Role Description As our first dedicated Senior Security Engineer, you will join a remote, global health‑tech team that works at the intersection of genomics, AI, and consumer health. You will report to the Head of Engineering, partner closely with DevOps, bioinformatics, and developers, and help protect highly sensitive health and genomic data as we grow. You will build security practices and your work will directly shape how the company operates and earns customer and partner trust. Success in this role means being proactive, collaborative, clear in your communication, and comfortable executing in a fast-moving, startup environment while partnering across functions and time zones. Qualifications - 8+ years in security engineering, DevSecOps, or infrastructure security roles. - Strong hands-on penetration testing and vulnerability discovery skills, using both manual methods and tools. - OSCP, OSCE, or equivalent certifications are a plus; we value candidates with real-world offensive experience, not just institutional credentials. - Deep experience securing AWS and OCI cloud and Kubernetes (RBAC, IAM, network policies, containers, secrets), as well as bare metal and on-premises server environments. - Experience adding and tuning security tools in CI/CD (such as Semgrep, CodeQL, OWASP ZAP, Burp Suite). - Comfortable with tools like Burp Suite, Metasploit or similar, OWASP ZAP, Semgrep or CodeQL, CloudTrail, Falco, Terraform, Docker, Git/GitHub, Cloudflare, and Google Workspace. - Experience with SIEM or log aggregation and real‑time detection and monitoring. - Familiarity with HIPAA, SOC 2, and how to protect PHI/PII in regulated or high‑sensitivity environments. - Clear written and verbal communication, especially for explaining security issues and recommendations to technical teams. - Ability to influence and collaborate with engineering, DevOps, and data teams without formal authority. - Comfortable working independently in a remote, fast-moving startup with limited existing security processes. - Experience with eCommerce and checkout security, including securing payment flows, cart and order APIs, and protecting against fraud, skimming attacks, and checkout abuse. - Experience with vulnerability research, responsible disclosure, or red team operations is a strong plus. Requirements - Lead security testing for our web apps, APIs, cloud (AWS/OCI), Kubernetes, and on‑prem servers, and clearly document vulnerabilities you find. - Build security into our CI/CD pipelines with DevOps, including code and app scanning and stronger secrets management. - Work with bioinformatics to secure genomic data pipelines and protect PHI/PII in line with HIPAA requirements. - Set up and run security monitoring, alerting, and incident response, with practical playbooks and runbooks the team can follow. - Lead the technical work needed for HIPAA, SOC 2, and ISO 27001 readiness and future audits. - Help design and improve logging and SIEM use so the team can spot and respond to threats faster. - Translate security findings into clear, prioritized tasks that engineering and DevOps teams can execute. - Partner with engineers, DevOps, and bioinformatics so security is built into how we design, build, and ship systems. - Contribute to threat modeling and secure design discussions for new and existing services. - Maintain clear, concise security documentation, including standards, guidelines, and incident procedures. - Support vendor and third-party security assessments by reviewing findings and driving remediation with the team. - Provide input into security aspects of our architecture and infrastructure decisions. - Support security aspects of our performance tasks and assessments, including translating real-world attack methods into learnings for the team. - Help raise security awareness across the company by sharing best practices with engineers and partner teams. - Collaborate across time zones and functions to plan, prioritize, and communicate security work and trade‑offs.

