GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation’s top organizations, such as Fortune 500 companies and U.S. government agencies, to identify threats, optimize resources and integrate best-fit solutions that mitigate risk. GuidePoint Security is growing and expanding and looking for a Senior Security Engineer to support our customers by providing architectural guidance and assist with product recommendations. The Senior Security Engineer will be instrumental in deploying and operationalizing solutions for the various customers throughout the region. This position will require the engineer to spend most of their time focused on designing, architecting and recommending the best technologies to solve our customer’s cybersecurity problems. Note: We are looking for an SE currently located in Portland (OR), Boise (ID), or Seattle (WA) to support clients in our Northwest region. Role and responsibilities: - Serve as our Clients’ primary technical point of contact throughout a project life cycle - Hands-on experience designing, implementing, and operationalizing security controls across a wide range of IT and enterprise business systems - Understand and articulate complex technical information to both technical and non-technical audiences - Ability to autonomously prioritize and successfully deliver across a portfolio of projects in a fast-paced environment - Author comprehensive business and technical collateral to support the business that is proficiently tailored to both technical and managerial audiences - Capable of managing sales activities with multiple Account Managers across Washington, Oregon, Montana, Wyoming, Alaska and Idaho. Experience Required: - Security engineering experience in the Information Security industry OR as a technical lead for an internal Information Security program - Experience with architecting and recommending Security Technologies such as but not limited to Network, Data Security, SIEM, Endpoint, etc. - Experience with architecting, Development Security Operation programs, Software Life Cycle Management (SDLC) and strong knowledge of products and capabilities within the Application Security market - Proficiency in multiple security technologies, including but not limited to: Next-Gen Firewalls, DLP, SASE, NAC, PAM, EDR, NDR, SIEM, APPSEC, CWPP, CSPM, etc. - Proficiency with networking security concepts such as routing, segmentation, zones, NAT, etc. - Deep proficiency in client and server operating systems including Windows, Mac, and Linux - General networking and security troubleshooting (firewalls, routing, NAT, etc.) - Scripting and development skills (BASH, Perl, Python, PowerShell or Java) with strong knowledge of regular expressions - Experience with AWS, Azure, or GCP products and security best practices - Working technical knowledge of advanced security concepts (Defense in Depth, Zero Trust etc.) - Experience in a consultative or professional services role - Industry Certifications from ISC2, SANS GIAC, vendor certifications, etc. preferred We use Greenhouse Software as our applicant tracking system and Zoom Scheduler for HR screen request scheduling. At times, your email may block our communication with you. Please be sure to check your SPAM folder so that you don't miss updates on your application. Why GuidePoint? GuidePoint Security is a rapidly growing, profitable, privately-held value added reseller that focuses exclusively on Information Security. Since its inception in 2011, GuidePoint has grown to over 1,200 employees, established strategic partnerships with leading security vendors, and serves as a trusted advisor to more than 6,200 customers. Firmly-defined core values drive all aspects of the business, which have been paramount to the company’s success and establishment of an enjoyable workplace atmosphere. At GuidePoint, your colleagues are knowledgeable, skilled, and experienced and will seek to collaborate and provide mentorship and guidance at every opportunity. This is a unique and rare opportunity to grow your career along with one of the fastest growing companies in the nation. Some added perks…. - Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions) - Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family). If you choose the High Deductible / HSA plan, GPS will contribute in 4 equal quarterly installments: ($850 per EE annually / $1750 per family annually (includes spouse/children/family options) - Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans - 12 corporate holidays and a Flexible Time Off (FTO) program - Healthy mobile phone and home internet allowance - Eligibility for retirement plan after 2 months at open enrollment - Pet Benefit Option

Circle (NYSE: CRCL) is one of the world's leading internet financial platform companies, building the foundation of a more open, global economy through digital assets, payment applications, and programmable blockchain infrastructure. Circle's platform includes the world's largest regulated stablecoin network anchored by USDC, Circle Payments Network for global money movement, and Arc, an enterprise-grade blockchain designed to become the Economic OS for the internet. Enterprises, financial institutions, and developers use Circle to power trusted, internet-scale financial innovation. Learn more at circle.com . What you'll be part of: Circle is committed to visibility and stability in everything we do. As we grow as an organization, we're expanding into some of the world's strongest jurisdictions. Speed and efficiency are motivators for our success and our employees live by our company values : High Integrity, Future Forward, Multistakeholder, Mindful, and Driven by Excellence. We have built a flexible work environment where new ideas are encouraged and everyone is a stakeholder. What you'll be responsible for: The Circle Security Team works to protect Circle; our customers, clients, and partners; and the financial markets upon which we rely. As a member of this team, you'll lead projects and be responsible for key deliverables of the security program while collaborating across Circle teams. You will continue to learn and stay current in a fun and rapidly changing environment. Also note that this position will require you to perform on-call duties mainly during working hours to support security operations, and you will assist