Title: Director, Security Architecture and Engineering Location: Charlottesville United States Job Description: Are you excited to shape the future of cybersecurity architecture while leading high-performing engineering teams? As Director, Security Architecture and Engineering, you'll drive modernization initiatives, embed security into enterprise platforms, and influence strategic technology decisions across the business. The Director, Security Architecture and Engineering leads the design, implementation, and continuous improvement of security architecture and engineering capabilities across the organization. This role is responsible for executing security strategies through scalable, resilient, and secure technology solutions spanning cloud and on-premises environments. With a strong focus on delivery and operational effectiveness, the Director translates enterprise security objectives into actionable architecture standards, engineering roadmaps, and implementation plans. The role leads a team of architects and engineers and works closely with IT and business stakeholders to embed secure-by-design principles and strengthen the organization's security posture. What You'll Do - Lead the transformation of security architecture and engineering capabilities, elevating organisational maturity across cybersecurity and infrastructure - Drive delivery of key initiatives, including major cybersecurity and technology programs, ensuring projects reach clear, successful outcomes - Oversee cloud and infrastructure environments (Azure, AWS), application support, and security engineering practices - Translate enterprise security strategy into actionable roadmaps, standards, and implementation plans - Embed secure-by-design and DevSecOps principles across systems, platforms, and workflows - Champion automation to improve efficiency, scalability, and operational effectiveness - Lead, coach, and develop a high-performing leadership team (3-5 direct reports) across security engineering, NOC, and help desk functions - Strengthen operational performance, particularly within global support functions, driving accountability and service improvement - Build strong cross-functional partnerships to align stakeholders and create shared ownership of outcomes - Establish and track KPIs to measure success and continuously improve delivery and processes - Provide technical leadership on emerging threats, technologies, and best practices What We're Looking For - Significant leadership experience managing and scaling technical teams (typically 10+ people over multiple years) - Proven ability to deliver complex cybersecurity and infrastructure initiatives-not just design them - Strong background in cloud engineering and security (AWS, Azure) and modern infrastructure environments - Deep expertise across key security domains (e.g. IAM, network security, monitoring, encryption, cloud security, A/V, Mobility) - Experience driving automation and process improvement within engineering or security functions - A collaborative leadership style that builds alignment, influence, and trust across teams - Strong communication skills with the ability to translate technical concepts into business outcomes - Experience operating in environments undergoing transformation or change - Knowledge of frameworks such as NIST or ISO 27001are beneficial but optional - Relevant certifications (e.g. CISSP, CISM, cloud security) are beneficial but optional Why Join Us - Shape the future: Play a critical role in a multi-year cybersecurity transformation programme with real organisational impact - Leadership exposure: Report directly to the CISO and influence strategy at the highest level - Build and evolve: Lead a function with strong foundations and clear opportunities for improvement and innovation - Career progression: This role is a recognised pathway toward future CISO-level opportunities - Global impact: Work across a diverse, international organisation spanning the US, UK, and APAC - Autonomy and flexibility: Remote-first role with the ability to make meaningful, lasting change - Collaborative culture: Partner with experienced leaders and teams committed to continuous improvement At CFA Institute, we are committed to transparency and equity in our hiring process. In compliance with wage transparency laws in many of the jurisdictions in which we recruit, we provide the following information regarding compensation for this position: Expected salary range: $122,300 - $163,100 per year. All salary ranges are subject to adjustment based on experience, education, and other factors relevant to the position. Additional benefits include eligibility for an annual incentive bonus, a 12% employer contribution to a 401(k) or pension plan, and a comprehensive medical benefits package. #LI-TB1 About CFA Institute CFA Institute are the global leader in investment excellence and ethics. With nearly 200,000 charterholders across 160 markets, we drive professional growth, ethical behavior, and better markets. We care about our employees' well-being, offering industry-leading benefits like: - Comprehensive health coverage for you and your family - Generous leave and time off - Competitive retirement plans - Flexible work options - Wellness, education, and support programs If you feel this opportunity could be the next step in your career, we encourage you to click "Apply" and complete our three-minute application. Be part of a team committed to putting investors first and growing economies. Follow us @CFAInstitute on LinkedIn and X. Important Message: Your application must clearly demonstrate how you meet the requirements as CFA Institute cannot make assumptions about your education, experience, or location. We thank all those who apply. Only those selected for further consideration will be contacted. We are an Equal Opportunity Employer. CFA Institute prohibits both discrimination and harassment with regard to all identifying characteristics: any individual employee, group of employees, or prospective employee on the basis of race, color, national origin, citizenship or immigration status, religion, creed or belief, age, marital or partnership status, marital or family status, care giver status, pregnancy and maternity, sexual and other reproductive health decisions, physical abilities/qualities, disability, sexual orientation, gender, gender identity or expression, predisposing genetic characteristic, military or veteran status, status as a victim or witness of domestic violence or sex offense or stalking, unemployment status, infectious disease carrier status, migrant worker status, educational background, socio-economic status, geographic location and culture or any other basis protected by applicable law. This policy impacts all aspects of employment, including but not limited to, recruitment, hiring, compensation, training, development, promotion, demotion, layoff, recall, furlough, transfer, leave of absence, and dismissal. This is a global policy that applies to all CFA Institute employees, regardless of location. If, due to a disability or current medical condition, you need an accommodation or assistance to complete a job application, you can request one at any stage of the recruitment process. Please send an email to humanresources@cfainstitute.org noting the accommodations or assistance you are requesting. Please do not include any medical or health information in this email. We will review your request and contact you to discuss the possible options and arrangements. We will try our best to provide you with an accommodation or assistance that meets your needs and respects your preferences. Our application is not compatible with Internet Explorer (IE). We recommend using Chrome.

