Role Description We are looking for a hands-on Senior Security Engineer to help secure our end-to-end platform, from Linux-based edge devices deployed in the field to our cloud infrastructure, APIs, and data pipelines. This is not a pure compliance role. The focus is practical security engineering: - Identifying risks - Fixing vulnerabilities - Working closely with Engineering, Product, and Infrastructure teams to build security into how we design, deploy, and operate Our platform includes edge units deployed in roadside cabinets, processing real-time video and sensor data locally, then syncing insights and metadata to the cloud. This means the role requires someone who can think through real-world risks such as: - Physical access - SSH exposure - Device hardening - Secure data transfer - Cloud security - Incident response Key Responsibilities - Secure the end-to-end platform, from Linux-based edge devices to cloud infrastructure, APIs, and data pipelines. - Identify, assess, and remediate security risks across applications, backend services, and deployed devices. - Conduct threat modeling across edge-to-cloud data flows, including video, sensor data, and metadata pipelines. - Harden edge devices, including OS security, SSH access, credential management, and patching practices, especially in physically accessible environments. - Secure cloud environments (AWS preferred), including IAM, network security, encryption, secrets management, and logging. - Support secure design and architecture reviews for new features and deployments. - Implement and improve CI/CD security, vulnerability scanning, and monitoring practices. - Monitor and respond to security incidents, including compromised devices or unauthorized access, and lead post-incident reviews. - Define and improve security policies, standards, and controls aligned with practical engineering needs. - Support compliance efforts such as ISO 27001, SOC 2, and customer security reviews. - Work closely with Engineering and Product to embed security into development without slowing delivery. - Contribute to internal security awareness, documentation, and best practices. Qualifications - 6 to 8+ years in security engineering, application security, cloud security, or infrastructure security. - Hands-on experience securing production systems, not only compliance or audit. - Strong knowledge of Linux security, hardening, access controls, and patching. - Strong understanding of web application security, including OWASP Top 10. - Experience securing cloud platforms, preferably AWS, including IAM, networking, encryption, logging, and secrets management. - Experience with CI/CD security, vulnerability scanning, monitoring, and incident response. - Ability to threat model edge-to-cloud systems, APIs, data pipelines, and deployed devices. - Comfortable working closely with Product and Engineering to explain risks and drive fixes. - Scripting or automation skills, such as Python or Bash. - Experience with SOC 2, ISO 27001, or similar frameworks. - Experience in IoT, ITS, smart mobility, embedded systems, or data-heavy platforms is a strong plus. - Open to relocation to UAE after probation, subject to UAE immigration approval.

Senior Cloud Security Engineer (Hybrid/Multi-Cloud) Location: Morrisville, NC; Falls Church, VA; or Eagan, MN Remote Job Description: GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation’s top organizations, such as Fortune 500 companies and U.S. government agencies, to identify threats, optimize resources and integrate best-fit solutions that mitigate risk. Senior Cloud Security Engineer (Hybrid/Multi-Cloud) - REMOTE, Work will be remote with candidates located in Morrisville, NC; Falls Church, VA; or Eagan, MN given preference. Non-local support will be considered for highly qualified candidates. As a Senior Cloud Security Engineer, you will directly implement technical strategy for securing a massive hybrid ecosystem comprising 30,000+ physical sites and diverse multi-cloud tenants. You will be responsible for building the automated "guardrails" that protect our assets, data, and identity fabric across private data centers and public cloud environments. Your mission is to ensure a high-quality security posture through continuous efficacy assessments, fraud mitigation, and proactive threat detection. Responsibilities - Security Posture & Compliance Automation: Design and implement automated compliance assessments to enforce hardening standards (CIS, NIST) across cloud accounts and on-premises virtualized environments. - Asset & Data Security: Architect and maintain the security of our sprawling asset inventory. Implement data-at-rest and data-in-transit encryption strategies that span from physical data center servers to cloud-native storage. - Identity & Fraud Mitigation: Develop and secure the "Identity Fabric" linking 600k+ employees and millions of commercial customers. Collaborate with Fraud teams to integrate signals from SIEM and Databricks to detect and block malicious account activity. - Hybrid Engineering: Build and manage secure connectivity (Transit Gateways, Service Mesh) between on-premises hypervisors and multi-cloud environments, ensuring consistent policy enforcement. - Threat Detection & Response: Partner with the SOC to develop high-fidelity detection logic. Build SOAR playbooks that automate the isolation of compromised cloud workloads or on-premises VMs. - Efficacy Assessment: Support ongoing "Purple Team" exercises and control testing to validate that security tools (EDR, WAF, DLP) are performing as intended across all tenants. - AI/ML Security Governance (Adversarial Defense): Establish security guardrails for the enterprise’s internal and