Role Description We are currently seeking a full-time professional who will be responsible for protecting organizational assets through the design, implementation, and maintenance of advanced security infrastructure. The Systems Security Administrator leads security incident response, vulnerability management, and compliance efforts across the organization. This role enforces enterprise security policies, manages identity and access controls, and oversees security awareness programs. The Systems Security Administrator serves as the primary security escalation point for Tier 2 (System Administrator) and collaborates closely with the Tier 4 (Systems Engineer) on security architecture and major infrastructure initiatives. Essential Functions & Responsibilities - Design, implement, and maintain advanced security infrastructure, including firewalls, IDS/IPS, and SIEM platforms, to protect organizational systems and data. - Lead security incident response and forensic investigations, serving as the primary escalation point for security-related issues from Tier 2. - Conduct comprehensive security assessments, penetration testing, and vulnerability management programs across the organization's environment. - Develop, enforce, and maintain enterprise security policies, standards, and procedures in alignment with organizational risk tolerance and regulatory requirements. - Perform security audits and ensure compliance with applicable regulations and frameworks, including NIST, ISO 27001, HIPAA, and PCI-DSS. - Manage privileged access management (PAM) and enforce the principle of least privilege across systems and applications. - Design and implement advanced multi-factor authentication (MFA) and identity management solutions across the organization. - Oversee mobile device management (MDM) and data loss prevention (DLP) solutions to protect sensitive organizational data. - Lead security awareness training programs and phishing simulations to strengthen the organization's human security layer. - Manage security logging, SIEM tools, and threat intelligence platforms; coordinate with the SOC team on escalated alerts and investigations. - Coordinate with vendors on advanced security products, services, and renewals. - Assist with disaster recovery and business continuity planning from a security perspective, ensuring organizational resilience. - Develop security automation and orchestration solutions to improve response times and reduce manual security operations overhead. - Stay current with emerging security threats, vulnerabilities, and industry best practices, incorporating findings into organizational security strategy. - Collaborate with the Tier 4 (Systems Engineer) on security architecture decisions and infrastructure projects requiring security integration. - Participate in the full user and device lifecycle, including onboarding, account provisioning, device enrollment, and offboarding. Qualifications - Proven experience in an information security or systems security administration role. - Strong knowledge of information security principles, frameworks, and best practices. - Experience with security tools and technologies, including firewalls, SIEM platforms, and vulnerability scanners. - In-depth understanding of compliance frameworks including NIST, ISO 27001, HIPAA, and PCI-DSS. - Demonstrated incident response and digital forensics capabilities. - Knowledge of network security, encryption technologies, and identity management solutions. - Relevant security certifications (Security+, CISSP, CEH) are preferred. - Relevant degree in Information Technology, Cybersecurity, or a related field is advantageous. Technology Stack Requirements - Windows 10/11 - Mac OS - Firewall Administration (e.g., Fortinet, Palo Alto, or equivalent) - SIEM Platform (e.g., Splunk, Microsoft Sentinel, or equivalent) - Vulnerability Management Tools (e.g., Nessus, Qualys, or equivalent) - ESET A/V: Antivirus and endpoint security platform. - KnowBe4: Security awareness training and phishing simulation platform. - Barracuda: Security and data protection solutions. - Microsoft 365 / Azure AD: Identity management, MFA, conditional access, and compliance tools. - MS Intune / MDM: Device management and data loss prevention – preferred. - Kaseya (VSA, BMS): Remote monitoring and management tools – preferred. - ZScaler: Security as a service for secure application access – preferred. - PAM Solution (e.g., CyberArk, BeyondTrust, or equivalent) – preferred. - Proficient with PowerShell and security automation scripting. Responsibilities and Work Environment - Primary responsibility: Designing, implementing, and maintaining the organization's security infrastructure, policies, and compliance posture. - Escalation handling: Serving as the Tier 3 security escalation point for Tier 2 Systems Administrators, and coordinating with the Tier 4 (Systems Engineer) on major security and infrastructure initiatives. - Possible project involvement: Leading security-focused projects and contributing to broader infrastructure initiatives in collaboration with Tier 4. - Other tasks as assigned. - Remote position: Requires a dedicated workspace with privacy and a reliable, quiet environment. - Reliable high-speed internet: Required for remote security monitoring, administration, and incident response. - Soft skills: High attention to detail, strong analytical and investigative mindset, ability to communicate complex security concepts to non-technical stakeholders, and composure under pressure during security incidents. Benefits - Health and Prescription coverage - Dental - Vision - Long-Term Disability - Short-Term Disability - AD&D - Flexible Spending Account - Healthcare Savings Account - 401k Retirement Savings - Discount Program - Employee Assistance Program - Financial Wellness Program - Paid Time Off - Identity Theft Protection - Legal Insurance - Hospital Indemnity - Critical Illness - Accident Coverage Company Description PaceMate® is a pioneering force in cardiac remote monitoring and data management. We’re driven by a mission to modernize digital healthcare and envision a future of connected, personalized cardiac care. Since 2015, PaceMate has been simplifying and streamlining device clinic operations with one easy-to-use platform—PaceMateLIVE®. As the industry’s only comprehensive cardiac remote monitoring solution, PaceMateLIVE® uniquely pairs device and EHR data and prioritizes patient care intelligently.

