At Capgemini Engineering, the world leader in engineering services, we bring together a global team of engineers, scientists, and architects to help the world’s most innovative companies unleash their potential. From autonomous cars to life-saving robots, our digital and software technology experts think outside the box as they provide unique R&D and engineering services across all industries. Join us for a career full of opportunities. Where you can make a difference. Where no two days are the same. #LI-Remote Job Description We are looking for a Go Developer with strong cloud-native engineering experience and a solid understanding of modern distributed systems. The candidate will work on building backend services, supporting a microservices-based architecture, and contributing to continuous delivery workflows. The role requires close collaboration with global teams and availability until 12 PM PST. Responsibilities - Design and develop backend services and system components using Go - Build reliable, scalable, and maintainable microservices as part of a distributed architecture - Participate in planning, design discussions, and code reviews - Collaborate with platform, infrastructure, QA, and product teams to ensure smooth integration - Contribute to architectural improvements and overall system evolution - Ensure high performance, stability, and security of backend components - Write unit, integration, and end-to-end tests to support software quality - Investigate and resolve issues in development, staging, and production environments - Support continuous delivery processes and contribute to workflow optimization - Document solutions and share knowledge within the team - Communicate effectively in English with cross-functional groups - Work collaboratively with globally distributed teams and remain available until 12 PM PST Requirements - Strong proficiency in Go and experience building production-grade backend services - Hands-on understanding of Kubernetes environments - Knowledge of Kubernetes networking, resource management, and extensibility concepts - Experience working with microservices architectures - Strong Linux skills and familiarity with system-level debugging - Experience with CI/CD pipelines, preferably GitLab - Good communication skills in English (spoken and written) - Ability to work collaboratively in distributed teams and align with PST time zone - AWS experience is a plus - Experience with behavior-driven testing frameworks is a plus What You Will Love About Working Here We care about all our employees and want them to feel as comfortable as possible. That's why we offer health insurance from the first days, regardless of the probationary period.The Gift from the Company - Christmas holidays from December 25 to December 31.Cooperation with Superhumans center and Veteran HUB. Capgemini Engineering has supported the launch of psychological rehabilitation department of Superhumans. Our team also donated over UAH 500 000 prosthetics for three Ukrainian defenders. Currently, we support psychological counseling provided by the Veteran Hub, and we have implemented an internal policy making the company friendly to military and veterans with the assistance of the Hub. Capgemini is a global business and technology transformation partner, helping organizations to accelerate their dual transition to a digital and sustainable world, while creating tangible impact for enterprises and society. It is a responsible and diverse group of 340,000 team members in more than 50 countries. With its strong over 55-year heritage, Capgemini is trusted by its clients to unlock the value of technology to address the entire breadth of their business needs. It delivers end-to-end services and solutions leveraging strengths from strategy and design to engineering, all fueled by its market leading capabilities in AI, generative AI, cloud and data, combined with its deep industry expertise and partner ecosystem. #LI-AT5

At GEICO, we offer a rewarding career where your ambitions are met with endless possibilities. Every day we honor our iconic brand by offering quality coverage to millions of customers and being there when they need us most. We thrive through relentless innovation to exceed our customers’ expectations while making a real impact for our company through our shared purpose. When you join our company, we want you to feel valued, supported and proud to work here. That’s why we offer The GEICO Pledge: Great Company, Great Culture, Great Rewards and Great Careers. Geico is seeking a Senior Engineer for the Cybersecurity Incident Management Team who brings deep technical expertise in detecting, analyzing, and responding to sophisticated cyber threats. The ideal candidate will have significant experience in incident response, forensic investigation, and threat analysis, with proven ability to manage complex security incidents. This position is for someone who can provide expert guidance, collaborate effectively across teams, and contribute to the continuous improvement of their security processes and tools. Strong problem-solving skills, technical proficiency, and a commitment to staying current on cybersecurity trends are essential. Job Responsibilities - Coordinate incident response activities to mitigate impact and prevent future occurrences. - Conduct forensic investigations to determine the root cause and scope of security incidents. - Prepare comprehensive post-incident reports and provide clear updates to executive leadership and stakeholders. - Collaborate with IT, DevOps, legal, and compliance teams to remediate vulnerabilities and implement preventative measures. - Provide expert-level guidance on cybersecurity best practices, tools, and methodologies. - Ensure all responsibilities and tasks comply with ADA guidelines and organizational standards. Candidate Qualifications and Skills - Extensive experience in cybersecurity incident response, forensic investigation, and threat analysis. - Strong problem-solving skills and technical proficiency in security tools and methodologies. - Excellent communication skills for reporting and stakeholder engagement. - Ability to collaborate effectively across multidisciplinary teams. - Relevant certifications (e.g., CISSP, CISM, CEH) preferred. - Commitment to staying current on cybersecurity trends and emerging threats. - Experience in developing and enhancing incident response processes and technologies. Location - Job Type: Remote Position. Candidates may report to the Geico main office or work remotely, depending on organizational needs. - Travel Requirements: Some travel may be required, depending on organizational needs. Annual Salary $100,000.00 - $215,000.00The above annual salary range is a general guideline. Multiple factors are taken into consideration to arrive at the final hourly rate/ annual salary to be offered to the selected candidate. Factors include, but are not limited to, the scope and responsibilities of the role, the selected candidate’s work experience, education and training, the work location as well as market and business considerations. GEICO will consider sponsoring a new qualified applicant for employment authorization for this position. The GEICO Pledge: Great Company: At GEICO, we help our customers through life’s twists and turns. Our mission is to protect people when they need it most and we’re constantly evolving to stay ahead of their needs. We’re an iconic brand that thrives on innovation, exceeding our customers’ expectations and enabling our collective success. From day one, you’ll take on exciting challenges that help you grow and collaborate with dynamic teams who want to make a positive impact on people’s lives. Great Careers: We offer a career where you can learn, grow, and thrive through personalized development programs, created with your career – and your potential – in mind. You’ll have access to industry leading training, certification assistance, career mentorship and coaching with supportive leaders at all levels. Great Culture: We foster an inclusive culture of shared success, rooted in integrity, a bias for action and a winning mindset. Grounded by our core values, we have an an established culture of caring, inclusion, and belonging, that values different perspectives. Our teams are led by dynamic, multi-faceted teams led by supportive leaders, driven by performance excellence and unified under a shared purpose. As part of our culture, we also offer employee engagement and recognition programs that reward the positive impact our work makes on the lives of our customers. Great Rewards: We offer compensation and benefits built to enhance your physical well-being, mental and emotional health and financial future. - Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being. - Financial benefits including market-competitive compensation; a 401K savings plan vested from day one that offers a 6% match; performance and recognition-based incentives; and tuition assistance. - Access to additional benefits like mental healthcare as well as fertility and adoption assistance. - Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program, which offers the ability to work from anywhere in the US for up to four weeks per year. The equal employment opportunity policy of the GEICO Companies provides for a fair and equal employment opportunity for all associates and job applicants regardless of race, color, religious creed, national origin, ancestry, age, gender, pregnancy, sexual orientation, gender identity, marital status, familial status, disability or genetic information, in compliance with applicable federal, state and local law. GEICO hires and promotes individuals solely on the basis of their qualifications for the job to be filled. GEICO reasonably accommodates qualified individuals with disabilities to enable them to receive equal employment opportunity and/or perform the essential functions of the job, unless the accommodation would impose an undue hardship to the Company. This applies to all applicants and associates. GEICO also provides a work environment in which each associate is able to be productive and work to the best of their ability. We do not condone or tolerate an atmosphere of intimidation or harassment. We expect and require the cooperation of all associates in maintaining an atmosphere free from discrimination and harassment with mutual respect by and for all associates and applicants.