customer-facing AI models. This includes protecting Databricks training pipelines from data poisoning and implementing mitigations for LLM-specific threats like prompt injection and sensitive data leakage. - Hyper-Automation of Security Operations: Drive the transition from manual "click-to-operate" security to Autonomous Security Operations. This involves building advanced SOAR playbooks that use ML-based triggers to perform auto-remediation across hybrid environments without human intervention. - Business Process Streamlining: Partner with business units to integrate security "invisibly" into their workflows. Use automation to reduce "security friction" in logistics and retail operations, ensuring that compliance checks (like PCI or SOC2) are performed continuously and programmatically. - AI Asset Management: Discover and catalog "Shadow AI" usage across the enterprise, ensuring all third-party AI tools meet the enterprise’s privacy and security standards. Requirements - Cloud Fluency: Expert-level knowledge of security architectures in AWS, Azure, and Google Cloud. - Infrastructure as Code (IaC): Mastery of Terraform, Ansible, or CloudFormation to deploy and manage security configurations at massive scale. - Big Data Analytics for Security: Ability to leverage Databricks to perform deep-dive analysis on billions of logs for threat hunting and efficacy reporting. - Container & Orchestration Security: Experience securing Kubernetes (EKS/AKS/GKE) and Docker environments, focusing on runtime protection and image integrity. - Identity Mastery: Proficiency with OAuth 2.0, SAML, and CIAM solutions for large-scale customer and employee authentication. - Security Data Science: Proficiency in using Python (PySpark/Pandas) within Databricks to build custom anomaly detection models that go beyond standard SIEM correlation rules. - Generative AI Security: Knowledge of the OWASP Top 10 for LLMs and experience implementing AI gateways or "firewalls" to monitor and filter AI-generated traffic. - API-First Automation: Deep expertise in building "glue code" that connects disparate COTS and custom applications via secure, automated APIs to streamline cross-functional business activities. - Algorithmic Literacy: The ability to explain to non-technical stakeholders how AI-driven security decisions (like blocking a suspicious $1M commercial transaction) are made and how to handle "false positives" at scale. - Efficiency Mindset: A relentless focus on identifying repetitive manual tasks (e.g., firewall rule reviews, access audits) and replacing them with self-healing, automated systems. Education/Experience - 8+ years in a technical Cybersecurity Engineering role, with at least 4 years focused on large-scale cloud or hybrid environments, and a portfolio of projects where AI or Machine Learning was directly applied to solve security or operational scaling problems. - B.S. or M.S. in Computer Science, Information Security, or a related technical field required. - Demonstrated experience managing environments with 10,000+ workloads and high-availability requirements for retail/commercial applications. - Experience with CI/CD and GitOps workflows, treating security configurations as code that is automatically tested and deployed. Preferred Certifications - CISSP (Certified Information Systems Security Professional) - CCSP (Certified Cloud Security Professional) - Cloud-specific Professional Security Certifications (e.g., AWS Certified Security – Specialty or Google Professional Cloud Security Engineer). Additional Provisions: - Pass a client mandated clearance process to include drug screening, criminal history check and credit check. - Once candidate’s resume is approved and interview passed, the agency is responsible for providing drug screening. Failure to submit the drug screening results will delay the security clearance process. - If a candidate is given an interim clearance, continuation of employment is then based on the candidate receiving a sensitive clearance. - All candidates must be a US Citizen or permanent status Green Card holder. - Cannot have more than 6 months travel outside the United States within the last five years. Military Service excluded. (Exception does not include military family members.) - All overtime must be pre-approved in writing by the client manager or his/her designated representative. - Agency will not be reimbursed for overtime charges without previous written authorization. Authorized overtime will be reimbursed at straight time. - The enforced dress code is business casual, i.e., collared shirt with slacks for men, no skirts above the knee for women. “Applicants selected will be subject to a security investigation and must meet eligibility requirements for access to classified information.” We use Greenhouse Software as our applicant tracking system and Zoom Scheduler for HR screen request scheduling. At times, your email may block our communication with you. Please be sure to check your SPAM folder so that you don't miss updates on your application. Why GuidePoint? GuidePoint Security is a rapidly growing, profitable, privately-held value added reseller that focuses exclusively on Information Security. Since its inception in 2011, GuidePoint has grown to over 1,200 employees, established strategic partnerships with leading security vendors, and serves as a trusted advisor to more than 6,200 customers. Firmly-defined core values drive all aspects of the business, which have been paramount to the company’s success and establishment of an enjoyable workplace atmosphere. At GuidePoint, your colleagues are knowledgeable, skilled, and experienced and will seek to collaborate and provide mentorship and guidance at every opportunity. This is a unique and rare opportunity to grow your career along with one of the fastest growing companies in the nation. Some added perks…. - Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions) - Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family). If you choose the High Deductible / HSA plan, GPS will contribute in 4 equal quarterly installments: ($850 per EE annually / $1750 per family annually (includes spouse/children/family options) - Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans - 12 corporate holidays and a Flexible Time Off (FTO) program - Healthy mobile phone and home internet allowance - Eligibility for retirement plan after 2 months at open enrollment - Pet Benefit Option

