Role Description We are looking for a Tanium Endpoint Security Engineer to join our team. The ideal candidate will have extensive experience designing, implementing, and managing endpoint security solutions using the Tanium platform. This role requires expertise in endpoint protection, vulnerability management, incident response, and real-time threat detection across enterprise environments. As a Tanium Endpoint Security Engineer, you will be responsible for deploying, configuring, and maintaining Tanium's security modules to ensure that endpoint security is proactive and effective. The role involves monitoring, automating, and integrating security solutions while collaborating closely with security, IT, and compliance teams to improve overall endpoint security posture. Qualifications - Hands-on Experience with Tanium: Proven experience working with Tanium’s endpoint security platform. - Endpoint Security Expertise: Strong knowledge of endpoint detection and response (EDR) tools, particularly Tanium. - Operating System Knowledge: Experience working with Windows, Linux, and macOS endpoint environments. - Vulnerability Management: Deep understanding of vulnerability management and patching processes. - Scripting Skills: Familiarity with PowerShell, Python, or Bash scripting to automate tasks and improve workflows. - SIEM Integration: Experience with integrating Tanium with SIEM platforms such as Splunk for enhanced threat visibility. - Security Frameworks: Familiarity with security frameworks and standards, such as NIST, ISO 27001, and CIS. Requirements - Endpoint Security Management: Deploy, configure, and manage Tanium modules including Threat Response, Patch, Asset, Deploy, and Comply to secure endpoints. - Incident Response & Monitoring: Monitor endpoint activity and swiftly respond to security incidents using Tanium's real-time capabilities. - Vulnerability Management: Perform vulnerability assessments, manage patches, and execute remediation tasks using Tanium Patch and Comply modules. - Security Visibility & Reporting: Develop and maintain dashboards, reports, and queries to provide security visibility and compliance status across endpoints. - SIEM Integration: Integrate Tanium with SIEM tools (such as Splunk or IBM QRadar) to enhance threat detection and security monitoring. - Automation of Endpoint Tasks: Automate endpoint management tasks including patching, software deployment, and configuration enforcement for streamlined security operations. - Collaboration with Teams: Work with SOC, IT, and Compliance teams to enhance the overall endpoint security posture across the organization. - Incident Support & Root Cause Analysis: Conduct root cause analysis during security incidents and support incident response activities to minimize threats and vulnerabilities. - Security Compliance & Audits: Ensure endpoint compliance with organizational and regulatory security policies. Provide support for audits and compliance initiatives (e.g., NIST, CIS benchmarks). Company Description For more details reach at resumes@navitassols.com

Role Description The Information Security Officer (ISO) – East region will support the Eastern part of Europe Middle East and Africa (EMEA) within the EMEA Regional Security Office (RSO). Reporting directly to the EMEA Regional Security Officer, this role is key in leading the regional and solution line operational security risk level to within acceptable levels via leading remediation programs and deployment of Global Cybersecurity Services (GCS) controls. The role will act as a key contact for all matters relating to Cybersecurity and requires a broad understanding of security controls and their effective implementation within corporate environments. As an Information Security Officer you will be accountable for service delivery to the assigned region / sub-region and solution lines. The role will need to have effective relationships with senior leadership to support the delivery of the regional / sub-regional business goals and operate an effective security risk management regime against an agreed security risk mitigation strategy. As the trusted security lead, this position requires presenting to local leaders, regulators and clients as needed. Prior experience of regulatory management is required. This is a highly visible role within Aon to be able to embed effective security controls at scale within the firm. We are looking for you to bring new insights and a dedication toward continual learning. You will stay actively engaged with business leaders, IT executives and external clients. The role requires gravitas and an ability to be influential and persuasive. Aon deeply values inclusiveness, collaboration and a "better together" approach to deliver distinctive value to colleagues and clients. Qualifications - Broad Cybersecurity knowledge and experience of implementing and operating an effective control regime in a large, complex corporate environment. - Solid knowledge and understanding of Cybersecurity domains, including: - Application security - Vulnerability management - Network and cloud security - Security operations (incident management) - Physical security - Supplier risk management - Cyber awareness - Experience of effective Cyber Risk Management within a large corporate environment. - Fostering strong partnerships by influencing and building effective relations with diverse stakeholders at a range of seniority, up to and including C-level. - Exceptional communication skills, with the ability to communicate to a diverse range and seniority of stakeholders, including technical and non-technical audiences. - Demonstrable regulatory management experience. - Experience of Compliance assurance and Audit practice is desirable. - Security certification (CISSP, CISM) is an advantage. - Understanding and experience of delivering compliance standards, including: - ISO27001 - DORA - Cyber Essentials+ Requirements - Provide Cybersecurity reporting to leadership committees and Boards. - Represent Cybersecurity to appropriate Regulatory bodies. - Own the Cybersecurity strategy for the assigned area, manage its delivery via leverage of GCS services and accelerate local control adoption. - Own the colleague security culture programme. - Represent the region / sub-region in the Security Incident Management process. - Manage remediation of Cybersecurity Audit and Compliance findings. - Manage a Cybersecurity Risk committee to support cyber risk management. - Track remediation of Cybersecurity Audit and Compliance findings. - Review Cybersecurity Metrics and lead remediation programs within the region / sub-region. - Lead or Sponsor Cybersecurity initiatives within area of accountability. - In conjunction with Data Privacy, ensure necessary security controls are in place. - Manage GCS Service delivery escalations. - Support GCS project implementation within the assigned area of accountability. - Contribute to the ‘voice of the Business’ in development of GCS service enhancements. - Represent Cybersecurity on Client calls or escalations. - Provide first line security advice, guidance and Policy and Standard support to Client teams. - Support the engagement of GCS services via the correct process. Company Description

