Title: Cyber Security Instructor Job Description: Full-time Description Schedule - Class schedule works well even if you already have a daytime job Work from Home (WFH) - Remote work must be performed while residing in California, New Mexico, Florida, or Massachusetts CIAT Campus Locations: San Diego, CA and Albuquerque, NM Reports to: Associate Dean of Education Status: Exempt Employment Type: Full-Time Summary Are you passionate about positively changing the lives of others? California Institute of Applied Technology (CIAT) is growing and seeking educators and professionals with a passion for mentoring others. If this is you, please contact us! CIAT prepares students for professional success by offering practical training in today’s most competitive technology fields to make sure students are job-ready. With a large selection of courses, flexible schedules, and an online campus, we aim to empower the working student. We are laser-focused on student success, whether just starting out, making a career change, or transitioning into civilian life, CIAT prepares students for success! Teaching: - Available to teach synchronous online courses via Microsoft Teams - Plan and organize instruction in ways that maximize student learning and engagement - Modify, where appropriate, instructional methods and strategies to meet diverse student’s needs - Employ appropriate teaching and learning strategies to communicate subject matter to students - Current certifications in subjects taught - Lead applicable certification test preparation sessions once a term - Provide regular student support sessions when needed Curriculum Development: - Responsible for updating applicable course shells, master templates including syllabus, exams banks, discussion questions, assignments, and assessments - Contribute to the selection and development of instructional materials in accordance with course objectives - Contribute to maintaining currency of curriculum, syllabi, and textbooks - Review training material/deliverables and provide recommendations on the accuracy of and relevancy of content of curriculum and performance support tools (i.e., canvas, design plans, and other related material) Mastery of Subject Matter: - Demonstrate a thorough and accurate knowledge of their field or discipline - Connect their subject matter with related fields - Stay current in their subject matter through professional development, through involvement in professional organizations, and attending professional meetings, conferences or workshops Adhering to College Policies and Procedures: - Ensure Student Database is fully updated and accurate at all times regarding student grade record information - Maintain compliance with accreditation related to instructional and the quality of education, scheduled class hours requirements and CIAT policies and procedures - Promote collaboration with other staff members and participate in the implementation of new projects, ideas, etc. - Adhere to the CIAT business casual attire. Please refer to the CIAT Employee Handbook for the complete policy Requirements - Appropriate credential, license or certification: - Required: CompTIA Security+, - Highly recommended: CompTIA Pentest+ or CySA+, or CISSP or CGRC, or CEH - Information Technology Instructors must provide official transcripts of bachelor's (or higher) degree and active/current certification on the subject being taught - General Education Instructors must provide official transcripts of bachelor's and master's (or higher) degrees that include at least 18 units on the subject being taught - At least three years’ experience in the respective field OR two years of teaching experience - Advanced subject matter expertise preferred with a commitment to ongoing professional development and staying current with developments in the field - Synchronous online teaching experience preferred - Curriculum development experience preferred - Effective presentation skills - High level of flexibility, creativity and dependability - Good working knowledge of MS Office applications including Microsoft Teams, Word, Excel, and PowerPoint as well as learning technologies such as Canvas - Work independently with minimal supervision - Ability to multitask - Problem solve rapidly and effectively, in a timely manner - Able to work assigned schedule if needed depending on schedule and coverage - Works with a sense of urgency, while engaging and listening to coworkers from other departments - Ability to work collaboratively with colleagues, academic departments, and administration to support student success, achieve institutional goals and contribute to a positive and inclusive culture - Commitment to fostering an inclusive and supportive learning environment that respects the diversity of students' backgrounds, experiences, and perspectives - Knowledge of current trends, best practices, and didactic approaches in higher education - Demonstrated ability to deliver engaging and effective lesson plans that meet the diverse needs of students - Strong communication skills, both verbal and written, with the ability to effectively convey information and interact with students, colleagues, and others - Possess high ethical standards, being an example of professionalism to others - Compliance with all college policies, procedures, and regulations, including those related to academic integrity, student conduct, and instructional delivery - Must be able to embody CIAT’s mission, vision and values Position Type and Expected Hours of Work This is a full-time position. Days and hours of work are usually Monday through Saturday, including evenings. Working on Sundays may also be required. Supervisory Responsibility This position has no supervisory responsibilities. Location This is a remote position. Work must be conducted in locations that have been approved by the company. Company authorization is necessary for relocation or work from other locations, even if temporarily. Values Values such as integrity, excellence, customer service, teamwork and mutual respect are some of those that remain constant, regardless of changes in our company. When identifying company values, it is important that those values are being demonstrated in the course of business each day. Our values set expectations for how employees and managers interact with every person while representing