• Develop functional and technical requirements; serve as a POC for Information Systems with security issues; • Prepare and update reports to ensure that the unit complies with mandated internal and external security reporting requirements, including Federal Information Security Modernization Act (FISMA) and Capital Planning; • Coordinate security program and system elements with the agency IT Program Managers by evaluating system environments for security requirements and controls including: IT Security Architecture, hardware, software, telecommunications, security trends, and associated threats and vulnerabilities; • Manage security controls to ensure confidentiality, integrity and availability of information; • Build security into the system development process and define security specifications to Support the acquisition of new systems; • Support System Owners or Program Officers on the review of system procurement requests to ensure that security has been considered and included; • Adhere to and implement system security controls that ensure the protection of Sensitive but Unclassified (SBU) information using authentication techniques, encryption, firewalls, and access controls; • Complete Security Assessments; • Assist in the Assessment and Authorization process; • Create and/or update the System Security Plans and other ATO documentation; • Serve as an advisor in risk assessments of all systems and mitigate vulnerabilities; • Adhere to Continuous Monitoring practices to ensure that security controls are maintained over the life of IT systems • Assist the System Owner in the development, testing and maintenance of contingency plans, backup and storage procedures; • Document all procedures according to the organizations standards; • Audit and monitor application, system and security logs for security threats, vulnerabilities and suspicious activities; report suspicious activities to the agency Incident coordinator; • Monitor and coordinate patch management and scanning techniques for all unit systems; participate in identification and mitigation of all system vulnerabilities; • Support and facilitate the security awareness, training, and education program; and • Assist the Information System Security Manager (ISSM), or CISO in any other security related duties, as required.

Job Description Are You Ready to Make It Happen at Mondelēz International? Join our Mission to Lead the Future of Snacking. Make It Uniquely Yours. You provide software and applications expertise, and be responsible for implementation of the solutions. How you will contribute You will oversee the planning and execution of software and applications. To do so, you will manage an internal team and partner with external suppliers and use your deep technical and market knowledge and thorough understanding of our business goals find and deploy the right software and application solutions for the future. You will support programs to implement regional and global software and application strategies, offer input to financial planning and controls for software and applications on a regional and global level, collaborate with management and follow-up on requisitions, purchase orders, invoices, and payments, explores opportunities to leverage scale and drive savings, and ensure that support service level objectives and key performance indicators are accomplished. What you will bring A desire to drive your future and accelerate your career. You will bring experience and knowledge in : - Managing staff and line responsibilities - Managing large-scale software and application services - Service delivery, support and excellence - Program/Project management with experience managing multiple projects for budgets, resources, schedules and quality - General technical background - Understanding of integration and how different applications talk to each other - Process and service orientation - Business processes More about this role You will play a critical role in the engineering, operation, and evolution of the CyberArk Privileged Access Management (PAM) platform, operating it as a global security product and enterprise platform. This role goes beyond day-to-day operations-focusing on platform reliability, secure-by-design integrations, continuous improvement, and alignment to Zero Trust and Product & Platform operating models. You will help ensure that privileged access services are scalable, resilient, compliant, and embedded seamlessly into enterprise and application ecosystems, while supporting business growth and modernization initiatives across Mondelēz International. What you need to know about this position: - You will collaborate closely with Engineering teams, security architects, application owners, and managed service partners to deliver and evolve CyberArk as a standardized enterprise platform. - You will balance operational excellence with forward-looking improvements-driving automation, platform enhancements, and security best practices across a global environment. - You will contribute to roadmap execution, manage global changes and deployments, and ensure the CyberArk platform continuously meets business, security, and compliance requirements What extra ingredients you will bring: - Design, implement, operate, and continuously enhance enterprise-scale CyberArk PAM solutions aligned to product and platform principles. - Deploy, configure, and maintain CyberArk Vault, Privileged Access Security (PAS), Endpoint Privilege Manager (EPM), and supporting components. - Own the reliability, availability, and security posture of the CyberArk platform, including monitoring, alerting, and performance optimization. - Provide advanced technical support for CyberArk-related incidents, conducting root cause analysis and implementing long-term corrective actions. - Troubleshoot and resolve authentication failures, access issues, and privileged session problems across applications, infrastructure, and endpoints. - Engineer and maintain CPM plugins, PSM connectors, and custom integrations using Plugin Generator Utility, CLI, and APIs. - Partner with application, infrastructure, and cloud teams to embed CyberArk services into enterprise workflows, CI/CD pipelines, and modernization programs. - Drive automation and standardization across onboarding, credential rotation, access workflows, and reporting. - Participate in problem, change, and release management forums, ensuring controlled and risk-based platform evolution. - Support audit readiness and compliance remediation related to IAM and privileged access controls. - Mentor and guide junior engineers, fostering technical excellence and knowledge sharing within the team. - Present PAM architecture, platform improvements, and risk reduction initiatives to technical and non-technical stakeholders. - Drive SLA/OLA adherence and accountability with vendors and managed service providers. - Make informed, risk-based decisions when exceptions are required, recommending compensating controls aligned to security standards. - Contribute to continuous improvement initiatives across process, tooling, documentation, and platform maturity. Education / Certifications: - CISSP - CyberArk Certifications - ITIL 4 Foundations Certification Job specific requirements: - 5+ years of hands-on experience designing, implementing, and supporting CyberArk PAM solutions in enterprise environments. - Strong experience with CyberArk Vault, PAS, EPM, and core PAM architecture. - Proven expertise with CPM plugins and PSM connectors, including custom connector development. - Hands-on experience using Plugin Generator Utility, CLI tools, APIs, and scripting for automation. - Solid understanding of privileged access concepts, credential lifecycle management, session isolation, and Zero Trust principles. - Experience operating IAM or security platforms using Agile, and DevSecOps methodologies, with familiarity in ITIL practices. - Strong troubleshooting skills with the ability to diagnose complex, cross-platform issues under time pressure. - Excellent written and verbal communication skills, with the ability to clearly explain technical concepts to diverse audiences. - Strong stakeholder management skills with a customer-centric and outcome-driven mindset. - Proven ability to work effectively in fast-paced, globally distributed environments with competing priorities. - Demonstrated commitment to continuous learning and professional development. No Relocation support available Business Unit Summary At Mondelēz International, our purpose is to empower people to snack right by offering the right snack, for the right moment, made the right way. That means delivering a broad range of delicious, high-quality snacks that nourish life's moments, made with sustainable ingredients and packaging that consumers can feel good about. We have a rich portfolio of strong brands globally and locally including many household names such as Oreo, belVita and LU biscuits; Cadbury Dairy Milk, Milka and Toblerone chocolate; Sour Patch Kids candy and Trident gum. We are proud to hold the top position globally in biscuits, chocolate and candy and the second top position in gum. Our 80,000 makers and bakers are located in more than 80 countries and we sell our products in over 150 countries around the world. Our people are energized for growth and critical to us living our purpose and values. We are a diverse community that can make things happen-and happen fast. Mondelēz International is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation or preference, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law. Job Type Regular Software & Applications Technology & Digital

