• Develop and maintain Information Security governance, policies, standards, guidelines and procedures • Identify and present risk management issues to the CTO and IT Leadership team • Consult with IT, security staff and stakeholders for hardware, applications and software • Lead cross-functional security teams to implement and maintain a global security program • Monitor compliance with information security policies and procedures

Senior VMware Network & Security Engineer (vDefend / NSX) Overview We need Senior Network & Security Engineers with deep VMware NSX and vDefend expertise to support zero-trust private cloud security implementations within VCF environments. You will be embedded in enterprise client engagements delivering micro-segmentation, firewall policy, and lateral security architecture. Responsibilities - Design and implement vDefend Distributed Firewall, IDS/IPS policies within VCF environments - Build and manage micro-segmentation and zero-trust security frameworks - Integrate vDefend with VKS/Kubernetes workloads using Antrea - Support east-west traffic policy, firewall rule analysis, and security posture reporting - Collaborate with VCF infrastructure engineers on unified platform delivery Required Skills - 10+ years data center experience with strong network/security focus - vDefend (NSX Distributed Firewall, IDS/IPS) - NSX-T micro-segmentation and zero-trust architecture - VMware Cloud Foundation (VCF 5.x / 9.0) - VMware certifications required Bonus - vDefend or NSX Advanced certification - Ansible or Python for security automation - Experience securing Kubernetes/VKS workloads - Former VMware or Broadcom employee Work Details - 100% remote | Central or Eastern time zone preferred - ~40 hrs/week across 1–2 end clients | Through EOY, extendable - US Citizen required | 10-year background check - Must not be active on another Broadcom credit engagement - No CA or NY residents unless LLC registered in another state Requirements Required Skills - 10+ years data center experience with strong network/security focus - vDefend (NSX Distributed Firewall, IDS/IPS) - NSX-T micro-segmentation and zero-trust architecture - VMware Cloud Foundation (VCF 5.x / 9.0) - VMware certifications required

Role Description As our first dedicated Senior Security Engineer, you will join a remote, global health‑tech team that works at the intersection of genomics, AI, and consumer health. You will report to the Head of Engineering, partner closely with DevOps, bioinformatics, and developers, and help protect highly sensitive health and genomic data as we grow. You will build security practices and your work will directly shape how the company operates and earns customer and partner trust. Success in this role means being proactive, collaborative, clear in your communication, and comfortable executing in a fast-moving, startup environment while partnering across functions and time zones. Qualifications - 8+ years in security engineering, DevSecOps, or infrastructure security roles. - Strong hands-on penetration testing and vulnerability discovery skills, using both manual methods and tools. - OSCP, OSCE, or equivalent certifications are a plus; we value candidates with real-world offensive experience, not just institutional credentials. - Deep experience securing AWS and OCI cloud and Kubernetes (RBAC, IAM, network policies, containers, secrets), as well as bare metal and on-premises server environments. - Experience adding and tuning security tools in CI/CD (such as Semgrep, CodeQL, OWASP ZAP, Burp Suite). - Comfortable with tools like Burp Suite, Metasploit or similar, OWASP ZAP, Semgrep or CodeQL, CloudTrail, Falco, Terraform, Docker, Git/GitHub, Cloudflare, and Google Workspace. - Experience with SIEM or log aggregation and real‑time detection and monitoring. - Familiarity with HIPAA, SOC 2, and how to protect PHI/PII in regulated or high‑sensitivity environments. - Clear written and verbal communication, especially for explaining security issues and recommendations to technical teams. - Ability to influence and collaborate with engineering, DevOps, and data teams without formal authority. - Comfortable working independently in a remote, fast-moving startup with limited existing security processes. - Experience with eCommerce and checkout security, including securing payment flows, cart and order APIs, and protecting against fraud, skimming attacks, and checkout abuse. - Experience with vulnerability research, responsible disclosure, or red team operations is a strong plus. Requirements - Lead security testing for our web apps, APIs, cloud (AWS/OCI), Kubernetes, and on‑prem servers, and clearly document vulnerabilities you find. - Build security into our CI/CD pipelines with DevOps, including code and app scanning and stronger secrets management. - Work with bioinformatics to secure genomic data pipelines and protect PHI/PII in line with HIPAA requirements. - Set up and run security monitoring, alerting, and incident response, with practical playbooks and runbooks the team can follow. - Lead the technical work needed for HIPAA, SOC 2, and ISO 27001 readiness and future audits. - Help design and improve logging and SIEM use so the team can spot and respond to threats faster. - Translate security findings into clear, prioritized tasks that engineering and DevOps teams can execute. - Partner with engineers, DevOps, and bioinformatics so security is built into how we design, build, and ship systems. - Contribute to threat modeling and secure design discussions for new and existing services. - Maintain clear, concise security documentation, including standards, guidelines, and incident procedures. - Support vendor and third-party security assessments by reviewing findings and driving remediation with the team. - Provide input into security aspects of our architecture and infrastructure decisions. - Support security aspects of our performance tasks and assessments, including translating real-world attack methods into learnings for the team. - Help raise security awareness across the company by sharing best practices with engineers and partner teams. - Collaborate across time zones and functions to plan, prioritize, and communicate security work and trade‑offs.