Role Description We are seeking a Director of Security Architecture & Engineering to lead the strategy, design, and delivery of enterprise security architecture, security engineering, application/product security, AI security enablement, and security automation capabilities. This leader will help modernize the security program for a rapidly evolving technology and threat landscape by advancing secure-by-default architecture, scalable controls, pragmatic automation, and safe use of AI across business and security use cases. The role will partner closely with Security Operations, IAM, GRC, Engineering, Infrastructure, Enterprise Architecture, Data, AI, Product, and business leaders to reduce risk, improve execution, and enable secure technology outcomes across regulated, modern, and legacy environments. Qualifications - 10+ years of progressive experience in cybersecurity, with significant leadership experience spanning security architecture, security engineering, application security, product security, security automation, AI security, and/or closely related domains. - Experience leading senior technical teams and managing a mix of full-time employees, contractors, consultants, vendors, and external partners. - Demonstrated ability to build or mature security functions, including role clarity, operating model design, prioritization, hiring, coaching, and delivery accountability. - Strong background in enterprise security architecture and the design of scalable security patterns and controls for regulated, hybrid, cloud, SaaS, application, identity, data, and AI-enabled environments. - Practical experience leading security engineering functions across cloud security, identity, endpoint/server hardening, automation, infrastructure security, SaaS security, and control implementation. - Experience building or maturing application and product security programs, including secure SDLC practices, secure design, threat modeling, code and pipeline security, SAST/DAST/SCA/IaC, vulnerability remediation, and developer engagement. - Familiarity with AI security, agentic AI considerations, data security, AI governance, AI-generated code risks, model/tool access control, prompt and data leakage risks, shadow AI, and safe AI enablement patterns. - Experience or strong working knowledge of non-human identity security, including service accounts, API keys, OAuth applications, tokens, secrets, machine identities, agent identities, ownership, lifecycle management, least privilege, and automated revocation. - Experience applying automation to security engineering, application security, vulnerability triage, remediation workflows, compliance evidence, control validation, or reporting. - Demonstrated understanding of exposure reduction and impact reduction strategies, including ZTNA, microsegmentation, egress filtering, privileged access controls, phishing-resistant MFA, device posture, hardening, and compensating controls for legacy systems. - Demonstrated ability to partner effectively with Engineering, Infrastructure, Architecture, Data, AI, Product, Legal, Procurement, Finance, Talent, GRC, IAM, SOC, and executive stakeholders. - Strong judgment in balancing strategic direction with pragmatic execution in lean, evolving, or resource-constrained organizations. - Excellent communication skills, including the ability to simplify complex technical topics, explain risk and tradeoffs, influence senior leaders, and align technical teams around outcomes. - Experience in healthcare, regulated environments, or other complex enterprise settings. - Experience designing controls that support regulatory compliance requirements, including HIPAA and related security, privacy, and assurance expectations. - Familiarity with modern cloud-native architectures, DevSecOps practices, enterprise platform transformation, application modernization, and resilient infrastructure and application design. - Experience rationalizing or modernizing security tools and processes, including vendor evaluation, integration strategy, automation opportunities, build-vs-buy decisions, and measurable value realization. - Background supporting secure architecture and engineering in hybrid environments with both legacy and modern platforms. - A strong technical leader with architectural depth, engineering credibility, and the ability to assess modern security products, AI-enabled capabilities, and automation opportunities. - Comfortable operating in a lean organization where prioritization, leverage, and cross-functional influence matter. - Able to set direction while also driving execution, removing blockers, and holding teams accountable for measurable outcomes. - Skilled at building trust across security, infrastructure, engineering, data, AI, product, and business teams. - Focused on outcomes, not just activity, with a bias toward reducing material risk and enabling the business safely. - Effective in leading teams through change, role clarity, capability uplift, and maturity improvement. - Comfortable inheriting a team with mixed tenure, mixed skill profiles, and contractor support, then shaping it into a more cohesive, automation-enabled function. Requirements - Ensure compliance with HIPAA regulations and requirements. Benefits - Medical, dental and vision coverage with low deductible & copay - Life insurance - Short and long-term disability - Paid Parental Leave - 401(k) + match - Employee Stock Purchase Plan - Generous Paid Time Off – accrued based on years of service - 10 paid company holidays - Tuition reimbursement - Flexible Spending Account - Employee Assistance Program - Sick time benefits – for eligible employees, one hour of sick time for every 30 hours worked, up to a maximum accrual of 40 hours per calendar year, unless the laws of the state in which the employee is located provide for more generous sick time benefits Company Description Claritev is an Equal Opportunity Employer and complies with all applicable laws and regulations. Qualified applicants will receive consideration for employment without regard to age, race, color, religion, gender, sexual orientation, gender identity, national origin, disability or protected veteran status.

