Red Hat Product Security is seeking a knowledgeable and proactive Senior Compliance Manager to lead our mission of scaling compliance through automation. In this role, you will bridge the gap between rigorous compliance requirements and modern engineering practices. Our vision is to 10X compliance activities by moving away from manual checklists toward automated evidence collection and remediation. You will leverage your in-depth understanding of information systems, hands-on experience with AI capabilities, and a default-to-open mindset to ensure Red Hat’s product offerings are secure-by-design. What You’ll Do - Own the compliance functions for Red Hat’s product offerings and managed service environments, ensuring they meet rigorous global certification standards. - Partner with engineering and managed service teams to develop, and implement automation at scale. - Be comfortable leading compliance deep-dives across multi-functional teams (Engineering, Sales, Product) and act as the primary compliance lead during internal audits. - Collaborate with open-source communities to develop and implement Red Hat-specific capabilities from the upstream; contribute directly to projects to improve the security and compliance ecosystem. - Foster a high-trust, collaborative environment by mentoring junior team members and serving as a security and compliance evangelist both inside Red Hat and within the broader open-source community. What You’ll Bring - Technical Proficiency: You are comfortable with Linux, GitHub, and test-driven development. Some experience delivering secure software in programming languages such as Python. - AI-Augmented Workflow: Hands-on experience using AI tools (e.g., Cursor AI, Claude, or GitHub Copilot) to accelerate product delivery and automate complex compliance mapping. - Cloud-Native Expertise: Strong experience with modern container technologies such as Kubernetes, and OpenShift. - Framework Mastery: Ability to analyze security controls and design measures in alignment with standards such as CRA, NIST 800-53, PCI DSS, and ISO 27001. - Collaborative Leadership: A proven track record of being effective in a self-directed, remote capacity within a global organization. - Communication: Strong ability to present technical compliance concepts clearly to both technical developers and non-technical stakeholders. - Preferred Credentials: Relevant certifications such as CISSP, CISM, CCSP, or CISA are a plus. About Red Hat Red Hat is the world’s leading provider of enterprise open source software solutions, using a community-powered approach to deliver high-performing Linux, cloud, container, and Kubernetes technologies. Spread across 40+ countries, our associates work flexibly across work environments, from in-office, to office-flex, to fully remote, depending on the requirements of their role. Red Hatters are encouraged to bring their best ideas, no matter their title or tenure. We're a leader in open source because of our open and inclusive environment. We hire creative, passionate people ready to contribute their ideas, help solve complex problems, and make an impact. Inclusion at Red Hat Red Hat’s culture is built on the open source principles of transparency, collaboration, and inclusion, where the best ideas can come from anywhere and anyone. When this is realized, it empowers people from different backgrounds, perspectives, and experiences to come together to share ideas, challenge the status quo, and drive innovation. Our aspiration is that everyone experiences this culture with equal opportunity and access, and that all voices are not only heard but also celebrated. We hope you will join our celebration, and we welcome and encourage applicants from all the beautiful dimensions that compose our global village. Equal Opportunity Policy (EEO) Red Hat is proud to be an equal opportunity workplace and an affirmative action employer. We review applications for employment without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, citizenship, age, veteran status, genetic information, physical or mental disability, medical condition, marital status, or any other basis prohibited by law. Red Hat does not seek or accept unsolicited resumes or CVs from recruitment agencies. We are not responsible for, and will not pay, any fees, commissions, or any other payment related to unsolicited resumes or CVs except as required in a written contract between Red Hat and the recruitment agency or party requesting payment of a fee. Red Hat supports individuals with disabilities and provides reasonable accommodations to job applicants. If you need assistance completing our online job application, email application-assistance@redhat.com. General inquiries, such as those regarding the status of a job application, will not receive a reply.