the team with the occasional night time and weekend incident. We would also like someone with a strong response background and some exposure to insider risk. What you'll work on: - Proactively identify and respond to emerging security threats. - Advance deployment of AI to SOC function. - Develop plans to manage and maintain core tooling, such as SIEM and Orchestration platforms. - Identify gaps in our infrastructure, and work with business partners to gain visibility through logging and detection. - Respond to incidents and collaborate across teams to investigate and resolve. - Develop detection techniques to identify anomalous behaviors and attacks across the environment. - Provide security guidance to various organizations throughout the company. - Support broader security team projects such as threat modeling, vulnerability scanning, audits, and custom tool building. - Take on-call shifts (every 3rd week and occasional weekend). What you'll bring to Circle: - Strong ability to work collaboratively across teams during high-stress situations, which sometimes involves after hours work. - Ability to manage multiple competing priorities and use good judgment to establish order of priorities on the fly. - Self-motivated and creative problem-solver able to work independently with minimal guidance. - Experience/familiarity with Slack, Apple MacOS and GSuite. We're looking for strong, impactful work experience, which typically includes: - 10+ years of experience in detection, response, or security engineering. - 3+ years of experience commanding security incidents, especially those involving engineering. - Experience working in an AWS + EKS environment required and some exposure to GCP or OCI preferred. - Hands-on experience using AI tooling both to accelerate work and to address threats, coupled with a strong understanding of the organizational risks AI introduces and strategies to defend against them. - Extensive knowledge of SIEM, Case Management, and SOAR solutions. - Knowledge of operating systems, file systems, and memory on MacOS. - Programming experience in Python, Golang, or similar programming languages. - Experience with building Detections As Code. - Professional or hobbyist blockchain exposure is preferred. You are the right person if you: - View Security Detection & Response as a data and engineering problem. - Exude positivity. - Aren't afraid to share your ideas. - Meet problems head-on and view them as opportunities. - Are self-reliant and motivated. - Communicate fearlessly. Circle is on a mission to create an inclusive financial future, with transparency at our core. We consider a wide variety of elements when crafting our compensation ranges and total compensation packages. Starting pay is determined by various factors, including but not limited to: relevant experience, skill set, qualifications, and other business and organizational needs. Please note that compensation ranges may differ for candidates in other locations. We are an equal opportunity employer. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status, or any other protected status required by the laws in the locations where we hire. Additionally, Circle participates in the E-Verify Program in certain locations, as required by law. Should you require accommodations or assistance in our interview process because of a disability, please reach out to accommodations@circle.com for support. We respect your privacy and will connect with you separately from our interview process to accommodate your needs. #LI-Remote

• Serve as the primary subject matter expert for all AI and machine learning security initiatives across security and R&D. • Design and manage AI gateways to provide a centralized control plane for authentication and authorization and rate limiting across all model and tool interactions. • Build and maintain an autonomous security agentic framework that utilizes multi agent orchestration for end to end investigation and alert triage and remediation. • Develop agentic identity models using OAuth 2.1 to propagate identity across trust boundaries and prevent the confused deputy problem. • Help govern the AI augmented software development lifecycle by integrating real time security gates into the developer environment and CI/CD pipeline. • Manage Agentic Security Solutions that secure AI lifecycle and manage AI workloads at runtime. • Author company wide AI security standards and implement these security checks across Twilio’s stack • Implement human in the loop checkpoints and transactional safety protocols for high impact or destructive agentic actions. • Partner with engineering leadership to set the long term roadmap for identity centric security and automated posture management. • Act as a knowledge multiplier by mentoring security engineers and developing secure by default paved road templates for R&D teams

Job Description: Job Summary The Senior Staff AI Security Architect defines and advances the enterprise security architecture for AI, generative AI, and agentic AI. Partnering with Security, Architecture, Data, Product, Legal, Risk, and Compliance teams, this role enables secure and responsible adoption of AI technologies. Setting security-by-design standards, governing AI risk across the model lifecycle, and serving as the enterprise authority for AI threat modeling and control design, this architect shapes how the organization approaches AI security at scale. Key Responsibilities - AI Security Architecture & Strategy: Own enterprise AI security architecture across Generative AI platforms, AI agents, ML pipelines, and the full model lifecycle (data ingestion, training/fine-tuning, deployment, monitoring), including internal and third-party foundation models. Establish security reference architectures, patterns, and guardrails for prioritized AI use cases. Maintain the AI security roadmap and lead architecture/security design reviews; document decisions, exceptions, and compensating controls. - AI Threat Modeling & Risk Management: Lead AI threat modeling and abuse-case analysis (e.g., prompt injection, data poisoning, model extraction, hallucination abuse, agent misuse). Define and validate controls for AI risks (misuse/abuse, data leakage/privacy, unauthorized agent actions, supply chain/provenance). Operationalize AI security testing (red-teaming/adversarial