Role Description Join our Security Engineering team as a Security Engineer who builds, not just operates. You will design and build security systems that protect our AI-driven platform at scale—whether that means securing cloud infrastructure and data pipelines, embedding security into our AI-powered products, engineering the detection and automation capabilities that keep us ahead of threats, or protecting corporate infrastructure and ensuring secure, well-architected business systems. You will own your work end-to-end and grow into one of our four specialization tracks as the team and your profile develop together. As a Security Engineer at Aily, you are a software engineer with deep security expertise. We are not looking for people who configure existing tools; we need engineers who write production-quality code to solve hard security problems in an AI-first company. You will face problems of the AI age: - Securing complex data flows across distributed systems - Protecting AI models and training pipelines - Building detection logic against real threats - Designing products that handle highly regulated data safely You will own projects from design through deployment and work closely with Engineering, Data Science, Platform, and Product teams. Where You’ll Specialize Our Security Engineering team operates across four tracks. You’ll share your preference during the process; we’ll confirm fit and align on where you’ll have the most impact: - Platform Security - Build the security infrastructure that protects Aily’s cloud platform, AI pipelines, and data ecosystem. - Design and build security automation systems and platforms — from control monitoring to advanced threat detection capabilities or agentic red teaming. - Secure complex data flows, data lakes, and AI training pipelines; implement DLP strategies at scale. - Protect AI models from adversarial attacks, data poisoning, and unauthorized access. - Implement cloud security controls for AWS environments and codify security policies through Infrastructure as Code. - Product Security - Embed security into our AI-powered products from the start, working closely with Product and R&D teams. - Design security architectures for AI/ML systems handling regulated data. - Conduct threat models and security architecture reviews across all engineering teams. - Design authentication and authorization architectures (SSO, OAuth/OIDC, RBAC/ABAC) and review third-party integrations. - Ensure GDPR/CCPA/EU AI Act compliance and integrate SAST/DAST into CI/CD pipelines. - Security Operations - Write production-quality code to build the detection logic and agentic observability platform that keeps Aily ahead of threats. - Design detection strategies against real attacker TTPs — from signal engineering to response workflows. - Build and operate an AI-native, agentic Security & Governance Observability Platform with autonomous agents that ingest telemetry, correlate signals, and execute responses. - Build data pipelines for security telemetry at scale and design intelligent automation that eliminates repetitive work. - Design incident response playbooks and automated remediation workflows across endpoint, cloud, and identity domains. - Corporate Security - Protect corporate infrastructure, ensure secure and well-architected business systems, and govern company-wide AI usage and agentic tooling. - Design and implement security controls for corporate infrastructure — MDM, identity management, endpoint security, and access control architectures. - Build security automation and tooling for compliance and policy enforcement across corporate systems. - Define and enforce policies for company-wide AI usage and agentic tooling — ensuring safe adoption, data boundaries, and governance guardrails. - Review and validate architectural decisions for business systems (HRIS, CRM, Finance, Legal, BI) from Security and Data Architecture perspectives. - Provide Enterprise Architecture governance — ensuring business systems meet security and architectural standards through review, patterns, and guidance. Qualifications - Software engineer who writes production-quality code to solve security problems — not just configure tools. - Strong systems thinking and ability to design at scale. - Cloud security experience (we use AWS) — Kubernetes, containers, cloud-native architectures. - AI-first mindset — you use AI tools daily and thrive in an AI-native environment. - Offensive security or red teaming background. - Clear communicator across technical and non-technical teams. Requirements - Platform Security: - DLP in production environments. - Securing data-intensive systems (data lakes, analytics, AI pipelines). - Building security platforms or governance tooling from scratch. - Product Security: - Privacy engineering (GDPR/CCPA). - Security architecture for AI/ML and regulated data. - Threat modeling · IAM (SSO, OAuth/OIDC, RBAC/ABAC). - Regulatory compliance (EU AI Act, HIPAA, SOX). - Security Operations: - Detection engineering against real TTPs. - Incident response or threat hunting. - Working with large-scale security telemetry. - Corporate Security: - Corporate Security systems (MDM, identity management, endpoint security). - Identity and access management (Okta, Entra ID, Azure AD). - Enterprise architecture review and governance. - AI usage governance and agentic tooling security. Benefits - Build security from the ground up at an AI-first company — our security platform is greenfield, not legacy. - Work where using AI to solve problems is expected and encouraged, not discouraged — we are building one of the most advanced agentic security capabilities in the industry. - Own your work end-to-end with real impact across the company, not just a narrow slice of a large team. - Enjoy the flexibility of remote work, continuous growth, and dedicated training resources to support your professional development.

