Role Description This is a fully remote role based in the United States. As a member of Talos, you will support cutting edge detection and mitigation technologies. You will work towards keeping yourself abreast of the latest industry threat creation and defense techniques, and you will develop proof-of-concept solutions, provide domain expertise, and guide implementation to facilitate successful security posture in Cisco’s products. If you enjoy vulnerability research, crash analysis, reverse engineering, and researching new techniques and writing tools to automate these tasks, this job is for you! Your Impact - Security research including development of tools for vulnerability analysis and mitigation. - Development of static and run-time analysis tools to figure out root cause and input conditions related to a vulnerability. - Vulnerability triage and proof of concept exploit development to support the creation of detection content. - Write detailed technical reports, summaries, and testing methodologies. - Research emerging technologies, protocols, and testing methodologies. - Develop proof of concept exploits for testing vulnerability mitigations. - Perform patch analysis to find and trigger vulnerabilities. - Reverse engineer binary applications, protocols, and formats. - Analyze vulnerabilities and emerging security threats and technologies. - Provide critical security focused expertise to engineering organizations. Qualifications - 3+ years of experience in vulnerability research or a closely related area such as exploit or mitigation development on Linux Systems. - 3+ years’ experience with C/C++, and a scripting language (e.g., Python), and assembly (e.g., x86/x64, ARM, etc.). Requirements - Bachelor’s degree or equivalent in Computer Science, Electrical Engineering, Cyber Security, or other tech-related degree. - Experience with Linux internals. - Experience with binary auditing and reverse engineering, and with related tools such as IDA Pro, Binary Ninja, Ghidra, etc. and with plugin development. - Experience with common vulnerabilities and methods of exploitation, such as memory corruption, web application exploitation, file format vulnerabilities, protocol-based weaknesses, etc. - Knowledge of common file formats, network protocol structures, and enterprise networking architecture. - Ability to work independently with minimum supervision and to tackle additional tasks as the need arises. Benefits - Medical, dental and vision insurance. - 401(k) plan with a Cisco matching contribution. - Paid parental leave. - Short and long-term disability coverage. - Basic life insurance. - 10 paid holidays per full calendar year, plus 1 floating holiday for non-exempt employees. - 1 paid day off for employee’s birthday, paid year-end holiday shutdown, and 4 paid days off for personal wellness determined by Cisco. - Non-exempt employees receive 16 days of paid vacation time per full calendar year. - Exempt employees participate in Cisco’s flexible vacation time off program. - 80 hours of sick time off provided on hire date and each January 1st thereafter. - Optional 10 paid days per full calendar year to volunteer.

Role Description We are seeking a senior security certification engineer with a strong hands-on background in FIPS 140-2 and FIPS 140-3 validations. You will join our Security Certification team supporting Qualcomm product certifications across hardware and software domains. In this role, you will apply 5-8 years of experience to ensure Qualcomm cryptographic modules achieve FIPS 140 compliance, working closely with worldwide engineering teams, product managers, corporate security, third-party evaluation labs, and government validation authorities. The role offers exposure to all aspects of product security—especially cryptography, certification requirements, and the development of FIPS documentation—ultimately enabling Qualcomm to meet global customer security needs and deploy trusted, compliant solutions. Qualifications - Bachelor's degree in Electrical Engineering, Computer Science, Information Security, Mathematics or equivalent - Preferred: Master's in Computer Engineering, Mathematics, Computer Science, or Electrical Engineering Requirements - 5+ years of experience in embedded product’s security, cryptography, and security certification (e.g. Secure Processor or secure element, Cryptographic libraries, hardware cryptography, and embedded security software) in the context of FIPS 140-2/-3, Common Criteria (CC), SESIP or banking standards such as EMVCo, MasterCard, VISA, etc. - 3+ years of embedded security/cryptography experience with direct involvement in FIPS 140-2/-3 cryptographic module validations (e.g. cryptographic library or secure hardware module validation) - 2+ years of experience in project management - Intermediate knowledge of cryptography (symmetric, asymmetric, hashes, RNG) and associated standards Preferred Qualifications - 8+ years total experience in secure embedded systems or product security roles (beyond FIPS) – indicating deeper expertise - 5+ years of experience working in or with accredited FIPS 140 evaluation labs (e.g. ATSEC) or in product teams that achieved FIPS validations – provides valuable perspective on the testing and certification process - 5+ years of experience in project management - Advanced cryptography knowledge (e.g. various standards, entropy sources) and familiarity with security architecture (ARM TrustZone, hardware cryptographic engines, etc.) Principal Duties and Responsibilities - Coordinate and execute FIPS 140-3 validation projects from planning through lab submission and certification, working under guidance from senior team members as needed. - Prepare, review, and maintain detailed FIPS certification documentation (e.g. security policies, design documentation), ensuring strict compliance with NIST requirements. - Collaborate closely with third-party labs and certification authorities to facilitate evidence collection, testing, and resolve any issues throughout the validation process. - Advise and support internal engineering teams on FIPS 140 requirements and best practices, helping integrate compliance into product development. - Work independently on assignments with moderate supervision, and effectively plan and prioritize tasks to meet project milestones. - Communicate clearly with cross-functional stakeholders (engineers, managers, external evaluators), conveying technical details and progress. Minimum Qualifications - Bachelor's degree in Engineering, Computer Science, or related field and 4+ years of Security Engineering or related work experience. - OR Master's degree in Engineering, Computer Science, or related field and 3+ years of Security Engineering or related work experience. - OR PhD in Engineering, Computer Science, or related field and 2+ years of Security Engineering or related work experience.