CORRELATION ONE Correlation One is the largest provider of AI and data workforce development programs globally, having trained over 500,000 professionals across 11 countries. As the largest training provider for Amazon Career Choice, and a growing partner to state governments building registered apprenticeship programs, Correlation One sits at the intersection of employer talent needs and scalable workforce training. We work with Fortune 500 enterprises, federal and state government agencies, and leading employers to close skills gaps in AI, data analytics, cybersecurity, and operations leadership. Our programs produce job-ready graduates who are prepared to contribute from day one. Your impact - Lead Instructors play a key role in driving elements of Correlation One’s multiple training programs. They will train learners in Correlation One’s programs and work with company operations personnel to drive exceptional learning outcomes. Their main focus as educators will be in larger format lectures, training anywhere from 20 to 2,000 learners, live, depending on the program. This is a part-time, contract position. We are proactively hiring instructors in advance of a program that is set to launch in Q3 2026, with exact dates/times TBD. A day in the life - Prior to the program launch, instructors complete the required administrative instructor training. Classes are virtual – taught over Zoom and other virtual learning technologies like Slack. - Lead the instruction of a “virtual classroom” within a larger program; these typically consist of hundreds of learners; instruction purview includes: - Instruct learners using Cybersecurity content provided by Correlation One - Prepare in advance for all assigned live sessions and provide curricular input and feedback ahead of sessions. - Offer additional expertise and resources from the Cybersecurity community. - In some cases, instructors can create casework and curriculum when they are interested and for additional compensation. Your expertise - 8+ years of experience in the Cybersecurity field with a degree or strong credentials - Previous teaching experience, preferably in a remote environment, or hands-on experience training junior to mid-level cybersecurity talent in group settings - An excellent educator with a passion for teaching and helping others - Degree in a technical field and/or industry experience in a technical role; post-graduate and research work at top institutions are also strong pluses - Experience working with the Unix terminal, especially with cybersecurity-related applications - Outstanding team and people management skills - Familiarity with the following topics: Networking, Kali Linux, Endpoint security, CompTIA Security+ Certification training, Triage - Industry-recognized cybersecurity certifications (such as CompTIA Security+, CySA+, CEH, CISSP, or equivalent) are strongly preferred - English and Arabic fluency Where you are - This role is remote. Correlation One’s Commitment Correlation One is proud to be an Equal Opportunity Employer and is committed to providing equal opportunity for all employees and applicants. Correlation One provides a work environment free of discrimination and harassment. Employment decisions at Correlation One are based solely on business needs, job requirements and individual qualifications, without regard to race, color, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, or any other status protected by the laws or regulations in the locations where we operate. We encourage applicants to bring their unique skills, experiences, and outlook to our work environment. Correlation One is committed to the full inclusion of all qualified individuals. In keeping with our commitment, Correlation One strives to provide reasonable accommodations for persons with disabilities to enable them to access the hiring process. If you need an accommodation to access the job application or interview process, please contact candidates@correlation-one.com. #LI-DNI #noad

Cribl does differently. What does that mean? It means we are a serious company that doesn’t take itself too seriously; and we’re looking for people who love to get stuff done, and laugh a bit along the way. We’re growing rapidly - looking for collaborative, curious, and motivated team members who are passionate about putting customers first. As a remote-first company we believe in empowering our employees to do their best work, wherever they are. As the data engine for IT and Security many of the biggest names in the most demanding industries trust Cribl to solve their most pressing data needs. Ready to do the best work of your career? Join the herd and unlock your opportunity. Why You’ll Love This Role The Security Operations Engineer will be a pivotal member