Title: Cybersecurity Architect Job Description: Department:Corp Clrcl-IT 906 Discover a career at Depot Connect International (DCI), a global leader in the Tank/ISO Tank Container Services and Tank Trailer Parts industry. We're more than just a service provider; we're a unified team combining the expertise of industry leaders Quala, Boasso Global, and PSC. Headquartered in Tampa, Florida, with over 160 locations worldwide, our team of over 3,500 employees excels in offering a multitude of mission-critical services. The Mission We are looking for a proficient Cybersecurity Architect to spearhead the strategic planning and management of our global security framework. The ideal candidate will align DCI’s broader business objectives—including CIS compliance, network consolidation, and AWS CI/CD security guidelines with the technical strategies necessary to safeguard our data. Location: Tampa, FL; Channelview, TX; Remote Pay Range: $130,000 - $150,000 annual salary We are not able to offer visa sponsorship at this time. DCI Benefits: - Medical, dental and vision insurance - 401(k) with generous employer match - Paid time off, including 10 paid holidays - Optional health savings account & flexible spending account - Life insurance - Employee assistance program - Parental leave - Referral program - Tuition reimbursement Primary Roles and Responsibilities What You’ll Own: - Architectural Evaluation: Analyze the existing cybersecurity landscape, covering Cloud Security, network controls, Governance, Risk, and Compliance (GRC), and vulnerability management. This also includes evaluating Endpoint Detection and Response (EDR), Security Operations Center (SOC), Security Information and Event Management (SIEM), Identity and Access Management (IAM), and Privileged Access Management (PAM). - Security Assessment: Assess the current-state cybersecurity architecture across Identity and Access Management (IAM), Privileged Access Management (PAM), Endpoint Detection and Response (EDR), Security Operations Center (SOC), Security Information and Event Management (SIEM), vulnerability management, Governance, Risk, and Compliance (GRC), Cloud Security, and network controls. - Architecture Strategy: Define and maintain a target-state and transition architecture, aligned to DCI’s chosen operating model, governing regulations, and compliance requirements. - Advisory & Authority: Provide advisory and act as the single architectural authority to ensure controls are implemented consistently and without overlapping or gaps. - Risk Identification: Identify architectural risks related to Managed Service Provider (MSP) tool ownership, control-plane dependencies, and SOC continuity. - Design Review: Review configurations conceptually for security design correctness (focusing on architecture rather than day-to-day administrative changes) and data flow. - Gap Prioritization: Identify and prioritize high-risk gaps including privileged access, segmentation, endpoint exposure, audit gaps, protocol mismatch, and tier architecture or hybrid layouts. - Remediation Planning: Recommend pragmatic remediation measures aligned to DCI’s specific risk tolerance and budget. - Program Management: Lead and oversee the implementation of the strategy with the internal DCI and external partners. - Zero Trust Implementation: Ensure Zero Trust and "secure by design" principles are applied safely and incrementally to avoid business disruption. - Standards Maintenance: Define and maintain security architecture principles, standards, and reference patterns. - Leadership Support: Support leadership decision-making with detailed architecture options, risk trade-offs, cost vs. benefit views, and environmental or cultural fit assessments. - Cross-Functional Collaboration: Partner with Legal/HR to ensure adherence to GDPR, CCPA, or HIPAA. - Vendor & Compliance Management: Handle vendor coordination, license monitoring, and compliance management with associated third parties. Qualifications: - Education: Bachelor’s or Master’s degree in Computer Science, Cybersecurity, Information Technology, or a related field. - Experience: 10+ years of experience in cybersecurity, with at least 3 years specifically in a security architecture or senior engineering role. - Technical Expertise: Proven experience with cloud security (AWS preferred), IAM/PAM solutions, and SOC/SIEM operations. Willingness and expertise to roll-up the sleeves and work side-by-side with the internal DCI and external partner teams on incidents, forensics and improving DCI’s cybersecurity posture. - Certifications: Professional certifications such as CISSP (Certified Information Systems Security Professional), CCSP (Certified Cloud Security Professional), or CISM (Certified Information Security Manager) are highly preferred. - Skills: Strong understanding of Zero Trust principles, risk management, and regulatory compliance frameworks. - Communication: Exceptional ability to communicate complex technical risks and trade-offs to senior leadership.

