Feedzai is the world’s first RiskOps platform for financial risk management, and the market leader in safeguarding global commerce with today’s most advanced cloud-based risk management platform, powered by machine learning and artificial intelligence. Feedzai is securing the transition to a cashless world while enabling digital trust in every transaction and payment type. The world’s largest banks, processors, and retailers trust Feedzai to protect trillions of dollars and manage risk while improving the customer experience for everyday users, without compromising privacy. Feedzai is a Series D company and has raised $282M to date. With a valuation of $2 billion, our technology protects 1 billion consumers and 90 billion transactions each year. The Security Team keeps Feedzai products and systems secure. We work on risk reduction and security issue mitigation as we continue to move forward and grow. We maintain compliance and security best practices aligned with industry standards, as we work in a very regulated environment and do develop our own software and services. The Security Team is involved from the beginning of production to meet and exceed our client expectations and be the top SME in the industry. We run our own Security Operations Center services and incident response with state of the art tools. We are dynamic, tenacious, and driven by our passion for fighting financial fraud and crime with our socially responsible products. Join Us! You: We are looking for a Senior Security Compliance Engineer. You will be responsible for making sure that both our software & our infrastructure is safe, helping to protect our customers. Your Day to Day: - Ensure compliance with core applicable standards and regulations (PCI DSS, ISO/IEC 27001 and 27701, SOC 2, NIST, GDPR) & participate in the audit processes; - Support clients, vendors, and regulatory audits, assessments, and information security requests; - Review, implement and oversight the effectiveness of Feedzai's security framework as well as ensuring their effectiveness; - Perform security risk assessments and provide prioritized remediation recommendations; - Develop, review, and maintain policies, processes, and standards and implement procedures, controls, and other measures to ensure compliance with internal and legal regulations and requirements. You have & You Know-How - Knowledge of compliance and regulatory frameworks (PCI DSS, ISO/IEC 27001, SOC 2, NIST, CIS, GDPR, etc.); - Understanding of cloud security concepts (e.g.: Amazon Web Services (AWS) IAM, GCP or Azure security principles, etc.) and integrating security controls through DevOps and Infrastructure as a Service (IaaS) techniques; - Excellent communication skills (written and verbal) with an ability to articulate complex topics in a clear and concise manner. - Knowledge of container orchestration systems such as Kubernetes is welcomed. - Experience working with Generative AI (GenAI) tools is a plus. #LI-Remote #LI-MG3 Your First 30-Days at Feedzai: You will be immersed in our brand with training, connections, and one-on-one time with your manager. You may shadow your colleagues virtually or onsite at an office depending on where you work as you are supported through your Feedzai journey. In addition, you will have access to a ton of information to give you history, context, and all the knowledge you can handle about Feedzai and the team. Finally, you will start working on projects and collaborating on work currently being done. We can't wait to have you join the team! Life at Feedzai Instagram Feedzai Culture Feedzai is an Equal Opportunity Employer and we value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. Feedzai does not accept unsolicited resumes from recruiters or employment agencies. Feedzai will use the personal data you provide us with by filling out this form for reviewing your application and to potentially negotiate a contract with you. Your personal data will be retained by Feedzai for 24 months following your application. Please see our Privacy Notice available at https://www.feedzai.com/legal/feedzai-candidate-privacy-policy/ and https://www.feedzai.com/legal/feedzai-california-candidates-privacy-policy/ for more information on how we process your personal data.

