Role Description We at Coforge are hiring for the position of Sr Security Engineer (21342) with the following skill set. - Experience in SecOps cloud roles, coupled with industry-standard in security operations teams. - Foundational knowledge/experience in DevSecOps & Pipeline Integration: - Deep understanding of CI/CD workflows. - Ability to collaborate with engineering teams to bake security controls and sensors directly into AMIs and container base images prior to runtime. - Hands-on experience with AWS cloud platforms and containerization technologies like Docker and Kubernetes. - Ability to implement security controls and best practices for infrastructure as code (IaC) and cloud environments. - Regulatory Compliance: - Understanding of how security operations impact compliance requirements like GDPR, HIPAA, PCI-DSS, or SOC 2. - Ensuring that logging and incident response procedures meet audit standards. - Metrics & Reporting: - Proficiency in creating executive-level dashboards that translate operational data into business value and risk posture. - Process Optimization: - Experience developing and refining Standard Operating Procedures (SOPs) and playbooks to ensure consistent service delivery. - SIEM: - Deep knowledge of configuring, tuning, and managing Security Information and Event Management (SIEM) Crowdstrike Falcon. - Incident Response (IR) Lifecycle: - Experience with the entire IR lifecycle (Preparation, Identification, Containment, Eradication, Recovery, and Lessons Learned). - Proficiency in security process automation via orchestration frameworks and scripting. - Cloud-Native EDR Lifecycle Management: - Proven ability to manage CrowdStrike Falcon within highly ephemeral AWS environments. - Proficiency in scripting languages such as Python. Qualifications - Crowdstrike Falcon Complete Certifications (Administrator). - Advanced security certifications such as CISSP, CEH, or AWS Certified Security Specialty. - Experience with DevSecOps tools and practices, specifically focusing on DevSecOps automation and shift-left security. - Experience with infrastructure as code tools such as Terraform, Ansible, or Chef. - Experience in developing strategic security roadmaps. - Technical Translation: The ability to explain complex technical incidents, risks, and remediation steps to non-technical stakeholders (including the CISO). Requirements - AWS cloud platforms. - Crowdstrike Falcon Complete (Cloud Security Module, Endpoint). - Security Information and Event Management (SIEM) solutions. - Vulnerability scanners and Intrusion Detection Systems (IDS). - Abnormal (Email Security). - Cloudflare (Warp/VPN) and/or leading industry competitor. - Jira. - Confluence. - Slack. - Datadog. - Docker and Kubernetes. Company Description At Coforge, we hire professionals based solely on their skills and do not discriminate based on age, disability, religion, gender, sexual orientation, socioeconomic status, or nationality.

• Continuous Security Posture Improvements: Take full ownership of our information security strategy, designing and implementing security processes to create a strong foundation for the future. • ISMS & Compliance: Develop and enhance our Information Security Management System (ISMS) while ensuring compliance with frameworks like ISO 27001/27002 and the NIST Cybersecurity Framework. • Security Advisory & Support: Act as the go-to expert for security-related topics, supporting product, engineering, and IT infrastructure teams. • Threat Monitoring & Incident Response: Oversee and enhance our security monitoring and patch management processes, ensuring rapid detection and mitigation of threats. • Cloud Security Optimization: Drive cloud security improvements across AWS and Microsoft Azure, ensuring robust protection of our cloud infrastructure. • SIEM & Infrastructure Security: Support and optimize security monitoring systems and integrate new tools into our SIEM solution. • Research & Awareness: Stay ahead of emerging security threats, vulnerabilities, and attack techniques, while implementing security awareness training to foster a security-conscious culture.

