• Participates in the scoping and planning of annual compliance efforts • Assess the existence and operating effectiveness of all in-scope controls • Bring any control deficiency gaps to the attention of senior IT security personnel • Tests any controls that have been added or remediated • Produces testing result documentation • Manage the daily/weekly/monthly/quarterly access control processes • Participate in the Vendor Risk Assessment process, complete the initial/annual assessments, follow up with the vendor contacts in obtaining SOC reports, obtain clarifications for pending items.

Final candidate must be available for final interview in-person on site. Successful candidate must be available for on-site immersion training for first 30 days of hire. Imagine yourself… - Owning your ambition and fueling your career growth. - Thriving in a supportive team environment that inspires you to strive for excellence. - Collaborating with a vibrant, inclusive, global team. At Veralto, our unifying purpose of Safeguarding the World’s Most Vital Resources™ is more than words: it’s a proven path towards positive change, improvement for our planet, and development for yourself. Whether we’re ensuring the continued availability of clean drinking water, protecting our waterways, or enhancing the traceability, color accuracy, and packaging of everyday essentials, the work we do every day contributes to a safer world and a more sustainable future. When you join Veralto’s vibrant global network of 13 operating companies and 17,000 associates, you join a unique culture and work environment where purpose meets possibility: where the work you do has an everyday impact on the resources and essentials we all rely on, and where you’ll have boundless opportunities to deepen your skillset, pursue your ambitions, and grow your career. We offer: - Bonus/incentive pay and equity awards for eligible roles - A flexible, remote-friendly work environment - Paid holidays and a permissive paid time off policy emphasizing flexibility and trust - Ongoing investment in your career through dedicated training, on-the-job development, and coaching - Total rewards that support your success at work and beyond, including comprehensive health benefits, a 401(k) savings plan with employer match, and associate wellbeing programming with rewards Reporting to the Global Leader, Security Services, the Principal Architect is a senior individual contributor who serves as a technical authority and trusted advisor across the organization's security program. This role leads through technical credibility, expertise, and influence by shaping security strategy, elevating standards, and driving outcomes across teams, business units, and executive stakeholders. The Principal Analyst partners closely with engineering, operations, and senior leadership to translate complex security risks into clear, business-relevant guidance and recommendations. This position does not include direct people management or budget ownership. This is a remote position, part of the Veralto Global Security team, with occasional travel required. Time zone: Primarily US Eastern Minimum 5‑hour overlap with Eastern Time required In this role, a typical day will look like: Technical Leadership & Advisory - Serve as the authoritative owner of enterprise-wide security architecture, reference architectures, and standards and ensuring they remain current with evolving threats, and emerging technologies as well as ensuring they are embedded into process across engineering and product teams. - Provides authoritative security guidance across multiple operating companies and domains, influencing senior leaders to align security strategy with business objectives and adopt consistent standards - Serve as a subject matter authority across a broad portfolio of cybersecurity domains, providing expert guidance on identity and access management, monitoring and detection, cloud security architecture, endpoint security, data protection, and network security. - Lead complex security architecture reviews, evaluating proposed designs, systems, and technologies to identify risk exposures and provide actionable, risk-mitigating recommendations to engineering and product teams. - Establish and maintain security architecture principles, patterns, and standards aligned to frameworks such as NIST CSF, ISO 27001, and Zero Trust Architecture. - Evaluate and advise on the selection of security technologies and tools, assessing fit against organizational needs, risk posture, and strategic direction. Business Influence & Executive Communication - Communicate complex cybersecurity risks, findings, and recommendations clearly and concisely to directors and executives, translating technical concepts into business impact and strategic context. - Build and sustain trusted relationships across operating companies, technology teams, and leadership to drive security priorities and foster a security-conscious culture. - Influence security decisions and adoption of security standards across the organization without direct authority, leveraging expertise, data, and persuasive communication. - Develop and present executive level briefings, risk summaries, architecture decisions, and strategic recommendations. Project & Initiative Ownership - Own and drive complex, cross operating company security projects and initiatives from initiation through delivery with minimal supervision, proactively identifying risks, managing stakeholder expectations, and removing obstacles. - Develop project plans, success criteria, and milestone tracking for security initiatives, ensuring accountability and timely completion. - Collaborate with