*Position is Eligible for Remote / Work from Home Opportunity* Department: Systems Security Telecommuting Eligible: Yes Job Grade: E14 As a condition of employment physical work location must be in one of the 50 states or the District of Columbia. Notice of Collection & Privacy Policy for Applicants Residing in California: California Applicant Privacy Policy | Noridian (noridiansolutions.com) Job Title Security Engineer Job Summary The Security Engineer designs, implements, and maintains enterprise security technologies to protect systems and data, ensuring compliance with Acceptable Risk Safeguards (ARS), National Institute for Standards and Technology (NIST), and Federal Information Systems Management Act (FISMA) standards. Engineers focus on Security Information and Event Management (SIEM), Security Orchestration, Automation, and Response (SOAR), automation, vulnerability management, endpoint protection, and threat detection, collaborating with Security Operations Center (SOC), Governance, Risk, and Compliance (GRC), and IT teams to strengthen detection, prevention, and response. Senior Security Engineers provide advanced expertise, lead tool and process design, mentor junior staff, and drive continuous improvement and automation across security operations. Essential Functions (Key Duties/Responsibilities/Accountabilities) - Designs, implements, and maintains enterprise security tools including SIEM, Endpoint Detection Response (EDR), Data Loss Prevention (DLP), and vulnerability management systems. - Integrates log sources and ensures end-to-end visibility across cloud and on-prem environments. - Develops, tunes, and optimizes SIEM correlation rules, dashboards, and alerts. - Designs and maintains SIEM/SOAR detection rules mapped to MITRE ATT&CK techniques to improve alert fidelity and adversary coverage. - Incorporates ATT&CK-based logic into automation workflows and detection engineering initiatives. - Supports incident response by performing root cause analysis and recommending mitigations. - Conducts security assessments and assists in vulnerability remediation and patch validation. - Performs secure code reviews and static code analysis (SAST) to identify vulnerabilities; provides remediation recommendations and targeted training. - Automates routine security operations and compliance processes using scripting languages (PowerShell, Python, etc.). - Conducts penetration testing of security tools, controls, and processes. - Supports compliance evidence gathering for ARS, NIST, FISMA, and other applicable audits. - Collaborate with IT teams to embed security best practices and ensure security controls align with compliance frameworks. - Provide strategic recommendations for new security tools, process improvements, remediations, risk mitigation, and targeted security training based on penetration testing findings. - Provides technical mentoring and training to analysts on detection and tuning techniques. - Communicates complex security concepts to both technical teams and non-technical stakeholders. - As assigned, provides after-hours support for security incidents as part of an on-call or escalation rotation. Non-Essential Duties and Functions - Other duties as assigned. Minimum Qualifications - Bachelor’s degree in Cybersecurity, Computer Science, or related field OR equivalent experience as determined by Human Resources. - 5 years of experience in security operations, engineering, or related technical field. - Skills in developing and maintaining scripts in PowerShell, Python, or Bash. - Demonstrated experience with SIEM platforms (e.g., Microsoft Sentinel, Trellix, Splunk, QRadar). - Working knowledge of log management, Intrusion Detection System/Intrusion Prevention System (IDS/IPS), Endpoint Detection and Response (EDR), SOAR, NIST 800-53, 5.1, Center for Internet Security Controls, or other vulnerability management standards. - Working knowledge of MITRE ATT&CK or other threat modeling frameworks (e.g., D3FEND, Cyber Kill Chain) and its application to detection logic, automation, and threat modeling. - Strong analytical and problem solving skills to investigate complex security incidents, assess vulnerabilities, and design effective technical solutions. - Excellent written and verbal communication skills. - Experience with testing tools such as Nmap, SQLmap, Metasploit, Wireshark, Nessus, Burp Suite, or other similar tools. - One Offensive Security Certification: (Offensive Security Certified Professional (OSCP), Offensive Security Experienced Penetration Tester (OSEP), Offensive Security Wireless Professional (OSWP), Offensive Security Web Assessor (OSWA), and Offensive Security Web Expert (OSWE). Preferred Qualifications - 7 Years experience - Certified Information Systems Security Professional (CISSP), Global Information Assurance Certification (GIAC) GIAC Certified Incident Handler (GCIH) GIAC Certified Detection Analyst (GCDA), or Microsoft Cybersecurity Architect (SC-100). Environment and Cognitive/Physical Demands - Office environment - Ability to read, hear, speak, keyboard, reason, communicate effectively and problem solve - Requires prolonged sitting and telephone usage - Requires the use of office equipment such as computer terminals, telephones, copiers and printers - Infrequent lifting to 20 pounds - Infrequent stooping Segregation of Duties Every employee is responsible to perform their duties and responsibilities in accordance with Noridian values, policies and procedures, including but not limited to, Segregation of Duties Principles, HIPAA, Security and Privacy, CMS requirements, the Noridian Compliance Program, and any other applicable laws, rules and regulations. Statement of Other Duties This document describes the essential functions, requirements, and responsibilities of this job, and is not intended to be a complete list of all tasks and functions. Employees may be requested to perform job related tasks other than those specifically listed in this description, and may be required to perform any task requested by the supervisor or management. Total Rewards Package: Health, Dental