TITLE: INFORMATION SECURITY ENGINEER STATUS: EXEMPT REPORTS TO: MANAGER – INFORMATION SECURITY DEPARTMENT: IT – INFORMATION SECURITY CODE: 11264 GRADE: 21S PAY GRADE: $112,200.00 - $118,000.00 ANNUALLY GENERAL DESCRIPTION: The Information Security Engineer is responsible for securing our sensitive data and critical assets from current and emerging threats for Golden 1. This position utilizes business knowledge and technical experience of cybersecurity to provide a secure environment for Golden 1’s technology and information needs. The Information Security Engineer works closely with technology, application teams and business units to develop and test security structures designed to protect the computer and network infrastructure. This position is responsible for performing technical assessments of risks, threats and vulnerabilities related to new and existing information systems and supporting process within Golden 1 and external vendor connections. TASKS, DUTIES, FUNCTIONS: - Analyze, assess, and respond to various internal and external threats identified by intrusion detection system (IDS)/intrusion prevention systems (IPS), web application firewall, vulnerability scan results and other data sources. Provide recommendations to IT management and monitor to ensure that recommendations are effectively implemented. - Perform vulnerability assessments and penetration testing to identify exposures and risks, and report findings to management. Communicate and collaborate with partner teams, service owners, Information Security, and senior leadership to influence, prioritize, and drive the resolution of discovered security findings. - Provide consultative security guidance on a constant stream of new products and technologies as a subject matter expert on Golden 1 projects and initiatives - Advise and participate in the development of business systems designs, ensuring hardening standards and configurations meet information security policy and procedures. - Work in conjunction with IT to ensure appropriate procedures and processes are in place and effective in the detection and prevention of system intrusions as well as in establishing and managing a functional anti- virus/malware/DLP policy. - Determine ways to monitor, measure, test and report on the effectiveness and efficiency of information security controls as well as compliance with information security policies and procedure. - Implementation, administration, and maintenance of IDS/IPS, URL filter, email gateway, certificate issuance and control, network management, identity access control, and other information security infrastructure and controls as necessary. - Regularly review IDS/IPS/SIEM rules, wireless rogue access point detection configuration and procedures and practices to ensure optimal effectiveness of security in the business environment. - Participate in creating access privileges, control structures and resources to ensure optimal efficiency and adherence to information security standards. - Engage with internal - and external auditors during examinations, providing support and assistance in addressing audit recommendations. - Participate in the security development of network systems architecture, design, and ongoing review of system configuration in collaboration with relevant team members and external partners. - Keep management updated on outstanding issues that are not resolved in a timely manner in accordance with established escalation procedures. - Develop and maintain a clear understanding of the business area needs and incorporating these needs into technical solutions by updating, developing, and maintaining a thorough knowledge of credit union procedures, products, service, and data processing systems. - Monitor state and federal laws and regulations related to credit union compliance including Gramm-Leach-Bliley Act (GLBA), Payment Card Industry (PCI), Sarbanes-Oxley Act (SOX), etc. – and privacy laws. - Performs other job-related duties as necessary PHYSICAL SKILLS, ABILITIES, AND EXERTION UTILIZED IN THE PERFORMANCE OF THESE TASKS: - Demonstrate strong oral and written communication skills with a focus on troubleshooting and error identification. - Must possess sufficient manual dexterity to skillfully operate applicable computer hardware, a variety of hand tools and standard office equipment. ORGANIZATIONAL CONTACTS & RELATIONSHIPS: - INTERNAL: All levels of staff and management. - EXTERNAL: Vendors, service providers, organizational groups, and other financial institutions as needed. QUALIFICATIONS: - EDUCATION: Bachelor of Science in Computer Science, Management Information Systems, Information Security Information Assurance or equivalent work experience. - EXPERIENCE: - 3 years’ experience in organizational information security, cybersecurity, information assurance or providing security consulting services - Working knowledge of traditional security controls and technologies, such as SIEM systems, IDS/IPS, public key infrastructure (PKI), IDAM systems, antivirus, and firewalls, in addition to newer offerings such as endpoint detection and response (EDR), threat intelligence platforms, security automation and orchestration, deception technologies and application controls - Strong technical and analytical skills, with a background in technology design, implementation, and delivery - Working knowledge SIEM systems, firewalls, threat intelligence, security automation and orchestration solutions, IDS/IPS, data loss prevention (DLP) and other network and system monitoring tools - Demonstrates understanding of network systems and applications including: DNS, LDAP, virtualization, Database design/hardening, Email/secure messaging, Data Loss Prevention, and end point protection. - Demonstrate understanding of the NIST CSF and tracking KPIs to validate the cybersecurity program - Demonstrates understanding of Windows, Linux, and cloud computing technologies, including software-, infrastructure- and