Design, implementation, and management of our Identity and Access Management (IAM) solutions, ensuring the confidentiality, integrity, and availability of our organization's data and systems.

Location: Rosemead United States Job Description: Join the Clean Energy Revolution Become a Cybersecurity Senior Advisor at Southern California Edison (SCE) and build a better tomorrow. In this role, you'll be part of SCE's Cybersecurity Exposure Team, leading deep, hands-on risk assessments across enterprise technology and critical operational environments (IT/OT). You'll identify priority systems and threat scenarios, validate control effectiveness, and translate findings into practical risk treatment plans with clear owners and measurable outcomes. Exposure Team members collaborate with internal teams and trusted third parties to drive remediation through to closure and ensure risk is continuously managed. Additionally, you'll: - Partner with infrastructure teams to perform threat modeling and attack-path analysis, then recommends concrete platform and network changes (segmentation, identity controls, hardening, logging) that close gaps and reduce exposure. - Lead deep-dive cybersecurity assessments with IT and Quality partners: validates controls, performs vulnerability discovery and prioritization, reviews configuration baselines, and drives risk treatment plans; supports investigations and root-cause analysis for security incidents and policy violations. - Drive delivery of complex security initiatives from design through rollout, defining success metrics, managing technical risks and dependencies, and coordinating internal teams and vendors to deliver on time. - Define and maintain secure-by-default baselines across on-prem and cloud environments, implementing hardening standards, access controls, key/secret handling, and automated guardrails to support repeatable secure build and deployment practices. - Create and maintain hardened system profiles and compliance mappings, tracking posture, drift, and remediation progress across enterprise platforms. - Establish repeatable assessment, evidence, and exception-handling methods aligned to information security standards and regulatory requirements, ensuring findings translate into actionable remediation backlogs with clear owners and timelines. As a Cybersecurity Senior Advisor, your work will help power our planet, reduce carbon emissions and create cleaner air for everyone. Are you ready to take on the challenge to help us build the future? Responsibilities - Leads cyber security project delivery by ensuring the cyber security team delivers on success criteria, addresses project issues and risks, and builds commitment with delivery team and internal or external partners. - Designs, implements and maintains a secure posture and baseline across all components of the organization on-premises and cloud IT environments, employing recognized security engineering practices and supporting secure build processes. - Develops, maintains, and delivers secure system profiles, and maintains an overall view of compliance. - Collaborates with the IT and Quality teams to assess, remediate, and prevent information technology risks. Drives system auditing, vulnerability risk assessments, assured file transfers, hardware and software configuration management, data integrity containments and investigations on internal affairs related security violations and incidents. - Ensures that new and existing security applications and systems are successfully integrated during implementations, updates, and patching to maintain or increase our ability to detect and prevent security exploits. - Collaborates with external managed security solution provider and analysts to enhance security solutions to reduce malicious and suspicious activity based on security data analysis, review of the current threat landscape, and assessment of security tickets. - Works with the infrastructure team and security architect to analyze security threats and recommend technical infrastructure and architecture changes to address gaps and reduce risk. - Shapes procedures and methods for auditing and addressing risk and non-compliance to information security standards. - Fosters strong relationships with senior leaders and stakeholders to understand and map out business priorities and how security engagement can be effectively managed to deliver secure design solutions. - A material job duty of all positions within the Company is ensuring the protection of all its physical, financial and cybersecurity assets, and properly accessing and managing private customer data, proprietary information, confidential medical records, and other types of highly sensitive information and data with the highest standards of conduct and integrity. Minimum Qualifications - Ten or more years of experience in information technology, information security and/or cybersecurity. US Citizenship Required. Preferred Qualifications - Bachelor's Degree in Engineering, Information Technology, Cybersecurity, Environmental or Physical Sciences, Business or related discipline. - Familiarity with security frameworks (e.g., NIST CSF / NIST 800-53, ISO 27001) and translating requirements into implementable controls and evidence. - Hands-on security assessment experience across enterprise environments (on-prem + cloud) including control validation, configuration review, penetration testing, code review, and/or vulnerability triage. - CISSP, GSEC, GICSP, or other related security certifications - Strong OS and network fundamentals (Windows/Linux internals, TCP/IP, DNS, PKI/TLS) applied to troubleshooting and security analysis. - Operational Technology exposure (industrial networks, Purdue model concepts, segmentation, asset inventory constraints) or clear willingness to learn OT. Additional Information - This position's work mode is hybrid. The employee will report to an SCE facility for a set number of days with the option to work remotely on the remaining days.  Unless otherwise noted, employees are required to work and reside in the state of California.  Further details of this work mode will be discussed at the interview stage. The work mode can be changed based on business needs. - Visit our Candidate Resource page to get meaningful information related to benefits, perks, resources, testing information, hiring process, and more! - Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. - The primary work location for this position is Rosemead, CA. - Position will require up to 10% traveling and being out in the field throughout the SCE service territory. - This position has been identified as a NERC/CIP impacted position - Prior to being hired, the successful candidate must pass a Personnel Risk Assessment (PRA) or Background Investigation. Once hired, the candidate must complete specified training prior to gaining un-escorted access to assigned work location and performing necessary job duties. - Relocation may apply to this position. About Southern California Edison The people at SCE don't just keep the lights on. Our mission is so much bigger. We're fueling the kind of innovation that's changing an entire industry, and quite possibly the planet. Join us and create a future with cleaner energy, while providing our customers with the safety and reliability they demand. At SCE, you'll have a chance to grow personally and professionally, making a real impact in Southern California and around the world. Southern California Edison is a proud Equal Opportunity Employer, including disability and protected veteran status. We are committed to ensuring that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodations at AskHR@sce.com or (626) 302-3456 and select option 2.