Job Description Are You Ready to Make It Happen at Mondelēz International? Join our Mission to Lead the Future of Snacking. Make It Uniquely Yours. Role Overview We are seeking a skilled and motivated Senior Security Detection Engineer to join our security team. In this role, you will design, build, and maintain detection content to identify and mitigate security threats across enterprise environments. You will work closely with threat intelligence, threat hunting, and incident response teams to translate adversary behavior into high-fidelity detections, proactively identify detection gaps, and improve detection coverage across the organization. This is a hands-on technical role focused on engineering, tuning, and operationalizing detection capabilities, with opportunities to influence detection strategy and collaborate across security and engineering teams. What You Will Bring / Key Responsibilities - Design, develop, and maintain detection rules, alerts, and analytics to identify cybersecurity threats across endpoints, network, identity, cloud, and application platforms. - Collaborate with threat intelligence, threat hunting, and security operations teams to understand emerging threats and translate TTPs into actionable detections. - Continuously monitor the threat landscape and proactively recommend improvements to detection coverage and methodology. - Validate, test, and tune detection content to reduce false positives and improve accuracy, performance, and signal-to-noise ratio. - Partner with incident response teams to provide detection insights, improve alert fidelity, and support investigation workflows. - Maintain and enhance the organization’s detection repository within SIEM and detection platforms, ensuring content stays current with evolving attack techniques. - Develop and refine Data Loss Prevention (DLP) detection policies and monitoring use cases to protect sensitive data and support compliance requirements. - Identify detection gaps and raise risks, working with engineering and security stakeholders to prioritize remediation and improvements. - Stay current on cybersecurity tools, frameworks, and adversary techniques to continuously evolve detection engineering practices. - Contribute technical guidance and peer mentorship, helping uplift detection quality and engineering standards across the team. Additional Job Description More About This Role This role is ideal for a hands-on detection engineer who enjoys building and tuning security analytics, collaborating across teams, and proactively improving security posture. You will have meaningful influence on detection coverage and technical direction without formal people management responsibilities. Job-Specific Requirements - Bachelor's degree in computer science, Information Security, or a related field (or equivalent practical experience). - At least 5 years of experience in cybersecurity with a strong focus on detection engineering, threat hunting, Security Operations Center operations, or incident response. - Experience working with or alongside Red Team/Purple Team activities. - Strong knowledge of Security Information Event Management platforms, log pipelines, and detection engineering workflows. - Proficiency in scripting or programming languages such as Python, PowerShell, or Bash. - Familiarity with adversary tactics, techniques, and procedures (Tactics Techniques Procedures), MITRE ATT&CK, and detection engineering frameworks. - Experience with cloud environments and cloud-native attack/detection strategies (e.g., AWS, Azure, GCP). - Strong analytical and problem-solving skills with a creative approach to detection design. - Excellent collaboration and communication skills with the ability to work cross-functionally with security and engineering teams. - Relevant certifications (e.g., GCDA, GCFA, GCFR, GCIH, GREM, OSCP, CISSP) are a plus but not required. - Experience with Version Control Systems (VCS) (GitHub) - Experience working with SIGMA, YARA, and detection query language structures. Salary and Benefits: The base salary range for this position is $109,000 to $149,875; the exact salary depends on several factors such as experience, skills, education and location. In addition to base salary, this position is eligible for participation in a highly competitive bonus program with possibility for overachievement based on performance and company results. In addition, Mondelez International offers the following benefits: health insurance, wellness and family support programs, life and disability insurance, retirement savings plans, paid leave programs, education related programs, paid holidays and vacation time. Some of these benefits have eligibility requirements. Many of these benefits are subsidized or fully paid for by the company. No Relocation support available Business Unit Summary The United States is the largest market in the Mondelēz International family with a significant employee and manufacturing footprint. Here, we produce our well-loved household favorites to provide our consumers with the right snack, at the right moment, made the right way. We have corporate offices, sales, manufacturing and distribution locations throughout the U.S. to ensure our iconic brands—including Oreo and Chips Ahoy! cookies, Ritz, Wheat Thins and Triscuit crackers, and Swedish Fish and Sour Patch Kids confectionery products —are close at hand for our consumers across the country. Mondelēz Global LLC is an Equal Opportunity Employer/Protected Veterans/Persons with Disabilities. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected Veteran status, sexual orientation, gender identity, gender expression, genetic information, or any other characteristic protected by law. Applicants who require accommodation to participate in the job application process may contact 847-943-5460 for assistance. For more information about your Federal rights, please see eeopost.pdf; EEO is the Law Poster Supplement; Pay Transparency Nondiscrimination Provision; Know Your Rights: Workplace Discrimination is Illegal Job Type Regular Information Security Technology & Digital