Role Description The IT Support / Sysadmin Intern will support the day-to-day IT operations of the company, helping employees with technical issues related to their computers, hardware, software, access, connectivity and internal tools. The role will involve managing IT support tickets through Jira, assisting with the setup and maintenance of employee devices, troubleshooting performance issues, documenting recurring problems and supporting the IT team in keeping our internal systems running smoothly. This internship is designed for someone who wants to gain practical experience in IT support, workplace technology, device management and basic systems administration within a SaaS company. What will you be doing? - IT Ticket Management: Receive, classify, follow up and resolve internal IT support requests through Jira, ensuring clear communication with employees and proper documentation of each case. - Employee Technical Support: Support employees with day-to-day technical issues related to laptops, monitors, peripherals, operating systems, applications, internet connectivity, VPN, access permissions and internal tools. - N1 Security Response: Serve as the primary point of contact for internal security events, managing the initial intake and response for potential threats. Key responsibilities include: - Receiving, triaging and investigating phishing reports submitted by employees. - Documenting and escalating confirmed security threats to the specialized security team. - Supporting incident tracking and internal communication during active security events. - Endpoint and Server Hardening: Support the IT department in the implementation and maintenance of security hardening protocols for both employee workstations and internal infrastructure servers, with a focus on: - Configuring OS-level hardening for Windows and macOS endpoints. - Reviewing and enforcing established security baselines, such as CIS Benchmarks. - Securing internal IT servers and core services. - Maintaining documentation on applied configurations and any identified deviations. - Device Setup and Maintenance: Assist with the preparation, configuration and maintenance of employee computers, including software installation, updates, basic security settings and hardware checks. - Hardware Troubleshooting: Help diagnose and resolve issues related to laptop performance, battery problems, overheating, slow devices, screens, keyboards, docking stations, headsets and other equipment. - Onboarding and Offboarding Support: Support the IT setup for new joiners, including preparing devices, configuring accounts and ensuring they have access to the tools they need. Assist with device recovery and access removal during offboarding processes. - Inventory and Asset Management: Help keep track of IT equipment, devices, accessories and assignments, ensuring records are updated and equipment is properly managed. - Documentation: Create and update internal guides, troubleshooting steps and procedures for recurring IT issues and common employee requests. - Collaboration with Internal Teams: Work closely with People, Tech and other departments to support employee needs and improve internal IT processes. Qualifications - Foundational IT Knowledge: Basic understanding of computers, operating systems, hardware, software installation and common troubleshooting steps. - Security-Aware Mindset: Strong understanding of the importance of security in day-to-day IT work. - User Support Mindset: Willingness to help employees, communicate clearly and provide practical solutions to technical problems. - Attention to Detail: Rigorous and organized approach when handling devices, access, tickets, documentation and IT inventory. - Problem-solving Skills: Ability to investigate technical issues, identify possible causes and escalate when needed. - Communication Skills: Ability to explain technical topics clearly to both technical and non-technical users. - Organization: Ability to manage several requests at the same time, prioritize issues and keep ticket information updated. Requirements - Basic knowledge of Windows and macOS environments. - Basic understanding of hardware components and common laptop performance issues. - Experience or familiarity with ticketing tools such as Jira, Zendesk or similar. - Basic knowledge of Google Workspace administration. - Basic knowledge of user access management and permissions. - Basic networking knowledge, such as WiFi, VPN, DNS, IP or connectivity troubleshooting. - Basic knowledge of endpoint and server hardening practices (e.g. CIS Benchmarks, OS hardening guides). - Familiarity with common phishing patterns and N1 security response procedures. - Interest in cybersecurity, device management, EDR tools and IT operations. - Basic scripting knowledge, such as Bash or PowerShell, would be a plus. Benefits - Opportunity to gain hands-on experience in IT support, internal systems administration and cybersecurity within an established SaaS company. - Mentorship and guidance from experienced professionals. - Practical exposure to employee support, device management, troubleshooting, endpoint hardening, IT documentation and internal operations. - Flexible working hours and the possibility of remote work. - 30h to 35h per week. - 7€/hour.