• Lead Risk Management Framework (RMF) activities for the LIGER deployment at CBP, including system categorization, control selection and tailoring, implementation, assessment, and continuous monitoring • Own and maintain authorization artifacts: System Security Plan (SSP), Security Assessment Plan (SAP), Security Assessment Report (SAR), Plan of Action and Milestones (POA&M), and supporting documentation aligned to CBP and DHS requirements • Coordinate directly with CBP ISSOs, Authorizing Officials, and cyber working groups to advance ATO and continuous authorization activities • Interpret NIST 800-53 controls in the context of the LIGER platform and translate them into actionable engineering requirements • Run and review vulnerability scans across CI/CD pipelines and runtime environments, triage findings, and drive remediation through the engineering team • Validate secure configurations and hardening baselines (e.g., CIS Benchmarks, DISA STIGs) on containers, hosts, and cloud resources • Partner with platform engineers on cloud and container security in AWS GovCloud, including IAM, network controls, secrets management, logging, and runtime protection • Develop and maintain security policies, procedures, and standard operating procedures (SOPs) specific to LIGER on CBP infrastructure • Track audit findings, remediation actions, and POA&M items to closure • Support FedRAMP-aligned control implementation and inheritance where applicable • Advise senior LIGER and CBP leadership on system risk levels, control effectiveness, and emerging compliance considerations for AI/LLM systems in federal environments.

Role Description This Protection Advisor opportunity is ideal for experienced individuals near South Coast seeking a proposition with leads provided. You will be joining a business based along the South Coast, who are producing a high number of leads, which they can share with you. As such, little need for self-generation. This is a home based role with occasional meetings with the Principal to discuss business, cases etc, as such you should be within 1 – 2 hours of the Southampton / Bournemouth area. Qualifications - You should have experience as a Protection Advisor. - Ideally, you should have R05 or equivalent. - You should have a desire to be self-employed. Benefits - Self-employed role with OTE of £50,000 - £85,000+. - Healthy commission splits with tiered rates on self-generation and company leads. - Fully home based role with occasional get-togethers. - Ability to earn additional income through various referral schemes. Company Description

• Participar ativamente do ciclo de melhoria contínua em segurança da informação, identificando gaps, oportunidades de melhorias, propondo e executando planos de ação, bem como definir políticas de segurança da informação e indicadores de segurança.

• Build & Harden Secure Pipelines • Design, build, and maintain secure CI/CD pipelines with security gates that catch issues before they reach production. • Systematically, consistently and automatically capture the risk exposure of Chainguards products. • Implement and enforce software supply chain security controls: signed artifacts, SBOMs, provenance attestation (SLSA, Sigstore / Cosign). • Proactively identify emerging customer security needs, and build solutions to meet these. • Cloud-Native Product Hardening • Lead security architecture reviews and threat models for Kubernetes-based workloads running on GCP and AWS. • Harden container images, Kubernetes cluster configurations, and cloud IAM postures — minimising attack surface across our product stack. • Define and drive adoption of baseline security standards: pod security standards, network policies, workload identity, secrets management. • Evaluate and operationalise CNAPP / CSPM tooling to maintain continuous visibility into cloud-native risk.