JOB DESCRIPTION JOB SUMMARY Leads and directs the development and execution of integrated strategies for workforce risk, safety, and security within Molina’s Healthcare’s Protection Services. Provides strategic direction and enterprise oversight of programs that protect Molina’s people, facilities, and operations across all work environments. Ensures regulatory compliance, operational continuity, and a culture of care and preparedness. Responsibilities include enterprise workforce risk management, occupational health and safety, emergency response planning, site and event security, workplace violence prevention, and de-escalation programs. Oversees a multidisciplinary team, and partners with executives, business leaders, and cross-functional stakeholders to anticipate and mitigate risks, enhance organizational resilience, and advances employee well-being and safety across the enterprise. ESSENTIAL JOB DUTIES Workforce Risk - Provides strategic leadership and oversight for enterprise workforce risk management programs designed to identify, assess, and mitigate operational and employee risk across the organization. - Directs programs supporting in-person, remote and field employees, including ergonomic risk management, infectious disease case management, and third-party motor vehicle record oversight. - Manages the design and maintenance of enterprise Emergency Response Plans and business continuity support programs, ensuring readiness for disruptive events. - Leads the design and delivery of enterprise de-escalation and workplace violence prevention programs, ensuring alignment with organizational learning principles and enterprise risk management frameworks. - Collaborates with Human Resources, Legal, Compliance, and other key stakeholders to integrate risk considerations into policies, standards, and employee engagement strategies. - Partners with executive leadership to develop proactive communication, metrics, and governance mechanisms that promote early intervention and accountability. - Serves as backup to lead the cross functional Threat Management Team with HR, Legal, & Investigations Safety - Manages and oversees consultants and senior consultants to ensure delivery of day-to-day safety and compliance programs. - Provides enterprise leadership and direction for occupational safety and health programs, ensuring compliance with OSHA and applicable federal and state requirements. - Oversees enterprise injury and illness prevention, accident investigation, job hazard analysis, and ergonomic assessment initiatives. - Leads the development, implementation, and evaluation of safety training programs, including CPR/AED/first aid certification, ergonomics, and emergency response education. - Leads continuous improvement efforts using metrics, audit results, and after-action reviews to drive program maturity and operational excellence. - Ensures integration of workforce safety initiatives into corporate strategy, aligning with Molina’s mission, regulatory obligations, and employee experience priorities. Security - Provides oversight and governance for Molina’s site and event security operations, including contract guard force management, and special event security planning. - Manages supplier relationships and security service agreements, ensuring cost-effective delivery and operational excellence. - Directs responses to security and safety incidents, ensuring proper investigation, documentation, and compliance with legal and regulatory requirements. - Serves as a senior liaison with law enforcement, emergency services, and external partners during incidents and enterprise-level responses. - Supports enterprise crisis management and business continuity functions during disruptive events, ensuring coordination and leadership within the Protection Services organization. Team Administration - Leads and mentors the in-house safety and security managers and professionals, ensuring high performance, professionalism, and alignment with organizational priorities. - Ensures appropriate consultation regarding threat mitigation, workplace violence, and regulatory compliance. Regularly reports compliance metrics to senior leadership ensuring trends and threats are identified with recommendations for mitigation. - Prepares and manages operational budget including forecasting, staffing and third-party expense management. - Oversee the inventory, accountability, and logistics of Workforce Risk, Safety, and Security tools, technology, and equipment. JOB QUALIFICATIONS REQUIRED QUALIFICATIONS - At least 8 years demonstrated leadership in programs at a national or enterprise level; at least 5 years’ experience with safety program and safety management systems (SMS); at least 5 years’ experience with project management, including implementation/project management of safety solutions in facilities; at least 3 years’ experience managing in a matrixed environment, or equivalent combination of relevant education and experience. - Large scale safety operations in a multinational company environment. Worked across functions in a matrixed organization, commensurate with a Fortune 500. - Nationally recognized safety certification such as Associate Safety Professional (ASP), Certified Safety Professional (CSP), Safety Management Specialist (SMS), Certified Training Professional (CTP), and Certified Protection Professional (CPP) - Demonstrated ability to provide strategic direction, influence decision-making, and lead enterprise-level program development - Exceptional communication, facilitation, and relationship—building skills with proven ability to collaborate across diverse business units - Demonstrated leadership presence and ability to thrive in a fast-paced, ambiguous environment - Proficient in MS Office applications (Outlook, Word, Excel, PowerPoint) and familiar with SharePoint and Visio - Strong analytical, problem-solving, and decision-making skills, with the ability to drive measurable outcomes PREFERRED QUALIFICATIONS: - Proficient in incident management, case tracking, and analytic systems (e.g., Salesforce, Ontic) - Knowledge of OSHA, ISO45001, ANSI Z20, ASIS, and other applicable state and federal safety, security, and health standards To all current Molina employees: If you are interested in applying for this position, please apply through the Internal Job Board. Molina Healthcare offers a competitive benefits and compensation package. Molina Healthcare is an Equal Opportunity Employer (EOE) M/F/D/V.

• Superviser et coordonner les efforts de sécurité à travers le Canada • Développer, encadrer et guider les représentants en sécurité afin de maintenir un programme rentable permettant de répondre et de dépasser toutes les exigences des clients • Agir à titre d’Agent de sécurité d’entreprise (Corporate Company Security Officer – CCSO) pour le groupe et les divisions • Être le principal point de contact senior pour les relations gouvernementales avec la Sécurité industrielle de SPAC (PWGSC)