program and project management teams to integrate security requirements into enterprise transformation initiatives, technology deployments, and business change programs. Risk Assessment & Governance - Conduct and lead architectural based security risk assessments of new and existing technologies, third-party integrations, and business processes, producing clear risk findings with prioritized mitigation options. - Contribute to the development and maintenance of cybersecurity architectural policies, standards, and guidelines, ensuring they remain current with evolving threats and regulatory requirements. Mentorship & Knowledge Sharing - Act as a mentor and technical resource for junior and mid-level security analysts and engineers, sharing expertise and elevating the overall capability of the security organization. - Contribute to communities of practice, internal knowledge bases, and security training initiatives to build security technical depth across the organization. The essential requirements of the job include: - Bachelor's degree in Computer Science, Information Security, Management Information Systems, or equivalent combination of education and work experience. - Typically 10+ years of progressive experience in information security, with demonstrated depth across multiple security domains. - Proven track record of independently leading and delivering complex, cross-functional security projects and programs with minimal direction. - Deep technical expertise in Identity and Access Management / Identity Governance, including PAM, IGA, IAM SSO, MFA, and directory services (e.g., Active Directory, Entra ID). - Strong hands-on knowledge of monitoring and detection technologies, including SIEM platforms (e.g., Microsoft Sentinel), EDR/XDR, SOAR, and threat intelligence platforms. - Demonstrated expertise in cloud security architecture across one or more major cloud providers (e.g., AWS, Azure, GCP), including cloud-native security controls, IaC security, and multi-cloud environments. - Candidates must be able to travel to the US With annual sales of $5 billion, Veralto is a global leader in essential technology solutions with a proven track record of solving some of the most complex challenges we face as a society. Our industry-leading companies with globally recognized brands are building on a long-established legacy of innovation and customer trust to create a safer, cleaner, more vibrant future. Veralto’s Water Quality companies—Aquatic Informatics, ChemTreat, Hach, McCrometer, OTT HydroMet, Sea-Bird Scientific, Trojan Technologies, and XOS—manage, treat, purify, and protect the global water supply, from municipal and wastewater treatment facilities to lakes, rivers, watersheds, and oceans. And our Product Quality & Innovation companies—Esko, Linx, Pantone, Videojet, and X-Rite—protect the world’s food, medicine, and essentials by tracking and authenticating the billions of goods that travel the global supply chain every day. Veralto is headquartered in Waltham, Massachusetts, with 300+ locations worldwide. US ONLY: The below range reflects the range of possible compensation for this role at the time of this posting. We may ultimately pay more or less than the posted range. This range may be modified in the future. An associate’s position within the salary range will be based on several factors, including, but not limited to, relevant education, qualifications, certifications, experience, skills, seniority, geographic location, performance, shift, travel requirements, sales or revenue-based metrics, any collective bargaining agreements, and business or organizational needs. The compensation range for this role is $175,000 - $195,000 USD per year. We offer a comprehensive package of benefits including paid time off, medical/dental/vision insurance and 401(k) to eligible employees. Note: No amount of pay is considered to be wages or compensation until such amount is earned, vested, and determinable. The amount and availability of any bonus, commission, benefits, or any other form of compensation and benefits that are allocable to a particular employee remains in the Company's sole discretion unless and until paid and may be modified at the Company’s sole discretion, consistent with the law. US residents: In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information. Veralto Corporation and all Veralto Companies are committed to equal opportunity regardless of race, color, national origin, religion, sex, age, marital status, disability, veteran status, sexual orientation, gender identity, or other characteristics protected by law. We value diversity and the existence of similarities and differences, both visible and not, found in our workforce, workplace and throughout the markets we serve. Our associates, customers and shareholders contribute unique and different perspectives as a result of these diverse attributes. The EEO posters are available here. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform crucial job functions, and to receive other benefits and privileges of employment. Please contact us at applyassistance@veralto.com to request accommodation. Unsolicited Assistance We do not accept unsolicited assistance from any headhunters or recruitment firms for any of our job openings. All resumes or profiles submitted by search firms to any employee at any of the Veralto companies, in any form without a valid, signed search agreement in place for the specific position, approved by Talent Acquisition, will be deemed the sole property of Veralto and its companies. No fee will be paid in the event the candidate is hired by Veralto and its companies because of the unsolicited referral.