Make a difference. Be happy. Grow your career. The Role The SOC Level III Detection and Automation Engineer responsibilities include designing, implementing, and maintaining automated solutions alongside building, tuning, and managing SIEM detection content to enhance the efficiency and effectiveness of our Security Operations Center (SOC). The ideal candidate will also possess advanced knowledge of cybersecurity incident response automation and skills in incident detection, analysis, response, and threat hunting as well as a solid understanding of cybersecurity principles and technologies. Provide support and guidance to IT for all customer and affiliate entities. Document work in the form of incident reports, policies, standards, network security diagrams, playbooks, and knowledge base articles in support of Payment Card Industry Compliance Data Security Standard (PCI-DSS), Health Information Trust Alliance (HITRUST), Health Insurance Portability and Accountability Act (HIPAA), and cybersecurity defense and protection due-diligence and due care. Nordic, Best in KLAS IT Services Firm and solely serving the healthcare industry, strives to empower healthcare providers to leverage technology and to realize digital transformation. All Nordic staff embrace Nordic’s maxims and mission to serve our customers who care so well for us. Key Responsibilities Automation Solutions Development - Design, develop, and deploy automated scripts, tools, correlation policies, and workflows to streamline SOC operations, integrating disparate security technologies via APIs to enable seamless data sharing across the SOC toolchain. - Evaluate, customize, and optimize security tools and platforms (SOAR, SIEM, etc.) to maximize automation capabilities within the SOC environment. - Analyze existing SOC processes and workflows to identify bottlenecks or inefficiencies and propose automation strategies to improve operational efficiency. Monitoring and Detection - Conduct analysis of security events to determine their nature, scope, and potential impact on the organization's systems and data. Incident Response - Conduct analysis of security incidents escalated from junior-level analysts, determining root cause, scope of impact, and affected systems or data to support timely triage and escalation decisions during on-call rotations. - Execute initial containment and mitigation strategies for confirmed security incidents, coordinating with relevant stakeholders and operational teams as needed, and escalating to senior IR resources when scope or complexity warrants. - Prepare incident reports documenting the analysis, findings, actions taken, and recommendations for improvement to support handoff and post-incident review by the broader security team. SIEM Detection Engineering - Design, develop, and maintain detection logic within Microsoft Sentinel, including KQL-based analytics rules, scheduled query rules, and near-real-time (NRT) detection rules aligned to the MITRE ATT&CK framework. - Continuously tune existing detection rules to reduce false positive rates, improve signal fidelity, and adapt to evolving threat behaviors and changes in the customer environment. - Manage Microsoft Sentinel data connectors, log ingestion pipelines, workspace settings, workbooks, watchlists, and threat intelligence feeds to ensure comprehensive data collection and enrich detection and analyst investigations. - Perform detection coverage gap analysis using the MITRE ATT&CK framework, mapping current detection posture against relevant tactics and techniques and driving remediation of coverage gaps. - Manage the full detection lifecycle, from research and development through deployment, validation, and retirement, following a detection-as-code approach with version control, and maintain documentation of rule rationale, tuning history, and false positive mitigation notes within the team knowledge base. - Translate threat intelligence, exercise findings, and post-incident reviews into actionable new or updated detection rules to improve proactive defense posture. Support and Collaboration - Collaborate with cross-functional teams to identify automation opportunities and implement solutions for security tool integration and orchestration. - Assist in the development and implementation of long-term cybersecurity strategies and roadmaps aligned with industry best practices. Skills and Experience - Proficiency in scripting and programming languages (Python, PowerShell, Bash) for SOC automation, including automated log parsing, IOC enrichment, threat intelligence lookups, and integration with security APIs (e.g., Microsoft Graph Security API, GTI (VirusTotal), Shodan, etc.). - Knowledge of infrastructure and cloud technologies, including networking, virtualization, and containerization, to