• Ensure the security of Pennylane’s application and infrastructure • Engage with Product Team to integrate security in features from design to delivery • Conducting code reviews from a secure development point of view • Detect vulnerability and propose associated patches • Raise the security level of CI/CD configuration • Secure AWS infrastructure, including Kubernetes environment • Conduct and perform regular security assessments on applications and infrastructure • Be involved in security incidents, investigate logs, block attacks • Ensure compliance with ISO 27001 controls related to development • Build/improve secure development training materials

Role Description Eaton’s ES AMER NAS division is currently seeking a Utility Distributor Application Engineer. This is a home-based position and candidates must reside within 75 miles of one of the following locations to be considered for the position: Littleton, CO; Pleasanton, CA; City of Industry, CA; Chandler, AZ; Salt Lake City, UT; Tukwila, WA or Wilsonville, OR. The primary function of the Distributor Application Engineer (DAE) is to achieve acceptability of Eaton’s electrical products in the marketplace, while providing technical leadership for electrical utility distributors and their customers. This position will be responsible for training and applications of Eaton’s products and services. This position will be familiar with competitive product offerings and be able to position Eaton products to best compete against competitive products. In this function you will: - Provide technical support for Eaton products and solutions including submittal drawings and interfacing with electrical distributors and their customers - Conduct product seminars and training on Eaton products and solutions to end users, consultants and sales engineers - Assist customers with design build opportunities - Provide sales support to distributor sales representatives (DSR’s) and electrical distributors Qualifications - Bachelor’s degree from an accredited institution - Minimum five (5) years of electrical sales/marketing and/or electrical engineering experience - Possess a valid driver’s license - No relocation is offered for this position. All candidates must currently reside within 75 miles of Littleton, CO; Pleasanton, CA; City of Industry, CA; Chandler, AZ; Salt Lake City, UT; Tukwila, WA or Wilsonville, OR to be considered. Active-Duty Military Service member candidates are exempt from the geographical area limitation. - Bachelor’s degree in Electrical or Mechanical Engineering (Preferred) - Knowledge of Eaton electrical products, services and competitors (Preferred) - Electrical utility knowledge (Preferred) - Electrical product knowledge (Preferred) - Value selling experience (Preferred) Requirements - Possess excellent communication skills - Must be able to work in the United States without corporate sponsorship now and within the future - Ability to travel 30-60% (primarily local customer travel within assigned territory) - Skillful at leading teams, consensus building and mentoring - Initiative and self-management skills - Presentation and training skills - Understanding of selling techniques and Eaton’s capabilities - Technical knowledge regarding the application of power systems products - Possess knowledge of products, markets channels and associated applications Benefits - Various Health and Welfare benefits - Retirement benefits - Programs that provide for paid and unpaid time away from work

• Customer facing staff responsible for winning business • Application Engineering responsibility for the Power Conversion General Industrial, Oil & Gas solution portfolio • Developing technical solutions for large Medium Voltage Variable Frequency Drive Systems up to 80MW, large Static Frequency Converters of 100MVA+, large STATCOMs of 100MVAr+ • Evaluate the customer RFP specifications received • Develop technical solutions that is risk mitigated • Prepare detailed technical proposal, discuss and sign-off the technical solution with customer • Work on the MV VFD/SFC/STATCOM and Converter transformer sizing calculations to determine the ratings based on the application requirements in the customer RFP specifications • Prepare detailed RFQ specifications for individual equipment like VFD/SFC/STATCOM, Motors, Converter Transformers, E-Houses, MV Switchgear and other eBOPs • Perform bid evaluation on various quotations received and perform costing exercise in partnership with sourcing counterpart • Work with engineering and project teams to identify technical/project risks and devise/implement a risk mitigation plan • Value sell GEV Power Conversion’s technical solutions to customers in key segments • Support customer meetings with technical product differentiators • Support the GEV commercial risk process & all aspects of the Inquiry to Order process • Work with 3rd party industrial partners to enhance growth opportunities and leverage win-win technology • Work to optimize technical solutions by means of Design To Cost (DTC) and enhance as sold margins for the business