Manager of Security Intelligence Location: Irwindale United States Job Family: Safety, Security & Business Resiliency Pay: $129,200 – $193,700 Job Description: Join the Clean Energy Revolution Become a Manager of Security Intelligence at Southern California Edison (SCE) and build a better tomorrow. In this job, you'll be an integral part of protecting SCE's workforce, customers, facilities, and infrastructure from threats, attacks, disruptions, intrusions, theft, and property damage. As the Manager of Security Intelligence, you will be a working member of the Security Operations & Intelligence team overseeing a small team of analysts. Your work will help power our planet, reduce carbon emissions and create cleaner air for everyone. Are you ready to take on the challenge to help us build the future? Responsibilities - Leads the coordination of intelligence collection, assessments, and shares the results with appropriate business unit leadership to ensure a holistic view of security risk management and regulatory compliance is established. - Manages the daily monitoring of threats to the business including activist organizations, criminal activities, regional and world events that may impact SCE operations. - Develops Intel Team policies and procedures to meet the varied needs of the organization, ensures resources are properly utilized and prioritized, and provides leadership, guidance, and training to team members to meet operational requirements. - Leads and oversees the distribution of work assignments based on workload, skill sets, risk priorities and the performance of vendors and internal teams. - Develops intel security risk strategies and provides guidance to senior security management in operational security and risk-related matters. - Provides leadership and direction during internal and external security risk and regulatory compliance audits, inspections, and surveillances. - Establishes programs and procedures to enforce the quality and reliability of our intelligence and security posture. - Builds external partnerships and internal collaborations for information sharing that is essential for situational awareness in the protection of SCE employees, assets and customers. - A material job duty of all positions within the Company is ensuring the protection of all its physical, financial and cybersecurity assets, and properly accessing and managing private customer data, proprietary information, confidential medical records, and other types of highly sensitive information and data with the highest standards of conduct and integrity. Minimum Qualifications - Five or more years combined experience performing or leading intelligence gathering in a corporate security, military, law enforcement environment, or other US government environment. - Experience in developing intel security risk strategies. - Three or more years of experience in a position where regular reports are delivered in written and oral presentation form to large groups and/or senior leaders. Preferred Qualifications - Bachelor's degree in business administration, criminal justice, communications or an equivalent of education, training, and experience. - Graduate degree in business administration, intelligence or a related field. - ASIS CPP or PSP certification. Intelligence certification. Additional Information - This position's work mode is hybrid. The employee will report to an SCE facility for a set number of days with the option to work remotely on the remaining days.  Unless otherwise noted, employees are required to work and reside in the state of California.  Further details of this work mode will be discussed at the interview stage. The work mode can be changed based on business needs. - Visit our Candidate Resource page to get meaningful information related to benefits, perks, resources, testing information, hiring process, and more! - Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. - The primary work location for this position is Irwindale, CA. However, the successful candidate may also be asked to work for an extended amount of time at (alternate work location). - Position will require up to 20% local traveling and being out in the field throughout the SCE service territory. - This position has been identified as a NERC/CIP impacted position - Prior to being hired, the successful candidate must pass a Personnel Risk Assessment (PRA) or Background Investigation. Once hired, the candidate must complete specified training prior to gaining un-escorted access to assigned work location and performing necessary job duties. - Relocation may apply to this position. About Southern California Edison The people at SCE don't just keep the lights on. Our mission is so much bigger. We're fueling the kind of innovation that's changing an entire industry, and quite possibly the planet. Join us and create a future with cleaner energy, while providing our customers with the safety and reliability they demand. At SCE, you'll have a chance to grow personally and professionally, making a real impact in Southern California and around the world.