platform-as-a-service, as well as public, private and hybrid environments. - Strong sense of ethics, integrity, and professionalism - Demonstrates the ability to articulate methodologies and concepts; communicate effectively in providing technical guidance and expertise to management and other staff PHYSICAL REQUIREMENTS: - Prolonged sitting throughout the workday to accomplish tasks. - Availability for emergency and on call duty 24 hours a day, 7 days a week, as needed. - Occasional travel may be required. - Lift and carry communications equipment and computer hardware weighing up to fifty pounds. - Corrected vision in the normal range required to configure, test, and troubleshoot network server hardware and data. - Hearing within normal range. - May work additional work hours to accomplish tasks. LICENSES/CERTIFICATIONS: One of the following security certifications: CEH, Security +, SSCP, SANS GIAC, PCNSA, or equivalent Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records. THIS JOB DESCRIPTION PROVIDES AN OVERVIEW OF THE GENERAL SCOPE AND LEVEL OF WORK EXPECTED TO BE PERFORMED, BUT IT IS NOT AN EXHAUSTIVE LIST OF ALL DUTIES OR RESPONSIBILITIES ASSOCIATED WITH THE POSITION. THE CREDIT UNION RESERVES THE RIGHT TO MODIFY, ADD, OR REMOVE DUTIES AS NEEDED WITHOUT ADVANCE NOTICE. EMPLOYEES MAY BE REQUIRED TO PERFORM ADDITIONAL TASKS AND DUTIES AS DIRECTED BY THEIR SUPERVISOR, PROVIDED SUCH TASKS ARE WITHIN THE EMPLOYEE’S KNOWLEDGE, SKILLS, AND ABILITIES, OR CAN BE PERFORMED WITH REASONABLE TRAINING. NOTHING IN THIS JOB DESCRIPTION ALTERS THE AT-WILL EMPLOYMENT RELATIONSHIP OR LIMITS THE CREDIT UNION’S RIGHT TO ASSIGN OR REASSIGN DUTIES AND RESPONSIBILITIES TO THIS POSITION AT ANY TIME. REV. 4/21/2026

About Bridgewater Bridgewater Associates is a premier asset management firm, focused on delivering unique insight and partnership for the most sophisticated global institutional investors. Our investment process is driven by a tireless pursuit to understand how the world’s markets and economies work — using cutting edge technology to validate and execute on timeless and universal investment principles. Founded in 1975, we are a community of independent thinkers who share a commitment for excellence. By fostering a culture of openness, transparency, and inclusion, we strive to unlock the most complex questions in investment strategy, management, and corporate culture. Explore more information about Bridgewater on our website here. Our Culture Bridgewater’s unique success is the direct result of our unique way of being. We want an idea meritocracy in which meaningful work and meaningful relationships are pursued through radical truth and radical transparency. We require people to be extremely open, air disagreements, test each other’s logic, and view discovering mistakes and weaknesses as a good thing that leads to improvement and innovation. It is by continually striving together for the highest levels of truth and excellence that we create meaningful work and meaningful relationships. Within this culture, Diversity and Inclusion is a top priority because it is essential to finding the best talent in the world, enabling our idea meritocracy, and creating an environment where all types of people can thrive. We have a full-time team as well as affinity networks that work on these issues - If you would like to learn more, please let your Bridgewater recruiter know. Explore more information about Bridgewater’s culture on our website here. About the Security Group The Security Department’s mission is to protect Bridgewater. We constantly evolve our cyber, physical, and staff security practices to meet business needs and stay ahead of the changing threat landscape. About the Role The Staff Software Engineer, Security role is critical for modernizing the Staff Security function through thoughtful application of technology. This role requires a unique combination of technical depth, business process understanding, and sensitivity to the confidential nature of insider threat and personnel security operations. The Staff Software Engineer, Security role serves as the technical bridge between the Staff Security team (focusing on insider threats, investigations, and employment security) and the broader security and technology organizations. This role is responsible for understanding the unique requirements of people risk management, translating manual processes into technology solutions, and designing systems that enhance the effectiveness of insider threat monitoring, investigations, and personnel security operations. You will drive the following responsibilities: Requirements Engineering - Partner closely with Staff Security team to document and understand current manual processes and capabilities - Identify opportunities for automation and technical enhancement - Translate non-technical requirements into technical specifications - Develop user stories and technology roadmaps for Staff Security enablement - Prioritize technology initiatives based on business impact and technical feasibility Solution Architecture - Design technical solutions for insider threat detection and monitoring - Architect case management systems for investigations - Develop data integration frameworks for background checks, non-competes, and personnel risk - Create privacy-preserving technical controls for sensitive investigations - Design technical patterns for secure information sharing with Human Resource and Legal departments Technical Leadership - Lead cross-functional engineering initiatives to support Staff Security - Guide implementation teams on technical execution - Partner with Security Architecture on design patterns - Collaborate with Data Engineering on insider threat analytics - Work with Product Managers and engineering teams on roadmap development Automation Development - Design automation workflows for manual processes - Create integration patterns between security systems - Develop prototypes and proof-of-concepts - Guide engineering teams on implementation - Establish monitoring and metrics for effectiveness Security & Privacy - Ensure solutions meet strict privacy and confidentiality requirements - Implement appropriate access controls for sensitive data - Design audit trails for investigative activities - Create data handling frameworks for personally identifiable information - Develop security controls specific to insider threat use cases Position Requirements Education & Experience - Bachelor’s degree in Computer Science, Cybersecurity, or related field - 8+ years of security engineering experience - Experience with insider threat or investigative technologies - Track record of translating business needs into technical solutions - Background in security automation and workflow design Technical Skills - Strong security engineering capabilities - System integration expertise - Data privacy and protection knowledge - Workflow automation experience - Case management systems understanding Domain Knowledge - Insider threat concepts and methodologies - Personnel security operations - Background check processes (including all pre-hiring risk) - Non-compete processes and investigative techniques Physical Requirements This role is offered with fully remote flexibility and can be performed from anywhere within the United States. This approach is role specific, and each team will have some slight variations that we will be able to describe in more detail throughout the recruiting process. Compensation The wage range for this role is $450,000 - $600,000 inclusive of base salary and discretionary target bonus. The expected base salary for this role is between 70% - 80% of this wage range. Why Choose Bridgewater? It takes all types to make Bridgewater great. We seek a diverse group of innovative thinkers and push them to engage in rigorous and thoughtful inquiry. We develop people through an honest examination of their abilities and performance, enabling personal growth and professional development. We strive to provide you opportunities that will challenge you and unlock your potential. One of our core priorities at Bridgewater is to enable our employees to build a great life and career, and we believe our benefits are an important extension of that philosophy. As such, currently Bridgewater offers a competitive suite of benefits. Explore more information about Bridgewater’s benefits on our website here.

Role Description Arcarithm is currently seeking a Cyber Security Specialist to support the modernization and transformation of a large portfolio of enterprise business solutions used by NASA. The candidate will be part of a team where complex problem solving and communication skills are critical to success. - Translate functional specifications into SAP role design. - Design of SAP security roles to meet business requirements. - Technical role, user and authorization management for SAP Systems. - Segregation of Duties conflict remediation related projects, including customized transaction technical validation. - Map client business requirements, processes, and objectives; develop necessary product modifications to satisfy clients' needs. - Provide subject matter expertise and technical direction to clients and Agency stakeholders. - Work closely with customers, business analysts, and other team members to understand, transform, and implement the Agency’s business requirements into flexible Business Processes. - Communicate technical and business issues/solutions to all levels of individuals, including managers, directors, and executives. - Provide day-to-day sustainment support related to ongoing operations to ensure continued system reliability and performance. Qualifications - 2 or more years of SAP experience supporting SAP Security in a Public Sector environment. - Deep understanding of SAP authorization concepts. - Knowledge of Segregation of Duties (SOD) with an understanding of business processes and applicable mitigating controls. - Experience in maintaining GRC risk library, roles and authorizations (R/3/ECC, BW4HANA, S4HANA), user administration. - Proficient with GRC (10.1/12.0) configuration. - Firefighter configuration and maintenance. Requirements - Bachelor’s degree in Computer Science, Software Engineering, Information Management Systems, or a related discipline. Equivalent professional experience will be considered in lieu of degree. - Must be able to obtain and maintain a NASA Public Trust background investigation. Benefits - Comprehensive health insurance options. - Generous 401K plan. - Competitive salaries. - Continuous career growth opportunities. - Flexible schedules including remote work. - Mentoring and performance incentives.

• Own the security product strategy at Render, defining which capabilities belong in the core platform versus add-on products, and how they evolve over time. • Define and deliver Render’s governance layer, including authentication and authorization (SSO/SAML, SCIM, RBAC, session management), compliance readiness (SOC 2, HIPAA), audit logging, and policy enforcement. • Drive exploration and development of emerging security areas such as supply chain security (build-time scanning), runtime workload protection, and safe governance of agent-driven workflows. • Work directly with customers, prospects, and GTM teams to understand security requirements and procurement blockers, translating insights into clear product priorities. • Partner closely with Render’s Security and Expansion teams, along with engineering counterparts, to shape the roadmap and share accountability for outcomes. • Ensure all security features balance strong protections with a seamless, developer-first experience. • Stakeholder Collaboration: Partner across product, engineering, security, and GTM teams to align priorities, drive execution, and deliver impactful security capabilities that build customer trust and unlock growth.