• You take ownership of initiatives that drive us forward. • You bring the following qualities: a 'let's get it done' mentality, honest and clear communication, team spirit and cohesion. • You demonstrate commitment to professional working groups and industry associations.

Garner’s mission is to transform the healthcare economy, delivering high-quality and affordable care for all. We are fundamentally reimagining how healthcare works in the U.S. by partnering with employers to redesign healthcare benefits using clear incentives and powerful, data-driven insights. Our approach guides employees to higher-quality, lower-cost care, creating a system that works better for everyone. Patients achieve better health outcomes, employers spend healthcare dollars more effectively, and physicians are rewarded for delivering exceptional care rather than performing more procedures. Garner is one of the fastest-growing healthcare technology companies in the country. Our products are trusted by the most sophisticated employers and providers in the industry, and we are building a team of talented, mission-driven individuals who are motivated to make a meaningful impact on healthcare at scale. About the role: We are seeking an exceptional Staff Security Engineer to serve as a technical anchor for our security function. This role is critical for leading technical design reviews and ensuring our security posture scales alongside our rapid customer growth. You will be responsible for defining the security standards that protect sensitive healthcare data, ensuring our systems are resilient against evolving threats while maintaining high engineering velocity. Where you will work: Garner is headquartered in NYC, but this position is available for individuals who are comfortable with remote work and occasional travel to HQ. What you will do: - Lead technical security design: Own the technical design and review process for security-critical systems, ensuring all new features meet Garner's high standards for data protection and resilience - Master complex domains: Maintain and apply a mastery of one or more technical security domains (e.g., Cloud Security, AppSec, or Data) to solve the most complex business and technical challenges - Course-correct technical direction: Identify when technical paths are inefficient or insufficient and proactively redirect efforts to capture higher ROI for the firm - Architect automated defenses: Create and implement advanced tools and automation that increase the efficacy of security monitoring and incident response - Translate ambiguity into execution: Take broad, complex security objectives and break them down into well-defined deliverables and architectural requirements for the broader engineering team - Mentor through technical rigor: Raise the bar for the engineering function by providing high-level feedback during code and design reviews, fostering a culture of security-first development The ideal candidate has: - Exceptional Technical Judgment: Proven ability to make high-stakes technical decisions that result in positive long-term outcomes for the company's security posture - Strategic Problem-Solving: Effectively leverages context and data to analyze root causes and prioritize security initiatives that offer the greatest impact on risk reduction - Influential Stakeholder Management: Builds strong relationships across the organization, conveying complex security risks in a clear and compelling manner to both technical and non-technical partners - Drive for Innovation: Continuously identifies and implements creative solutions to pay down technical debt and improve the efficiency of our security infrastructure - Reliability Under Pressure: Handles complex escalations and security incidents with discipline, ensuring rigorous analysis and comprehensive resolution without jumping to conclusions - A desire to be a part of a high-performing, mission-driven team that operates with intense urgency, a strong sense of individual accountability, and a commitment to authentic feedback - Startup experience Technologies we use: - Python, Kubernetes, Snowflake, AWS, Terraform Wiz, Cyberhaven This is a unique opportunity to join a fast-growing company in a transformative role, helping shape the future of healthcare. Compensation Transparency:The target salary range for this position is $239,000-$275,000. Individual compensation for this role will depend on various factors, including qualifications, skills, and applicable laws. In addition to base compensation, this role is eligible to participate in our equity incentive and competitive benefits plans, including but not limited to: flexible PTO, Medical/Dental/Vision plan options, 401(k), Teladoc Health and more. Fraud and Security Notice: Please be aware of recent job scam attempts. Our recruiters use getgarner.com and garnerhealth.com email domains exclusively. If you have been contacted by someone claiming to be a Garner recruiter or a hiring manager from a different domain about a potential job, please report it to law enforcement here and to candidateprotection@garnerhealth.com. Equal Employment Opportunity:Garner Health is proud to be an Equal Employment Opportunity employer and values diversity in the workplace. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. Garner Health is committed to providing accommodations for qualified individuals with disabilities in our recruiting process. If you need assistance or an accommodation due to a disability, you may contact us at talent@garnerhealth.com.