facilitate automated solutions deployment. - Strong understanding of cybersecurity principles, threat landscapes, and SOC operations to identify areas for automation improvement. - Project management skills to oversee automation initiatives, prioritize tasks, and manage timelines effectively. - A strong knowledge of applicable laws, statutes (HIPAA, Privacy Act, PCI/DSS, GDPR, etc.), executive guidelines/standards (DISA STIG, CIS controls, etc.). - Strong knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth). - Knowledge of Intrusion Detection System (IDS)/Intrusion Prevention System (IPS) tools and applications, both network and host based. - Strong knowledge of cyber threats, vulnerabilities, and adversarial tactics, techniques, and procedures (TTPs). - Preferred experience in cybersecurity incident response - Firm understanding of threat hunting. - Preferred experience with integration of Microsoft SharePoint. - Preferred experience with integration of ServiceNow. - Preferred: Hands-on experience with Microsoft Sentinel as a primary SIEM, including configuring data connectors, writing analytics rules, and managing the Sentinel workspace. - Preferred: Proficiency in Kusto Query Language (KQL) for writing, optimizing, and validating detection queries and threat hunting searches within Microsoft Sentinel and Microsoft Defender. - Familiarity with the Microsoft Defender suite (Defender for Endpoint, Defender for Identity, Defender for Cloud Apps, etc.) and how Defender signals integrate with Microsoft Sentinel for unified detection and investigation. - Working knowledge of the MITRE ATT&CK framework as applied to detection engineering, including mapping detection rules to tactics, techniques, and sub-techniques. - Understanding of log source onboarding, normalization, and data quality concepts as they relate to SIEM effectiveness and detection reliability. - Experience developing or refining detection-as-code practices, including version-controlled rule management and peer review processes for detection logic changes. - Hands-on experience designing and building SOAR playbooks for automated incident response, alert triage, and threat containment workflows, with proficiency in at least one enterprise SOAR platform (e.g., Microsoft Sentinel SOAR/Logic Apps, Swimlane Turbine, Palo Alto XSOAR, etc.). - Experience developing and maintaining Microsoft Sentinel automation rules and Azure Logic Apps playbooks for automated alert enrichment, ticket creation, and response actions integrated with downstream tools (e.g., ServiceNow, Microsoft Defender, email notification systems). - Familiarity with RESTful API integration concepts and the ability to connect disparate security tools via APIs to enable bidirectional data sharing and coordinated automated response across the SOC toolchain. Required Minimum Education (subject to experience): - Bachelor’s Degree in Computer Science, Cybersecurity, Information Technology, Software Engineering, Information Systems, Computer Engineering Licensure/Certification Preferred - Industry Certifications: GCSA, CACE, CISSP, CEH, SANS GCIH, CASP+, OSCP, SC-200 (Microsoft Security Operations Analyst), AZ-500 (Microsoft Azure Security Engineer), Minimum Years and Type of Experience - Bachelor's degree and 8 years of related experience, a Master's degree and 6 years of related experience, or 11 years of related experience and no degree. - Other Knowledge, Skills and Abilities Required - Strong interpersonal, oral communication, and proven analytical and problem-solving skills. Ability to communicate clearly and present security findings with technical staff as well as non-technical colleagues. Excellent communication skills to effectively annotate findings in both written and oral form. Able to prioritize and execute tasks in a high-pressure environment. Strong customer service, independence and experience working in a team-oriented, collaborative environment. Other Knowledge, Skills and Abilities Preferred - Experience working in a large healthcare organization. Knowledge of regulatory compliance and risk management frameworks PCI-DSS, HIPAA, NIST SP 800-30, 53, 37, 115 Additional details - Requires on-call duty 24-hrs/day as a part of a rotation schedule for emergency response to critical technical situations requiring immediate attention. Nordic is an equal opportunity employer. We are committed to creating an inclusive environment for all employees and applicants. We do not discriminate on the basis of race, color, religion, sex, national origin, age, disability, genetic information, marital or veteran status, or any other protected status under applicable federal, state, or local laws. We encourage individuals of all backgrounds to apply, including women, minorities, individuals with disabilities, and veterans.