and Vision Insurance, Voluntary Insurance Plans, Health Savings and Flexible Spending Accounts, 401k and Company Match, Company-paid Life Insurance, Education Assistance Program, Paid Sick Leave, Paid Holidays, Increasing PTO Accrual Plan, Medical/Parental/Disability Leave, Workers Compensation, Retiree Benefits, Severance Package, Employee Assistance Program, Financial and Health Wellness Benefits, Casual Dress, Open Office Setting, and Online Learning System. CMS Access Compliance and Regulation Contingency Statement Some positions require compliance with (i) federal and agency specific regulations and related clauses included in Noridian's prime contracts with the Government, (ii) background checks, and (iii) eligibility for a government-issued identification card. An employee in this position may be required to possess a “Federal Identification Card” (Federal ID) as a condition of employment. Federal ID’s may include one of the following: Personal Identity Verification (PIV) card, Personal Identity Verification-Interoperable (PIV-I) card, a Local-Based Physical Access Card issued by CMS, or a Local-Based Physical Access Card issued by another Federal agency and approved by CMS. Obtaining a Federal ID and continued eligibility for this position may require the successful completion of a Federal Background Investigation performed by the Federal Government and a residency requirement that you have lived in the United States at least three out of the last five years. Failure to obtain a Federal ID may result in the removal from the position or termination of employment. Equal Employment Opportunity Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status or other characteristics protected by state or federal law. The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information. 41 CFR 60-1.35(c) Below is the salary range for potential new hires. Salary Range: The pay range for this position is $79,267.71 – $130,374.83 per year, however, the base pay offered may vary depending on geographic region, internal equity, job-related knowledge, skills, and experience among other factors. Other Compensation: Incentive Plan & Lifestyle Benefit This job will be closed 04/06/2026 at 8:00AM CST. No further applications will be considered.

Join our Team About this opportunity: We are thrilled to announce an exciting opportunity for a skilled Back Office L2 Engineer - Security to become part of our dedicated Telecom Security team. In this pivotal role, you will be responsible for the operation and management of our IP-backbone security devices, playing a crucial part in safeguarding our network infrastructure. As a key member of our team, you will collaborate with experts in the field to ensure the integrity and reliability of our security systems. This position offers a unique chance to grow professionally within a dynamic environment that prioritizes innovation and excellence. Ideal for a security enthusiast eager to make a significant impact on telecom security standards and contribute to the advancement of industry-leading practices. What you will do• Manage and troubleshoot in Multi-vendor Firewalls, IPSs, Authentication servers, Token server, Load balancers, DDOS mitigation solution.• Managing & Securing Gi traffic from GGSNs to Etisalat-Misr Internet gateway firewalls.• Managing & Securing communications among IN, VAS, IT, IP-RAN, OSS, SS7/SIGTRAN, NOC, Gi ...etc. nodes!• Responsible for data traffic performance passing through firewalls and investigation/troubleshooting in case of incidents or any abnormalities.• Responsible for defining threats and put action plan for mitigation.• Implementation of all security access requests.• Responsible for all Security IP-backbone expansions, replacements & new plans.• Handling urgent cases out of business hours. (oncall hours)• Handling 3PP Cases with vendors. You will bring• +3 Years of experience in the Security domain.• BSc. degree in computer science or Engineering, major in IT/ Communication or equivalent • Has a proven history in Scripting and automation will be preferred.• Hands-on experience in installation and management for different Firewalls vendors (Juniper SRX, Fortinet, ...).• Hands-on experience in installation and management for F5 Modules (LTM, AFM, ASM, and GTM).• Familiar with Telecom operators Network.• Good presentation and communication skills.• Customer Relationship Management skills.• JNCIP-SEC is a must and F5 certificates will be considered. Why join Ericsson?At Ericsson, you'll have an outstanding opportunity. The chance to use your skills and imagination to push the boundaries of what's possible. To build solutions never seen before to some of the world's toughest problems. You'll be challenged, but you won't be alone. You'll be joining a team of diverse innovators, all driven to go beyond the status quo to craft what comes next. What happens once you apply? Click Here to find all you need to know about what our typical hiring process looks like.Encouraging a diverse and inclusive organization is core to our values at Ericsson, that's why we champion it in everything we do. We truly believe that by collaborating with people with different experiences we drive innovation, which is essential for our future growth. We encourage people from all backgrounds to apply and realize their full potential as part of our Ericsson team. Ericsson is proud to be an Equal Opportunity Employer. learn more. Primary country and city: Egypt (EG) || Cairo Req ID: 782553

• Assess the organization’s current change management • Develop a change management strategy to support security-related programs • Implement change management processes and tools to support adoption of cybersecurity changes • Contribute to practice-building efforts such as knowledge sharing • Develop processes to measure progress and effectiveness of change management activities and business readiness • The ability to effect change through business process engineering design, prevent change collisions at scale, and how ways of working are conducted for better efficiency and customer satisfaction.