the company. - We are passionate about education and student success - We value integrity and excellence in our employees and students - We treat ourselves and our students with dignity and respect - We believe in and encourage innovation at our school to better help our students succeed - We have a customer centric focus and we want people highly committed to achieving goals, where our success equals student’s success - We are accountable for our actions and focus on improvements moving forward - We have a growth mindset with a sincere belief that every student can do better and achieve their goals - We expect every employee to be an example of conduct and professionalism, being a role model to students and colleagues - We commit to fostering an inclusive and supportive learning environment that respects the diversity of students' backgrounds, experiences, and perspectives - We foster lifelong learning and professional development Physical Demands These physical demands are representative of the physical requirements necessary for an employee to successfully perform the essential functions of the job. Reasonable accommodation can be made to enable people with disabilities to perform the described essential functions: - Essential functions of this role require sitting for extended periods of time - Ability to type, use a computer to search for information and input information while speaking on the phone is required - The employee will frequently be required to use the computer, mouse and telephone to conduct the regular tasks of this role - The employee will be required to compute simple to simple mathematical calculations as a normal part of this role Work Environment While performing the responsibilities of this remote position, the job holder will work in a home office environment. Reasonable accommodations may be made to enable people with disabilities to perform the essential functions of the job. This role routinely involves using standard office equipment such as computers, phones, and virtual communication tools. Employees are expected to ensure that their home office is a safe and ergonomic working environment. Employees must maintain data security and confidentiality in accordance with company policies and use secure connections for all work-related activities. Expectations regarding work hours, availability, and time tracking will be clearly communicated and must be adhered to. The company is not responsible for maintaining home office environments beyond the provision of reasonable accommodations and necessary work-related equipment. Workers' compensation and liability for injuries that occur in the home office will be covered as per company policy and applicable laws. This remote work policy is designed to comply with all relevant local, state, and federal laws. In the Office: When in the office, employees are expected to follow all workplace safety rules, security protocols, and professional conduct guidelines. They should maintain a clean and organized work area, be punctual, and actively engage in in-person meetings, collaboration, and training as scheduled. The in-office environment may involve occasional noise, shared workspaces, and use of common areas, and employees are expected to be respectful of others working nearby. AAP/EEO Statement California Institute of Applied Technology provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, or genetics. In addition to federal law requirements, the California Institute of Applied Technology complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training. California Institute of Applied Technology expressly prohibits any form of workplace harassment based on race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, or veteran status. Improper interference with the ability of California Institute of Applied Technology’s employees to perform their job duties may result in discipline up to and including discharge. Other Duties Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time, with or without notice. #ZR

• Develop and deliver cybersecurity artifacts for product software releases, including SBOMs, vulnerability remediation evidence, and release security documentation. • Lead technical reviews with development teams to discuss vulnerabilities, security controls, remediation progress, and residual risk. • Prioritize vulnerability remediation and patching efforts based on business impact, proof of exploit, and policy requirements, partnering with engineering, PMs, and product owners to drive timely risk reduction. • Design and recommend systematic remediation strategies and preventive controls to reduce recurring vulnerabilities, including secure coding practices, dependency management, and configuration hardening across product and supporting applications. • Triage and analyze findings from application, network‑based, and agent‑based security scanning tools (SAST, DAST, SCA, infrastructure scanners) to determine true security impact, validate exploitability, and distinguish false positives. • Validate security fixes through hands‑on testing, including web application testing using tools such as Burp Suite and Postman, and verification of remediation for iOS and Android mobile application vulnerabilities. • Clearly communicate complex technical security concepts to executive leadership and cross‑functional stakeholders, translating vulnerability findings, security controls, and security metrics into business‑relevant risk insights and decision support. • Lead remediation efforts after security assessment findings outline weaknesses requiring attention. • Support the advancement of cyber threat and vulnerability management program to ensure consistent identification, analysis, response, and monitoring of cyber security threats, events, and vulnerabilities. • Leverage JIRA for security project and vulnerability management, building dashboards, reports, and automation workflows to track remediation progress, improve visibility of security metrics, and streamline coordination across cross‑functional teams. • Participate in cross-functional team coordination to achieve defined security goals as well as meet technical requirements in support of detailed implementation plans for security projects. • Provide technical advice and training about potential security risks and prevention strategies.