At Network Solutions, we’ve been trusted for decades to help people get online and stay ahead. We’ve been here since the beginning of the internet, and we’re still building for what comes next.  As the original digital identity authority, we help secure domain names, protect brands, and safeguard the infrastructure businesses rely on. We empower our customers to own and manage the assets that define them online, while delivering enterprise-grade security to protect against virtual threats. Our team leverages modern, AI-accelerated tools to streamline how businesses manage their digital presence, making the most of our decades of experience.  The Network Solutions team is here to help online businesses protect what’s theirs and build for tomorrow. That’s why millions trust us to protect their domains, brands, and websites every day. Senior AI Back-End Engineer What you’ll do & how you’ll make your mark   - Design & scale async REST/WebSocket APIs with Python 3.11+ + FastAPI, using dependency-injection, type hints, and clean vertical-slice architecture. - Implement multi-agent workflows with Semantic Kernel (handoff, sequential, concurrent) to route traffic among specialised LLM agents. - Integrate LLM providers (OpenAI GPT-4.1/mini, Google Gemini 2.5 Flash) behind a provider-agnostic layer for A/B and cost-aware routing. - Deliver Retrieval-Augmented Generation with vector stores such as Azure AI Search, pgvector, or Chroma. - Expose tool-using agents via OpenAI Assistants (Code-Interpreter) for data-analysis / file-manipulation tasks. - Evolve schemas with SQLModel / SQLAlchemy 2 & Alembic; tune Postgres for high-concurrency async access. - Maintain robust CI/CD (Bitbucket Jenkins) that lint, type-check, test, package (Docker), and deploy. - Instrument services with structlog JSON logs, OpenTelemetry traces, and cost/latency metrics; hold p95 < 100 ms. - Champion AI-assisted development (GitHub Copilot, Cursor) and share pragmatic problem-solving practices with the team. Who you are & what you’ll need to succeed.  - 5 + yrs building production APIs in Python; 2 + yrs with FastAPI (or similar async stack). - Deep knowledge of async I/O, Pydantic v2, DI, and observability. - Hands-on with Semantic Kernel or comparable agent frameworks. - Practical RAG implementations using Azure AI Search, pgvector, or Chroma. - Strong Postgres skills, including SQLModel/SQLAlchemy 2 and Alembic migrations. - Proven integrations or Side Projects with LLM APIs (OpenAI, Gemini) and structured-output design. - Dependency management via Poetry and virtual-env isolation. - End-to-end CI/CD ownership (build → scan → test → deploy). - Excellent analytical and problem-solving ability. - Remote work readiness with daily overlap of at least 09:00 – 13:00 EST. Nice to have - Event/message queues (RabbitMQ, Azure Service Bus, Kafka). - Observability stacks (Grafana, LangFuse) for LLM cost governance. Join us to build the agent-powered backbone of our AI platform—robust, model-agnostic, and ready for millions of users. Why you’ll love us.   - Work-life balance. Our work is thrilling and meaningful, but we know balance is key to living well.   - We celebrate one another’s differences.  We’re proud of our culture of diversity and inclusion. We foster a culture of belonging. Our company and customers benefit when employees bring their authentic selves to work. We have programs that bring us together on important issues and provide learning and development opportunities for all employees.  We have 20 + affinity groups where you can network and connect with Newfolders globally.   - We care about you. We are a family, and we care about you and your family’s physical and mental health by providing competitive HMO benefits – 175k MBL with one free dependent upon one year of service! We also give out Punctuality Bonus, Generous Vacation policy, and much more!   - Where can we take you? We’re fans of helping our employees learn different aspects of the business, be challenged with new tasks, be mentored, and grow their careers. Unfold new possibilities with #teamnewfold!   #NetworkSolutions This Job Description includes the essential job functions required to perform the job described above, as well as additional duties and responsibilities. This Job Description is not an exhaustive list of all functions that the employee performing this job may be required to perform. The Company reserves the right to revise the Job Description at any time, and to require the employee to perform functions in addition to those listed above.