2 scaling (Lightning Network). - Systems Programming: High proficiency in Python, Rust or Go. You should be capable of auditing systems-level code for memory safety, race conditions, and cryptographic flaws. - Adversarial Expertise: A history of identifying vulnerabilities in decentralized protocols or high-scale distributed systems. You think three steps ahead of the attacker. - Compliance & Frameworks: Understanding of how to apply traditional frameworks (NIST, OWASP) to the non-traditional world of decentralized finance and self-custody. - Education: A CS degree is ideal, but we also value contributions to open-source security tools or a history of disclosed vulnerabilities in the crypto space. - Communication: Ability to translate complex cryptographic risks into actionable engineering requirements for non-security peers. Lightspark is on a mission to build an open payment protocol for the Internet at scale and therefore we’re committed to creating a more inclusive and diverse workplace to reflect the customers we serve. We welcome interest from individuals of all backgrounds and levels of experience who share our mission. We do not discriminate based on race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability status, or other applicable legally protected characteristics. We will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of the State of California Fair Chance Initiative for Hiring.

• Lead the design and implementation of Ciena’s Detection Engineering framework, covering logging, auditing, alerting, TTP-based detections, vulnerability exposure checks, and hardening compliance automation. • Define logging and telemetry standards for product teams, ensuring events are structured, consistent, and SIEM-ready. • Translate findings from Pen Testing, PSIRT, and Threat Intelligence into reusable, product-specific detections and alert packs. • Architect and maintain custom detection scripts and automation. • Develop metrics and dashboards to measure Mean Time to Detect (MTTD), detection precision, coverage, and compliance posture. • Partner with R&D, PLM, and Compliance teams to embed detection checkpoints into the product lifecycle and ensure regulatory alignment (NIST, ISO, EU CRA, NIS2, etc.). • Mentor engineers on detection rule creation, data quality, and event design. • Present program progress and outcomes to senior leadership, security councils, and customer security reviews.

• Lead EP’s information security, privacy and AI governance strategy • Own and maintain the Information Security Management System (ISMS), security policies and risk framework • Maintain ISO 27001 certification and compliance with frameworks such as ST4S • Ensure compliance with global privacy regulations including GDPR, the New Zealand Privacy Act and the Australian Privacy Act as EP’s data protection officer • Oversee security architecture, tooling, vulnerability management and incident response • Manage EP’s security and privacy risk register, reporting key risks to senior leadership and the board • Develop and implement AI governance frameworks to support responsible and ethical AI use • Lead vendor security and privacy assessments, including third-party risk management • Drive security awareness and training programs across the organisation • Manage external security audits and certification processes • Lead business continuity planning, cyber insurance and risk reporting • Partner with engineering, product and operations teams to embed security and privacy into our ways of working • Act as a key point of contact for customers, regulators and government stakeholders on security and privacy matters