Role Description Fragomen is seeking a Security Engineer – Application Security to join our talented Cyber Security team in our Technology Innovation Lab in Pittsburgh. Our industry-leading, immigration specific software and supporting infrastructure is undergoing tremendous transformation and security is on the critical path to success in that endeavor. A professional, who is passionate about security, capable of effecting change, and ready to build a strong AppSec program, is what we seek. You will be joining a small team of Security Engineers who make security a distinguishing factor in our technological offerings. A successful candidate will help engineer solutions to secure software development, identify threats and mitigate vulnerabilities throughout our environment. - Build, deploy and maintain tooling to validate and track security controls in and around our code - Work closely with application development and infrastructure architectural teams to create code which is secure by design and default - Triage programmatic source code findings and automate penetration testing to decrease potential introduction of vulnerabilities - Lead and collaborate with developers on secure coding techniques and threat modeling - Contribute to vulnerability detection and remediation of technological offerings - Deploy developed or OTS security applications to support our efforts - Participate in a cross-functional response to cyber security incidents - Work closely with the security team to establish prevention, detection and mitigation techniques - Support the scoping and rules of engagement of our penetration testing regime Qualifications - A passionate team player who builds knowledge and solves complex problems - 5+ years of web application development (.net, python, java, etc.) - Secure SDLC (Software Development Life Cycle), DAST (Dynamic Application Security Testing), and SAST (Static Application Security Testing) experience - Demonstrated understanding of web application penetration testing, secure coding and source code analysis - Strong, professional communication skills that maintain under pressure Requirements - Experience in developing highly automated detection and triage tools - Deep understanding of cyber security techniques - Technical certification demonstrating technical prowess in secure software development e.g. Certified Secure Software Lifecycle Professional (CSSLP), or Certified Application Security Engineer (CASE) or similar - BA degree in a related field or a combination of related experience is a must Benefits All offers and/or employment contracts are contingent upon the successful completion of the Firm’s pre-employment screening process. This process may include verifying the candidate’s identity, confirming legal authorization to work in the offered position’s location, and conducting a comprehensive background check, where permitted by local regulations. We use limited AI‑assisted tools for administrative screening purposes only - never for decision‑making. All hiring decisions are made by people. Applicants may have rights to information and explanations regarding the use of such tools, or request human review, as required by applicable regional laws.

• Communicate directly with customers providing recommendations and presenting security solutions. Will follow security projects from pre-sales through to the delivery of products and services. • Drive business opportunities from opportunity identification, scoping process through booking. Identify, qualify, and close new opportunities through the application of technical expertise, account management skills, sales ability, and exceptional client focus. • Work closely with clients to fully understand security concerns, and how company offerings and solutions can help remediate those concerns. Build and maintain relationships with clients and prospects while designing, communicating, and evangelizing cyber security solutions. • Communicate clearly, and concisely the capabilities of security offerings, advisory services, and build reference architectures. Serve as a trusted advisor and consultant to optimize their cyber security strategy. • Assists the sales team with design, sales engineering, proposal assimilation, while delivering high quality results that differentiates us from competitors. • Quickly grasp new technologies and develop solutions integrating new technologies with existing cyber security tools and services. Responsible for technology evaluation and testing. • Develop go-to-market strategy, operationalize plans, collect learnings, and establish the foundation for innovative ideas to scale. A record of accomplishment of developing services. • Deliver technical presentations and/or cyber security solution demos to clients and partners. • Cross collaboration and solution design with adjacent practices (Network, Data Center, Cloud). • Responsible for hands-on work or may be responsible for working with other Engineers. • Leverage and maximize partner alliance relationships to increase opportunity identification. • Identify opportunities where existing client products/tools can be leveraged to develop solutions that provide additional features and capabilities. • Develop white papers and knowledge base articles as needed. • Provide thought leadership in the areas of security requirements, methodologies, techniques, and tools used to reduce the client’s cyber security risk posture.