Title: Application Security Engineer Location: Remote US Job Description: Bright Vision Technologies is a forward-thinking software development company dedicated to building innovative solutions that help businesses automate and optimize their operations. We leverage cutting-edge technologies to create scalable, secure, and user-friendly applications. As we continue to grow, we’re looking for a skilled Application Security Engineer to join our dynamic team and contribute to our mission of transforming business processes through technology. This is a fantastic opportunity to join an established and well-respected organization offering tremendous career growth potential. Job Title: Application Security Engineer Location: 100% Remote (Continental United States) Position Type: In-house Bright Vision Technologies SOW engagement (no third-party client or vendor) Experience: 5+ years Salary: 100K – 150K Sponsorship: No new H1B sponsorship available. H1B transfers welcomed for qualified candidates. Employment Type: Full-time, direct W2 with Bright Vision Technologies (no C2C, no 1099, no third-party) Engagement: Long-term, multi-year, aligned to the Bright Vision SOW delivery roadmap Compensation: Competitive base salary commensurate with experience, plus benefits. Employment Terms & Visa Policy This is a 100% remote, full-time, direct W2 position with Bright Vision Technologies. This role is part of Bright Vision Technologies’ in-house Statement of Work (SOW) engagement. The client, end customer, and employer for this position is Bright Vision Technologies — there is no third-party client, vendor, or implementation partner involved. We do not engage in C2C, 1099, or third-party arrangements for this role. BUT STRICTLY NO C2C/1099/3RD PARTY COMPANIES. ALL OUR ROLES ARE W2 AND NO 3RD PARTY BROKERING PLEASE. Candidates must be willing to work directly as a full-time W2 employee of Bright Vision Technologies and contribute to our in-house SOW deliverables. No new H1B sponsorship is available for this role. However, candidates who are currently on a valid H1B visa and require a transfer are welcome to apply. We will support H1B transfers for qualified candidates. For every role, a technical coding assessment is mandatory. Please apply only if you are confident in your technical abilities and hands-on experience. Job Summary We are looking for an Application Security Engineer to embed security throughout the software development lifecycle, partnering with engineering teams to design secure systems, identify vulnerabilities, and reduce risk across our application portfolio. The role blends hands-on offensive and defensive skills with strong communication and collaboration, helping development teams build secure software efficiently rather than slowing them down. The ideal candidate brings deep technical security expertise, strong software engineering fundamentals, and a track record of shipping security improvements that meaningfully reduce risk in production. Key Responsibilities - Conduct threat modeling and security architecture reviews for new and existing applications and services. - Perform manual code reviews, secure design consultations, and pair with engineering teams on hardening critical components. - Operate and tune SAST, DAST, IAST, SCA, and secret-scanning tools across CI/CD pipelines. - Drive vulnerability management workflows including triage, prioritization, owner assignment, and SLA tracking. - Build paved-road libraries and frameworks that make secure patterns the default for engineering teams. - Lead red-team and purple-team exercises against internal applications and drive remediation of identified weaknesses. - Implement and operate runtime protections including WAF, RASP, bot protection, and abuse-detection mechanisms. - Design and enforce secure authentication, authorization, session management, and cryptographic patterns. - Partner with infrastructure and platform teams to harden container, Kubernetes, and cloud environments. - Develop and deliver application security training, lunch-and-learns, and onboarding content for engineering staff. - Respond to security incidents involving application vulnerabilities or active exploitation. - Track and apply emerging threats and CVEs that may affect the application portfolio. - Maintain comprehensive, current technical documentation — including architecture diagrams, design decisions, configuration references, runbooks, and operational procedures — so that the system remains supportable, auditable, and easy to onboard new engineers onto over time. - Stay current with application security research and emerging defensive tooling. Required Qualifications - Bachelor’s degree in Computer Science, Cybersecurity, or a related field. - Five or more years of application security or security engineering experience. - Strong understanding of OWASP Top 10, common vulnerability classes, and modern exploit patterns. - Hands-on experience performing code review across at least two major languages. - Deep familiarity with SAST, DAST, SCA, and CI/CD-integrated security tooling. - Strong understanding of authentication, authorization, and cryptographic primitives. - Experience with cloud security and modern infrastructure controls. - Strong communication skills with technical and non-technical audiences. - Proficiency in at least one programming language for tooling and automation. - Experience working closely with engineering teams in an Agile environment. Preferred Qualifications - Industry certifications such as OSCP, OSCE, GWAPT, or CISSP. - Experience with offensive security tooling and red-team operations. - Bug bounty experience, public CVEs, or open-source security contributions. - Familiarity with AI/LLM application security considerations. - Exposure to regulated industries with strict compliance requirements.