Role Description We at Coforge are hiring for the position of Mid Security Engineer (21341) with the following skill set. Qualifications - Experience in SecOps cloud roles, coupled with industry-standard in security operations teams. - Foundational knowledge/experience in DevSecOps & Pipeline Integration. - Hands-on experience with AWS cloud platforms and containerization technologies like Docker and Kubernetes. - Ability to implement security controls and best practices for infrastructure as code (IaC) and cloud environments. - Understanding of how security operations impact compliance requirements like GDPR, HIPAA, PCI-DSS, or SOC 2. - Proficiency in creating executive-level dashboards that translate operational data into business value and risk posture. - Experience developing and refining Standard Operating Procedures (SOPs) and playbooks. - Deep knowledge of configuring, tuning, and managing Security Information and Event Management (SIEM) Crowdstrike Falcon. - Experience with the entire Incident Response (IR) lifecycle. - Proficiency in security process automation via orchestration frameworks and scripting. - Proven ability to manage CrowdStrike Falcon within highly ephemeral AWS environments. - Proficiency in scripting languages such as Python. Requirements - Crowdstrike Falcon Complete Certifications (Administrator). - Advanced security certifications such as CISSP, CEH, or AWS Certified Security Specialty. - Experience with DevSecOps tools and practices, specifically focusing on DevSecOps automation and shift-left security. - Experience with infrastructure as code tools such as Terraform, Ansible, or Chef. - Experience in developing strategic security roadmaps. - The ability to explain complex technical incidents, risks, and remediation steps to non-technical stakeholders (including the CISO). Company Description At Coforge, we hire professionals based solely on their skills and do not discriminate based on age, disability, religion, gender, sexual orientation, socioeconomic status, or nationality.

Role Description We at Coforge are hiring for the position of Sr Security Engineer (21342) with the following skill set. - Experience in SecOps cloud roles, coupled with industry-standard in security operations teams. - Foundational knowledge/experience in DevSecOps & Pipeline Integration: - Deep understanding of CI/CD workflows. - Ability to collaborate with engineering teams to bake security controls and sensors directly into AMIs and container base images prior to runtime. - Hands-on experience with AWS cloud platforms and containerization technologies like Docker and Kubernetes. - Ability to implement security controls and best practices for infrastructure as code (IaC) and cloud environments. - Regulatory Compliance: - Understanding of how security operations impact compliance requirements like GDPR, HIPAA, PCI-DSS, or SOC 2. - Ensuring that logging and incident response procedures meet audit standards. - Metrics & Reporting: - Proficiency in creating executive-level dashboards that translate operational data into business value and risk posture. - Process Optimization: - Experience developing and refining Standard Operating Procedures (SOPs) and playbooks to ensure consistent service delivery. - SIEM: - Deep knowledge of configuring, tuning, and managing Security Information and Event Management (SIEM) Crowdstrike Falcon. - Incident Response (IR) Lifecycle: - Experience with the entire IR lifecycle (Preparation, Identification, Containment, Eradication, Recovery, and Lessons Learned). - Proficiency in security process automation via orchestration frameworks and scripting. - Cloud-Native EDR Lifecycle Management: - Proven ability to manage CrowdStrike Falcon within highly ephemeral AWS environments. - Proficiency in scripting languages such as Python. Qualifications - Crowdstrike Falcon Complete Certifications (Administrator). - Advanced security certifications such as CISSP, CEH, or AWS Certified Security Specialty. - Experience with DevSecOps tools and practices, specifically focusing on DevSecOps automation and shift-left security. - Experience with infrastructure as code tools such as Terraform, Ansible, or Chef. - Experience in developing strategic security roadmaps. - Technical Translation: The ability to explain complex technical incidents, risks, and remediation steps to non-technical stakeholders (including the CISO). Requirements - AWS cloud platforms. - Crowdstrike Falcon Complete (Cloud Security Module, Endpoint). - Security Information and Event Management (SIEM) solutions. - Vulnerability scanners and Intrusion Detection Systems (IDS). - Abnormal (Email Security). - Cloudflare (Warp/VPN) and/or leading industry competitor. - Jira. - Confluence. - Slack. - Datadog. - Docker and Kubernetes. Company Description At Coforge, we hire professionals based solely on their skills and do not discriminate based on age, disability, religion, gender, sexual orientation, socioeconomic status, or nationality.