Role Description As a Senior Security Certification Engineer, you will join the team responsible for the security certifications and evaluations of Qualcomm chipsets. In this senior role, you will drive and coordinate certification efforts across multiple industry standards, ensuring our products meet global security requirements. - Work at a system level spanning hardware, software, and infrastructure. - Serve as a subject-matter expert interfacing with internal engineering teams and external evaluation labs. - Plan and complete security evaluations of Qualcomm products. - Expose yourself to all aspects of hardware and software security design, including: - Architecture - Cryptographic and secure IP development - Security countermeasures - Security lifecycle management - Formal certification requirements - Lead documentation and evaluation processes. - Contribute to security architecture reviews. - Guide cross-functional teams in implementing best practices. - Ensure Qualcomm chipsets achieve key certifications such as: - Common Criteria - Globalplatform - GSMA - FIPS validations - New compliance frameworks under the EU Cyber Resilience Act (CRA) Qualifications - Bachelor’s degree in Engineering, Computer Science, Information Systems, or related field. - 7+ years of experience in embedded product security, cryptography, and security certification. Requirements - Master’s degree in the above fields and 7+ years of relevant experience (preferred). - Extensive expertise in security certification standards. - Proven hands-on experience with both FIPS 140-2/140-3 and/or Common Criteria evaluation processes. - Track record of successful Common Criteria certifications, especially at higher assurance levels (e.g., EAL4+ / EAL5+). - Familiarity with other security certification schemes and standards. - Knowledge of emerging global cybersecurity regulations and schemes. - Familiarity with cryptographic algorithms (SHA, AES, DES, ECC, RSA). - Experience in secure systems engineering (4+ years). - Experience with security management, site security audits, or deploying secure development processes is a plus. - Design experience in low power, high volume applications is a plus. Benefits - Qualcomm is an equal opportunity employer. - Commitment to providing an accessible hiring process for individuals with disabilities.

Role Description The Concierge Ally role provides compassionate service by handling healthcare inquiries via inbound calls and conducting satisfaction surveys. Ideal candidates possess exceptional customer service skills, professionalism, and a passion for simplifying the healthcare experience. Responsibilities - Building effective rapport with participants and probes to ensure that all the needs of the participant(s) are identified. - Educating and promoting clinical services that are available to participants with a goal of increasing engagement. - Prioritizing the most important service needed (coaching, information, emotional support, web navigation). - Working closely with the nurse team and/or other teams to determine the best method to satisfy participants' needs. - Conducting feedback surveys with participants to evaluate satisfaction, utilization of services provided, and impact of Alight’s services. - Documenting all research and summarizing calls in the case management system. - Maintaining confidentiality and complying with all HIPAA requirements when handling data or providing services. - Completing other duties as assigned. - Communicating medical information to a non-medical audience. Qualifications - Have written and verbal communication skills. - Have good customer service and customer resolution skills. - Able to be flexible and adaptable with a demonstrated ability to reorganize priorities as business needs change. - Able to work effectively in a team environment. - Have a basic understanding of medical terminology. - Have attention to detail, time management, and decision-making skills. - Able to navigate multiple technical environments using personal computers and multiple software packages in a Windows environment. - Have a positive attitude and desire to positively contribute to the advancement of individual allies and Alight’s Company overall. - Have 2 years relevant experience in telephonic customer service. Requirements - By applying for a position with Alight, you understand that, should you be made an offer, it will be contingent on your undergoing and successfully completing a background check consistent with Alight’s employment policies. - Background checks may include some or all the following based on the nature of the position: SSN/SIN validation, education verification, employment verification, and criminal check, search against global sanctions and government watch lists, credit check, and/or drug test. - You will be notified during the hiring process which checks are required by the position. - Alight requires all virtual interviews to be conducted on video. - Please be aware that Alight is a camera-on culture and may require occasional travel to one of our physical office locations. Benefits - Comprehensive total rewards package. - Health, dental, and vision coverages starting Day One. - Wellbeing programs. - Retirement plans with contribution matching. - Generous time off and parental leave. - Continuing education and career growth opportunities. - Flexible working arrangements.