• Plan, coordinate and implement security solutions • Provide strategic and operational advice to clients on information security, ISMS and regulatory requirements (especially NIS2) • Manage measures for the sustainable implementation of security concepts • Establish, further develop and document ISMS according to ISO 27001 / ISO 2700x • Conduct gap analyses, risk assessments and maturity assessments • Prepare and support ISO 27001 certifications and internal/external audits • Implement and assess NIS2 requirements, including governance, risk management and reporting processes • Prepare and support regulatory assessments and examinations (e.g., NIS2) • Design and deliver training and awareness measures • Develop and improve incident management and contingency/emergency plans • Create business continuity plans and security policies

Role Description We are seeking a mid-level Cloud Security Engineer to join our Security Engineering team. This role is the first dedicated hire for cloud security within the organisation and will be critical in defining, implementing, and managing security controls across our Azure, AWS and SaaS environments. The successful candidate will work independently, reporting to the Head of Security Engineering, while collaborating with SOC, GRC, IT, Modern Workplace and Systems Engineering teams to build and mature our cloud security posture. Key Responsibilities - Cloud Security Framework: Define and implement the cloud security Framework in collaboration with IT Systems, SOC leadership, and GRC. - Implementation: - Recommending security best practices and implementing controls for Cloud Security and governance. - Implementation of automated security tooling to validate security requirements and identify potential issues. - Threat Detection & Incident Response: - Define threat detection and incident response processes and playbooks for cloud environments. - Collaborate with the SOC to operationalise detection rules and incident handling. - Compliance & Audit: - Support GRC in meeting evidence and compliance requirements for ISO27001, NCSC Cloud Security Principles, and SOC2. - Reviewing the outputs from security tools and security practices, filtering and prioritising these into security stories that can be understood and actioned by the delivery teams. - Collaboration & Enablement: - Influence and guide junior engineers and developers to adopt secure practices. - Upskill and train the wider security team in cloud security topics and tooling. - Identity & Access Management: - Provide input into IAM strategy and policy (RBAC, Conditional Access, MFA, least privilege), working closely with the IT and Systems teams. - Optional / Beneficial Areas: - Support automation of cloud security (IaC scanning, CI/CD integration). - Document standards, runbooks, and training material where appropriate. Qualifications - Previous experience in cloud security engineering or related roles. - Working knowledge of industry cloud security frameworks and best practice (CSA STAR, NCSC Cloud Security Principles). - Experience with automation and scripting (Python, PowerShell, Bash). - Proficiency with: - Azure security services: Defender for Cloud, Entra ID, Sentinel etc. - AWS security services: Security Hub, GuardDuty, IAM, Config, CloudTrail, CloudWatch. - Working knowledge of cloud incident response processes and procedures. - Strong understanding of security best practices in multi-cloud environments. Desirable Skills & Experience - Familiarity with Infrastructure as Code (Terraform). - Knowledge of cloud network security concepts (firewalls, NSGs, VPCs, private endpoints). - Exposure to compliance frameworks (ISO27001, SOC2, NCSC Cloud Security Principles). - Security certifications such as AZ-500, SC-100, AWS Security Specialty, CISSP, or CCSK. Embracing our differences At Kainos, we believe in the power of diversity, equity and inclusion. We are committed to building a team that is as diverse as the world we live in, where everyone is valued, respected, and given an equal chance to thrive. We actively seek out talented people from all backgrounds, regardless of age, race, ethnicity, gender, sexual orientation, religion, disability, or any other characteristic that makes them who they are. We also believe every candidate deserves a level playing field. Our friendly talent acquisition team is here to support you every step of the way, so if you require any accommodations or adjustments, we encourage you to reach out. We understand that everyone's journey is different, and by having a private conversation we can ensure that our recruitment process is tailored to your needs.