of Cribl’s Information Security team, primarily responsible for strengthening our security posture through robust security operations and advanced threat detection. You will lead security incident management, triage, and investigations, and be instrumental in developing innovative solutions to remediate current threats and proactively prevent future attacks. A key aspect of this role will be designing, implementing, and optimizing detection logic to identify sophisticated threats across our environment. You will partner closely with Product Security, IT, and Legal teams, and report to the Sr. Director, Security Engineering and Operations under the CISO. As An Active Member Of Our Team, You Will… - Provide knowledge and experience in working with modern security principles e.g. security data lakes, detections as code, EDR, zero trust networking, and other security tooling, as well as demonstrated experience with incident response and management. - Utilize a strong understanding of common attack frameworks (e.g., MITRE ATT&CK) and how to map detections to TTPs - Understanding of authentication and authorization schemes such as SAML, OpenID, OAuth2, and SCIM - Experience scripting/coding in at least one of the following languages: Python, NodeJS, Ruby, Bash - Be the go-to technical subject matter expert on security, compliance, and assurance topics - Communicate ideas to technical and non-technical audiences - Comfortable with ambiguity, have a strong analytical acumen, self-motivated, able to work cross-functionally - We are a remote-first company and work happens across many time-zones – you may be required to occasionally perform duties outside your standard working hours If You’ve Got It - We Want It - Monitoring security events and alerting via our security tooling, including MSSP, SIEM, AI, and CSPM tooling, to identify and triage potential threats - Developing, implementing, and maintaining high-fidelity detection rules and alerts within SIEM and other security platforms (e.g., EDR, Cloud Security tools) based on threat intelligence, MITRE ATT&CK framework, and identified risks - Conducting continuous tuning and optimization of existing detection logic to reduce false positives and improve detection efficacy - Responding to issues identified by our Cribl employees - Acting as a security incident response lead, including leveraging and improving detection capabilities during investigations - Building, enhancing, and managing security playbooks, incorporating detection engineering best practices - Conducting security assessments of corporate assets through vulnerability testing, threat hunts, and purple team activities, with a focus on identifying detection gaps and opportunities - Performing both internal and external security reviews of corporate properties e.g., the corporate website and enterprise applications - Leading security incident response tabletop exercises - Continuing to evolve and champion the use of Cribl products in our security tech stack to enhance detection, analysis, and response capabilities - Collaborating with threat intelligence teams to integrate new indicators of compromise (IOCs) and tactics, techniques, and procedures (TTPs) into detection strategies - Experience with SIEM platforms like Panther is a plus and its detection capabilities - Familiarity with Wiz and cloud native security tooling for detection in AWS, Azure, or GCP - Relevant certifications in cloud security or incident response (e.g., SANS GIAC certifications) - Proven experience in developing, deploying, and maintaining detection rules (e.g., Sigma, YARA, Splunk SPL, KQL) across various security platforms Salary Range ($128,000 - $200,000) The salary for this role is dependent on geographic location. The salary offered within the range described will be based on the individual candidate’s job-related knowledge, skills, and experience. In addition to a competitive salary, Cribl also offers a generous benefits package which includes health, dental, vision, short-term disability, and life insurance, paid holidays and paid time off, a fertility treatment benefit, 401(k), equity, and eligibility for a discretionary company-wide bonus. #LI-KJ1 #LI-Remote Bring Your Whole Self Diversity drives innovation, enables better decisions to support our customers, and inspires change for the better. We’re building a culture where differences are valued and welcomed, and we work together to bring out the best in each other. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or any other applicable legally protected characteristics in the location in which the candidate is applying. Interested in joining the Cribl herd? Learn more about the smartest, funniest, most passionate goats you’ll ever meet at cribl.io/about-us.