Role Description We are seeking an experienced Senior Business Applications Security Engineer to join our growing Corporate Technology team. This is not a maintenance role—this is an opportunity to build something from the ground up. You will take ownership of the security posture for our entire business application ecosystem, from Salesforce and Workday to niche departmental tools, transforming a fragmented, reactive approach into a centralized, proactive, and hardened security program. Your focus will be on bridging business needs with cloud-based software solutions through implementation, optimization, and vendor management. Transform business application security from an afterthought to a core competency. You will: - Build from scratch: Design and implement a comprehensive business application security program where none exists. - Own the ecosystem: Take full ownership of security posture across 200+ business applications (SaaS, cloud, and on-premise). - Establish the standard: Define what "secure" means for business applications and ensure every tool meets that bar. - Shift left: Embed security into procurement, integration, and lifecycle management processes. - Drive change: Partner with stakeholders across IT, Engineering, Finance, HR, Sales, and Marketing to fundamentally change how the organization thinks about application security. Responsibilities - System Administration: Design and scale user access with role-based access controls (RBAC), where possible. - Technical Support & Troubleshooting: Provide escalation support in debugging app access/role issues. - Application Onboarding: Conduct requirements discovery and analysis with key stakeholders for new applications, particularly pertaining to login and role access protocols. - Identity Lifecycle Management: Designing and implementing automations ensuring automatically granted or revoked access. - Integration Management: Manage API connections and integrations between business applications in our tech stack. - Process Improvements: Identify and implement automation opportunities to streamline workflows. - Data & Compliance: Ensure data accuracy, integrity and compliance with security standards. - Mentorship to guide junior teammates on best practices within the role. Qualifications - 8+ years of experience in Application Security or related role. - Professional Certifications: CISSP are a plus. - Expertise in Okta, Google Workspace, Microsoft 365. - Experience with SAML and OAuth protocols, as well as SCIM. - Proficiency with Okta Workflow or similar automation platforms. - Excellent ability to bridge conversations between technical teams and non-technical business stakeholders. - Soft skills: Change management, process improvement, stakeholder management, collaborative mindset with excellent written and verbal communication. Benefits - Competitive compensation package. - Equity opportunities. - Comprehensive health, dental, and vision coverage. - Flexible PTO and remote work options. - Learning & development resources. - A high-impact role in a fast-growing, mission-driven company.

Role Description We are seeking an experienced Senior Business Applications Security Engineer to join our growing Corporate Technology team. This is not a maintenance role—this is an opportunity to build something from the ground up. You will take ownership of the security posture for our entire business application ecosystem, from Salesforce and Workday to niche departmental tools, transforming a fragmented, reactive approach into a centralized, proactive, and hardened security program. Your focus will be on bridging business needs with cloud-based software solutions through implementation, optimization, and vendor management. Transform business application security from an afterthought to a core competency. You will: - Build from scratch: Design and implement a comprehensive business application security program where none exists - Own the ecosystem: Take full ownership of security posture across 200+ business applications (SaaS, cloud, and on-premise) - Establish the standard: Define what "secure" means for business applications and ensure every tool meets that bar - Shift left: Embed security into procurement, integration, and lifecycle management processes - Drive change: Partner with stakeholders across IT, Engineering, Finance, HR, Sales, and Marketing to fundamentally change how the organization thinks about application security Responsibilities: - System Administration: Design and scale user access with role-based access controls (RBAC), where possible - Technical Support & Troubleshooting: Provide escalation support in debugging app access/role issues - Application Onboarding: Conduct requirements discovery and analysis with key stakeholders for new applications, particularly pertaining to login and role access protocols - Identity Lifecycle Management: Designing and implementing automations ensuring automatically granted or revoked access - Integration Management: Manage API connections and integrations between business applications in our tech stack - Process Improvements: Identify and implement automation opportunities to streamline workflows - Data & Compliance: Ensure data accuracy, integrity and compliance with security standards - Mentorship to guide junior teammates on best practices within the role Qualifications - 8+ years of experience in Application Security or related role - Professional Certifications: CISSP are a plus - Expertise in Okta, Google Workspace, Microsoft 365 - Experience with SAML and OAuth protocols, as well as SCIM - Proficiency with Okta Workflow or similar automation platforms - Excellent ability to bridge conversations between technical teams and non-technical business stakeholders - Soft skills: Change management, process improvement, stakeholder management, collaborative mindset with excellent written and verbal communication. Benefits - Competitive compensation package - Equity opportunities - Comprehensive health, dental, and vision coverage - Flexible PTO and remote work options - Learning & development resources - A high-impact role in a fast-growing, mission-driven company.