• Engage with engineering teams to promote security-aware development of Red Hat technologies/solutions. • Understand current and emerging threats impacting the enterprise product, service and supply chain space. • Analyze complex software systems and identify potential weaknesses in their architecture and dependency trees. • Plan and carry out threat modeling activities, and realistic threat simulations across products, services and their productization pipelines. • Consult with software developers, product and pipeline teams on improved security architecture. • Ensure that product roadmaps and new features mitigate risk, adhere to security policies, and provide customers with minimal security risk. • Contribute to customer facing security documentation, reference, and other data as used by the Common Vulnerabilities and Exposures (CVE) pages. • Promote Red Hat Product Security efforts within the community and the greater public. • Communicate effectively and efficiently with various internal stakeholders about security issues and vulnerabilities.

• Lead the development, implementation, and ongoing improvement of CareOregon’s information security program • Partner with leaders across the organization to strengthen security governance, reduce risk, and ensure compliance with regulatory and industry standards • Oversee security operations, incident response, vulnerability management, and third-party risk • Provide strategic guidance on secure architecture and emerging threats • Manage a high performing security team and foster strong collaboration with internal stakeholders and external partners to maintain a resilient enterprise security posture

Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health optimization on a global scale. Join us to start Caring. Connecting. Growing together. You’ll enjoy the flexibility to work remotely * from anywhere within the U.S. as you take on some tough challenges. Primary Responsibilities: - Design, implement, and manage Palo Alto Networks firewall solutions to protect enterprise network environments - Configure and maintain firewall policies, threat prevention profiles, and security controls in alignment with organizational standards and compliance requirements - Support cloud network segmentation initiatives and policy enforcement - Manage and resolve tickets related to firewall rule changes, access issues, and security events - Identify, investigate, and remediate firewall rules that fail internal or external compliance audits - Communicate clearly and effectively during high‑pressure situations to identify root causes, assess impact, and drive timely resolution - Perform detailed analysis of firewall logs, traffic flows, and alerts to support investigations and operational diagnostics - Leverage AI‑assisted tools such as Microsoft Copilot to increase development speed, accuracy, and overall productivity - Contribute to documentation, knowledge sharing, and operational runbooks to support consistent and repeatable security operations - Follow established change management, incident handling, and security processes while continuously enhancing technical expertise in network security technologies - Leverage enterprise-approved AI tools to streamline workflows, automate tasks, and drive continuous improvement You’ll be rewarded and recognized for your performance in an environment that will challenge you and give you clear direction on what it takes to succeed in your role as well as provide development for other roles you may be interested in. Required Qualifications: - High School Diploma/GED (or higher) - 3+ years of experience in managing firewalls in cloud environments (AWS, Azure); experience with on‑prem firewalls a plus - 3+ years of experience with tooling such as ticketing systems, cloud consoles, and firewall management suites - 3+ years of experience analyzing complex logs and communicating technical findings clearly - 1+ years of experience using Splunk and analyzing Splunk logs - Ability to assist with after-hours support and respond to high severity security incidents when required Preferred Qualifications: - Bachelor’s degree in Cybersecurity, Information Technology, or equivalent - Certifications such as AWS Security, Azure Security Engineer Associate, Network+ or Security+, or equivalent are a plus - Strong organizational skills, attention to detail, and a commitment to thorough documentation - Experience with Zero Trust architectures and cloud first security platforms - Strong understanding of network security principles, TCP/IP, VPNs, routing, and segmentation - Experience with automation, scripting, and API based integrations *All Telecommuters will be required to adhere to UnitedHealth Group’s Telecommuter Policy. Pay is based on several factors including but not limited to local labor markets, education, work experience, certifications, etc. In addition to your salary, we offer benefits such as, a comprehensive benefits package, incentive and recognition programs, equity stock purchase and 401k contribution (all benefits are subject to eligibility requirements). No matter where or when you begin a career with us, you’ll find a far-reaching choice of benefits and incentives. The salary for this role will range from $91,700 to $163,700 annually based on full-time employment. We comply with all minimum wage laws as applicable. Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records. Application Deadline: This will be posted for a minimum of 2 business days or until a sufficient candidate pool has been collected. Job posting may come down early due to volume of applicants. At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone–of every race, gender, sexuality, age, location, and income–deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups, and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes — an enterprise priority reflected in our mission. UnitedHealth Group is an Equal Employment Opportunity employer under applicable law and qualified applicants will receive consideration for employment without regard to race, national origin, religion, age, color, sex, sexual orientation, gender identity, disability, or protected veteran status, or any other characteristic protected by local, state, or federal laws, rules, or regulations. UnitedHealth Group is a drug - free workplace. Candidates are required to pass a drug test before beginning employment. #RPO #GREEN