Role Description Infatica is building infrastructure products focused on networking, proxy technologies, distributed systems, and traffic intelligence. We are looking for a security engineer who understands how endpoint protection systems, antivirus engines, and EDR platforms evaluate desktop/network applications. This is not a traditional pentesting or compliance role. We need someone who can help ensure our software is trusted by major antivirus and endpoint security vendors, reduce false positives, and improve application reputation across Windows environments. - Analyze antivirus and EDR detections affecting our applications - Investigate false positives across: - Microsoft Defender - CrowdStrike - SentinelOne - Sophos - Bitdefender - ESET - Kaspersky - Work with engineering teams to identify behaviors triggering detections - Improve software trust and reputation mechanisms - Manage AV vendor submissions and whitelisting processes - Review: - installers - auto-update systems - drivers/services - network behavior - persistence mechanisms - Recommend improvements for: - code signing - EV certificates - Windows SmartScreen reputation - binary integrity - release pipelines - Perform static and dynamic analysis of binaries when needed - Communicate directly with antivirus vendors and security teams Qualifications - Extensive working experience as an application security consultant or similar role - Strong understanding of Windows internals - Experience with antivirus / EDR systems - Knowledge of malware analysis or reverse engineering - Understanding of how reputation-based detection works - Great interpersonal communication skills Benefits - Competitive compensation based on experience and expertise - Flexible remote-first work environment - Opportunity to work on large-scale networking and infrastructure products - Direct impact on product trust, reputation, and distribution at scale - Access to cutting-edge Windows security and endpoint protection challenges - Work closely with experienced engineering and infrastructure teams

Role Description The Information System Security Officer (ISSO) is responsible for ensuring the security, compliance, and authorization of information systems in accordance with VA and DoD standards. This role focuses on supporting Risk Management Framework (RMF) activities, particularly for medical devices and healthcare IT systems, ensuring compliance with VA Directive 6500, HIPAA, and NIST Special Publications (800-53 Rev. 5 and 800-37). The ISSO works closely with system owners, engineers, and Authorizing Officials to maintain system security posture, support ATO processes, and ensure continuous monitoring across networked environments. Key Responsibilities - RMF & Authorization (ATO) Support - Support full lifecycle RMF activities in alignment with NIST 800-37 - Develop and maintain RMF artifacts including: - System Security Plans (SSP) - Security Assessment Reports (SAR) - Plan of Action & Milestones (POA&M) - Coordinate and support Authority to Operate (ATO) and reauthorization efforts - Work with Authorizing Officials (AO), ISSMs, and system owners - Medical Device Security (VA / DoD Focus) - Assess cybersecurity risks for network-connected medical devices - Ensure compliance with VA 6500 and relevant VA Handbook 6500.x controls - Evaluate vendor documentation and security controls for medical equipment - Support integration of medical devices into secure VA/DoD networks - Collaborate with biomedical engineering and clinical teams on risk mitigation - Network Security & Architecture - Review and understand network architectures supporting enterprise and clinical systems - Identify vulnerabilities across networked environments (LAN/WAN/cloud) - Ensure proper system boundary definitions and data flow documentation - Validate security configurations and segmentation for sensitive systems - Compliance & Controls Implementation - Implement and assess controls aligned with: - NIST SP 800-53 Rev. 5 - VA Directive 6500 - HIPAA Security Rule - Conduct control assessments and continuous monitoring activities - Track, manage, and remediate vulnerabilities - Continuous Monitoring & Risk Management - Maintain ongoing system security posture through continuous monitoring - Analyze security scan results (e.g., ACAS, Nessus, STIG compliance) - Manage and update POA&Ms and risk registers - Support incident response and reporting activities as required - Collaboration & Communication - Serve as a liaison between cybersecurity, engineering, and clinical stakeholders - Provide security guidance to system owners and project teams - Communicate risk posture clearly to leadership and compliance authorities Qualifications - Experience as an ISSO, ISSM, or cybersecurity professional in federal environments - Strong knowledge of: - NIST SP 800-53 Rev. 5 - NIST RMF (800-37) - VA Directive 6500 / 6500 series - HIPAA security requirements - Experience with ATO package development and maintenance - Understanding of network architecture and cybersecurity principles - Experience supporting DoD or VA systems (highly preferred) - Familiarity with medical device cybersecurity or healthcare IT systems Preferred Qualifications - ServiceNow CAM a HUGE PLUS - Experience with VA or DoD medical systems / biomedical environments - Knowledge of FISMA and federal compliance frameworks - Familiarity with tools such as: - eMASS (DoD) or VA equivalent systems - Vulnerability scanning tools (ACAS, Nessus) - Certifications such as: - Security+ - CISSP - CAP - CISM Key Strengths - Strong analytical and risk management skills - Ability to translate technical risk into business/mission impact - Effective communicator with cross-functional teams - Detail-oriented with documentation and compliance focus