Role Description We are currently seeking a full-time professional who will be responsible for protecting organizational assets through the design, implementation, and maintenance of advanced security infrastructure. The Systems Security Administrator leads security incident response, vulnerability management, and compliance efforts across the organization. This role enforces enterprise security policies, manages identity and access controls, and oversees security awareness programs. The Systems Security Administrator serves as the primary security escalation point for Tier 2 (System Administrator) and collaborates closely with the Tier 4 (Systems Engineer) on security architecture and major infrastructure initiatives. Essential Functions & Responsibilities - Design, implement, and maintain advanced security infrastructure, including firewalls, IDS/IPS, and SIEM platforms, to protect organizational systems and data. - Lead security incident response and forensic investigations, serving as the primary escalation point for security-related issues from Tier 2. - Conduct comprehensive security assessments, penetration testing, and vulnerability management programs across the organization's environment. - Develop, enforce, and maintain enterprise security policies, standards, and procedures in alignment with organizational risk tolerance and regulatory requirements. - Perform security audits and ensure compliance with applicable regulations and frameworks, including NIST, ISO 27001, HIPAA, and PCI-DSS. - Manage privileged access management (PAM) and enforce the principle of least privilege across systems and applications. - Design and implement advanced multi-factor authentication (MFA) and identity management solutions across the organization. - Oversee mobile device management (MDM) and data loss prevention (DLP) solutions to protect sensitive organizational data. - Lead security awareness training programs and phishing simulations to strengthen the organization's human security layer. - Manage security logging, SIEM tools, and threat intelligence platforms; coordinate with the SOC team on escalated alerts and investigations. - Coordinate with vendors on advanced security products, services, and renewals. - Assist with disaster recovery and business continuity planning from a security perspective, ensuring organizational resilience. - Develop security automation and orchestration solutions to improve response times and reduce manual security operations overhead. - Stay current with emerging security threats, vulnerabilities, and industry best practices, incorporating findings into organizational security strategy. - Collaborate with the Tier 4 (Systems Engineer) on security architecture decisions and infrastructure projects requiring security integration. - Participate in the full user and device lifecycle, including onboarding, account provisioning, device enrollment, and offboarding. Qualifications - Proven experience in an information security or systems security administration role. - Strong knowledge of information security principles, frameworks, and best practices. - Experience with security tools and technologies, including firewalls, SIEM platforms, and vulnerability scanners. - In-depth understanding of compliance frameworks including NIST, ISO 27001, HIPAA, and PCI-DSS. - Demonstrated incident response and digital forensics capabilities. - Knowledge of network security, encryption technologies, and identity management solutions. - Relevant security certifications (Security+, CISSP, CEH) are preferred. - Relevant degree in Information Technology, Cybersecurity, or a related field is advantageous. Technology Stack Requirements - Windows 10/11 - Mac OS - Firewall Administration (e.g., Fortinet, Palo Alto, or equivalent) - SIEM Platform (e.g., Splunk, Microsoft Sentinel, or equivalent) - Vulnerability Management Tools (e.g., Nessus, Qualys, or equivalent) - ESET A/V: Antivirus and endpoint security platform. - KnowBe4: Security awareness training and phishing simulation platform. - Barracuda: Security and data protection solutions. - Microsoft 365 / Azure AD: Identity management, MFA, conditional access, and compliance tools. - MS Intune / MDM: Device management and data loss prevention – preferred. - Kaseya (VSA, BMS): Remote monitoring and management tools – preferred. - ZScaler: Security as a service for secure application access – preferred. - PAM Solution (e.g., CyberArk, BeyondTrust, or equivalent) – preferred. - Proficient with PowerShell and security automation scripting. Responsibilities and Work Environment - Primary responsibility: Designing, implementing, and maintaining the organization's security infrastructure, policies, and compliance posture. - Escalation handling: Serving as the Tier 3 security escalation point for Tier 2 Systems Administrators, and coordinating with the Tier 4 (Systems Engineer) on major security and infrastructure initiatives. - Possible project involvement: Leading security-focused projects and contributing to broader infrastructure initiatives in collaboration with Tier 4. - Other tasks as assigned. - Remote position: Requires a dedicated workspace with privacy and a reliable, quiet environment. - Reliable high-speed internet: Required for remote security monitoring, administration, and incident response. - Soft skills: High attention to detail, strong analytical and investigative mindset, ability to communicate complex security concepts to non-technical stakeholders, and composure under pressure during security incidents. Benefits - Health and Prescription coverage - Dental - Vision - Long-Term Disability - Short-Term Disability - AD&D - Flexible Spending Account - Healthcare Savings Account - 401k Retirement Savings - Discount Program - Employee Assistance Program - Financial Wellness Program - Paid Time Off - Identity Theft Protection - Legal Insurance - Hospital Indemnity - Critical Illness - Accident Coverage Company Description PaceMate® is a pioneering force in cardiac remote monitoring and data management. We’re driven by a mission to modernize digital healthcare and envision a future of connected, personalized cardiac care. Since 2015, PaceMate has been simplifying and streamlining device clinic operations with one easy-to-use platform—PaceMateLIVE®. As the industry’s only comprehensive cardiac remote monitoring solution, PaceMateLIVE® uniquely pairs device and EHR data and prioritizes patient care intelligently.