Bitwarden empowers enterprises, developers, and individuals to securely store and share sensitive data. With a transparent, open-source approach to password management, secrets management, and passwordless and passkey innovations, Bitwarden makes it easy for users to extend robust security practices across all online activities. Founded in 2016 with headquarters in Santa Barbara, California, Bitwarden is supported by a passionate global community of security experts and enthusiasts. As a Senior Security Engineer at Bitwarden, you will be responsible for conducting purple team testing, including threat research and analysis, penetration testing, code audits, security validation testing, and cryptography reviews against Bitwarden’s products and services. In addition, you will be part of the security findings response team, and assist with external inquiry and report response, investigation, and triage. Additional responsibilities include assisting with remediation of any security issues that are identified during internal or external testing and assessments while working alongside our engineering and security operations team members to ensure Bitwarden platform and services are secure and resilient. We’re looking for someone who is a self-starter with highly technical skills overlapping offensive and defensive capabilities. The right candidate will have experience using security and vulnerability management tools and solutions to detect and prevent cyber-related vulnerabilities in the company's services and networks as well as to any mobile and Internet-facing applications, systems and environments. This is an all-remote team and we are looking for someone located in the U.S. We do not offer visa sponsorship at this time. RESPONSIBILITIES - Research emerging threats across the surface web, dark web, and deep web - Build threat models, conduct threat hunts, and plan and execute purple team engagements - Coordinate internal red team testing operations that emulate a threat actor - Collaborate with application development teams, platform engineers, and Security Operations Center (SOC) engineers to improve our offensive and defensive security controls - Contribute to vulnerability testing and analysis as well as incident response and analysis - Include testing for web, mobile, CLI, and desktop application security issues across our multi-product portfolio, including Bitwarden Password Manager, Secrets Manager, and Passwordless.dev, our APIs, serverless functions, and database - Participate in code reviews, learning and spreading technical knowledge about security posture - Contribute to resolutions for security-related issues - Coordinate technical validation and leadership review of purple team reports detailing testing results and potential areas of improvement - Conduct internal penetration tests on systems and networks to determine realistic threat vectors - Manage software tools for code scanning, vulnerability identification, and finding reporting - Effectively communicate findings, attack paths, and recommendations to stakeholders - Train others on the adversary simulation tactics and procedures used - Stay informed on current security trends, publications, and advisories - Assist to provide guidance and subject matter expertise as it pertains to all areas of security and technical operations, including analysis of our cloud environments, security testing and documentation, as well as investigations, software research, new technology, services and tools research, and vendor security analysis WHAT YOU BRING TO BITWARDEN - Experience with Penetration Testing Tools, such as Burp Suite, NMAP, Nessus, Metasploit, Kali Linux, SQLMap, Owasp ZAP, and manual testing tools - In-depth knowledge of leading vulnerability management tools and strategies - In-depth understanding and usage of application security testing technologies is a plus - Understanding of authentication concepts, including OpenIDConnect, SAML, OAuth, and SSO flows - Strong working knowledge of vulnerability management tools, data and network security technologies - Collaborative and adaptable mindset - Openness and authenticity combined with excellent communication skills - Excitement and enthusiasm for open source and for better internet security - Excellent problem-solving skills – you might not know all the answers, but you know how to find and communicate the solution - Ability to maintain discretion, handle sensitive information, and maintain security best-practices - Security purple team technocrat at heart, staying current with trends and new technologies NICE-TO-HAVES - User of Bitwarden - Experience with C# and TypeScript, the core two languages used to build the Bitwarden platform - Experience in the SecOps world and ability to apply security best practices across the organization - Experience working in cloud-focused environments WHAT TO EXPECT IN THE INTERVIEW PROCESS Selected candidates will be invited to schedule an introduction call and potentially progress through the following stages: - Interview with Principal Architect - Interview with lead engineers - Interview with CTO - Reference calls Successful candidates will be asked to authorize and complete a background check. We do not discriminate based on having a criminal record, and we encourage candidates to be open with us about anything that may come up on the report, so we can discuss in advance and determine impact on the role and company. A FEW REASONS TO WORK WITH US - Our user community loves us and we love them. Come to work each day with a sense of purpose as we bring a more secure internet experience to everyone––from our friends and family to the world’s largest organizations. - Become an expert in a growing market. You’ll get immersed in the prominent technology markets of security and open source software. - Learn and grow professionally. Embrace the opportunity to build up your demand generation and product-led growth expertise in a fast-growing startup. - We are dedicated to building a diverse and talented team. Work remotely with motivated and supportive team members across the world. In the United States, the starting base compensation range for this role is $140,000 - $180,000. Actual compensation may vary based on level, relevant experience, and skill set as assessed in the interview process, as well as market data by location. See our careers page for a list of benefits. Please note that compensation outside the U.S. will differ based on the market.