testing). Partner with IR/SOC on AI-specific detection and response playbooks. Embed AI risk into Enterprise Risk Management (ERM) processes. - Secure AI Platform Enablement: Architect secure AI platform implementations (agent frameworks, orchestration layers, vector databases/embeddings, model APIs/inference gateways). Define identity, access, and authorization for humans and AI agents; ensure integration with IAM, secrets management, logging/monitoring, and SOC workflows. Establish secure RAG patterns (classification, grounding, filtering, tenant isolation, least-privilege retrieval) and agent guardrails (tool allowlists, scoped credentials, approvals, rate limits, sandboxing). - Governance, Standards & Compliance: Establish AI security policies, standards, and control requirements aligned to relevant frameworks and regulations (e.g., NIST AI RMF, ISO/IEC 27001/23894, SOC 2, SOX, GLBA, GDPR). Support security/architecture reviews and control validations for AI initiatives. Perform third-party/vendor risk assessments for AI services and models (data retention, model provenance, SLAs, security attestations). - Secure Development Lifecycle (AI-SDLC): Embed security into the AI/ML lifecycle (secure data sourcing/labeling, training/tuning, evaluation/red-teaming/validation, post-production monitoring/drift detection). Define requirements for transparency, explainability, and human-in-the-loop controls. Set MLOps/LLMOps security requirements (registry governance, signed artifacts, provenance, environment promotion/rollback). Automate controls via CI/CD and policy-as-code. - Leadership & Influence: Advise executive leaders on AI security strategy and risk posture. Influence decisions across product, platform, and business teams. Mentor architects, engineers, and security teams on AI security best practices. Represent the organization in vendor engagements, assessments, and relevant industry forums. Minimum Qualifications - 10+ years in security architecture (cloud, platform, or application security), including 5+ years designing enterprise architectures in regulated environments - Expertise in cloud and Zero Trust security, including IAM, API security, and service-to-service authentication - Working knowledge of AI/ML systems (LLMs, agents, orchestration layers, ML pipelines) and common Generative AI architectures (e.g., RAG, vector databases) - Proven ability to lead security architecture across complex, cross-functional initiatives and influence senior stakeholders - DevSecOps/MLOps security experience, including CI/CD control integration, container/Kubernetes security, and security telemetry/SIEM integration - Strong fundamentals in cryptography, key management (KMS/HSM), and secrets management - Application security background (secure coding, threat modeling, OWASP Top 10) and ability to guide engineering teams on remediation - Familiarity with AI risk frameworks (e.g., NIST AI RMF, OWASP Top 10 for LLMs) and privacy/data governance considerations for AI - Experience in highly regulated industries (financial services, insurance, healthcare, or similar) Preferred Qualifications - Bachelor’s or master’s degree in computer science, Engineering, or related field. - Advanced security architecture certifications (e.g., CISSP-ISSAP, GIAC) - LLM/Generative AI security experience (e.g., OWASP Top 10 for LLM Apps, MITRE ATLAS) and hands-on guardrail implementation - LLMOps security tooling and practices (model registry governance, artifact signing/provenance, evaluation pipelines, drift monitoring) - Infrastructure/policy-as-code and automated security gates in CI/CD - Generative AI data protection (DLP, sensitive-data detection, masking/tokenization, content governance) - Led AI security assessments and red-/purple-team exercises for production AI systems - AI governance/risk program experience (model inventory, risk tiering, control mapping, exception management, audit evidence) Competencies - Customer Service: Consistently provides responsive, high-quality service to internal customers - Attention to Detail: Ensures thorough, accurate work by monitoring and checking information; plans time and resources effectively - Analytical Skills: Collects and analyzes data; designs workflows and procedures; identifies relationships and dependencies - Communications: Demonstrates strong listening and comprehension; communicates clearly in writing and verbally; keeps stakeholders appropriately informed - Problem Solving: Identifies issues quickly; evaluates options and drives practical resolutions - Relationship Management: Builds credibility and productive partnerships through professional, service-oriented interactions - Teamwork: Collaborates effectively; supports team goals; remains objective and open to others' views Supervisory Responsibilities: No Base Salary Range - $175,000-$200,000 For over 175 years, Penn Mutual has empowered individuals, families and businesses on the journey to achieve their financial goals. Through our partnership with Financial Professionals across the U.S., we help instill the confidence and reliability that comes from a stronger financial future. Penn Mutual and its affiliates offer a comprehensive suite of competitive products and services to meet the unique needs of Financial Professionals and their clients, including life insurance, annuities, wealth management and institutional asset management. To learn more, including current financial strength ratings, visit www.pennmutual.com. Penn Mutual is committed to Equal Employment Opportunity (EEO). We provide employment and advancement opportunities to all qualified applicants and associates, according to applicable laws. This is reflected in our practices for hiring, placement, promotion, transfer, demotion, layoff, termination, recruitment, compensation, selection or training, and all other terms and conditions of employment. All employment-related decisions and practices are free from unlawful discrimination. This includes: race, creed, color, national origin, ancestry, citizenship age, gender (including pregnancy), sexual orientation, gender identity or expression, domestic partnership or civil union status, marital status, genetic information, disability, religious observance or practice, liability, veteran status or any other classification protected under applicable law.