Space is a warfighting domain. True Anomaly seeks those with the talent and ambition to build the technology that secures it. OUR MISSION True Anomaly delivers decisive capabilities for space superiority. We build autonomous spacecraft, advanced payloads, mission software, and space-based interceptors — enabling the U.S. and its Allies to secure the space environment and counter threats from the ultimate high ground. OUR VALUES - Be the offset. We create asymmetric advantages with creativity and ingenuity. - What would it take? We challenge assumptions to deliver ambitious results. - It’s the people. Our team is our competitive advantage and we are better together. YOUR MISSION Kubernetes security at the scale and complexity of space operations is genuinely hard — and a lot of it is still unsolved. This role exists to change that. As our Staff Kubernetes Security Engineer, you'll build zero-trust foundations and secure paved paths that enable our platform and development teams to ship safely on Kubernetes. You'll own the security posture of our container orchestration platform across multi-cloud environments, architecting security platforms that define how we operate containers in production. Working as part of the Platform Security team, you'll have broad impact across all teams deploying containerized workloads. This is a hands-on technical leadership role where you'll write production code daily while driving strategic security initiatives. You'll thrive on ambiguously hard problems, give yourself the toughest challenges, and have the technical maturity to drive complex security initiatives from conception to production with minimal direction. You'll be working in an AI-native environment where leveraging AI to accelerate your impact is expected. This position requires the ability to obtain and maintain a security clearance. RESPONSIBILITIES - Architect and build security platforms, frameworks, and foundational services used by platform and development teams—making secure patterns the default choice for Kubernetes deployments - Drive adoption of security best practices and influence technical direction for Kubernetes security, workload isolation, and container deployment - Own the security architecture and posture of our Kubernetes infrastructure across Azure and AWS environments - Design and implement secure-by-default infrastructure including pod security policies, network policies, RBAC, admission controllers, and runtime security - Build and ship production-grade automation, tooling, CLI utilities, and operators to enforce security best practices and detect threats across our Kubernetes clusters - Develop secure Custom Resource Definitions (CRDs), controllers, and Kubernetes operators for security automation and policy enforcement - Lead security architecture decisions for workload isolation, secrets management, service mesh security, and supply chain security - Design, implement, and operate PKI infrastructure for Kubernetes—including private CA hierarchies, automated certificate lifecycle management (cert-manager), service mesh mTLS certificate rotation, and certificate issuance for workloads and control plane components - Partner with Cloud Security Engineer to design and operate unified PKI infrastructure across cloud and container environments—ensuring consistent certificate policies, trust anchors, and operational practices. Collaborate on node IAM, pod service accounts, CNI security, and cloud provider integrations - Secure the Kubernetes control plane including API server, etcd, and CNI plugin configurations - Design and implement admission webhooks (validating and mutating) for security policy enforcement - Identify and drive resolution of complex security challenges in multi-tenant and multi-cluster environments - Partner with Platform and development teams to embed security into GitOps workflows and the development lifecycle - Stay ahead of emerging container security threats and proactively harden our defenses - Develop security testing frameworks and validation tools to continuously verify security controls - Leverage AI tools to accelerate development, close knowledge gaps, and push the boundaries of what's possible QUALIFICATIONS - Active security clearance or ability to obtain and maintain security clearance. - Deep expertise securing production Kubernetes environments at scale, with comprehensive understanding of the container attack surface - Extensive experience building Kubernetes operators, CRDs, and controllers—you understand the Kubernetes API and extension mechanisms deeply - Deep PKI knowledge with hands-on experience designing and operating certificate infrastructure—including private CA hierarchies, cert-manager deployment and operation, automated certificate rotation for service meshes (Istio/Linkerd), certificate lifecycle management, and X.509/TLS troubleshooting - You've built and maintained PKI infrastructure in production, not just consumed managed certificate services - Strong software development skills in Go (preferred) and Python with proven track record of building production platforms that engineering teams actually use - Strong software engineering fundamentals: comfortable with data structures, algorithms, API design, debugging production systems, and working across multiple languages - Track record of building security platforms or foundational services used across multiple engineering teams - Hands-on experience with container security tools and frameworks (Falco, OPA, Kyverno, Gatekeeper, service mesh security) - Deep understanding of Kubernetes internals: API server security, etcd encryption, CNI plugins, admission webhooks, RBAC, and control plane hardening - Experience with GitOps patterns and securing CI/CD pipelines for Kubernetes deployments - Experience with cloud security primitives across Azure and/or AWS - Practical knowledge of supply chain security, image scanning, admission control, and runtime threat detection - Proven ability to independently drive ambiguous, complex security initiatives to completion at staff+ level - Track record of giving yourself hard problems and navigating ambiguity with confidence - Comfortable diving into unfamiliar codebases and leveraging AI to bridge technical gaps - Strong communication skills and ability to influence technical direction across teams WORK ENVIRONMENT - Fast-paced, mission-critical environment supporting national security space operations - Requires coordination across distributed teams including spacecraft engineers, ground operations, software developers, and government partners - May require participation in on-call rotation for security incident response and mission-critical system support - Occasional travel to government sites, launch facilities, or partner locations may be required COMPENSATION - Colorado Base Salary: $160,000–$220,000 - California Base Salary: $165,000–$230,000 for Long Beach, - $185,000–$250,000 for SF Bay Area - Equity + Benefits including Health, Dental, Vision, HRA/HSA options, PTO and paid holidays, 401K, Parental Leave Your actual level and base salary will be determined on a case-by-case basis and may vary based on the following considerations: job-related knowledge and skills, education, location, and experience. ADDITIONAL REQUIREMENTS - Work Location— this role will be onsite at our Denver, SF Bay Area, or Long Beach offices. #LI-Onsite This position will be open until it is successfully filled. To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR) you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State. True Anomaly is committed to equal employment opportunity on any basis protected by applicable state and federal laws. If you have a disability or additional need that requires accommodation, please do not hesitate to let us know. To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR) you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State. True Anomaly is committed to equal employment opportunity on any basis protected by applicable state and federal laws. If you have a disability or additional need that requires accommodation, please do not hesitate to let us.

Block is one company built from many blocks, all united by the same purpose of economic empowerment. The blocks that form our foundational teams - People, Finance, Counsel, Hardware, Information Security, Platform Infrastructure Engineering, and more - provide support and guidance at the corporate level. They work across business groups and around the globe, spanning time zones and disciplines to develop inclusive People policies, forecast finances, give legal counsel, safeguard systems, nurture new initiatives, and more. Every challenge creates possibilities, and we need different perspectives to see them all. Bring yours to Block. The Role The Detection and Response Team (DART) identifies, investigates, and responds to threats across Block's endpoints, cloud infrastructure, identity systems, SaaS platforms, vendor environments, and products. We are an engineering-led team: we build detections, automate investigations and response workflows, and prioritize our work around real attacker behavior. DART operates from an engineering-first, automation-first mindset. Our bar is simple: the alerts a human sees are the alerts a human has to see. We build investigation workflows and triage systems that resolve routine work before it becomes toil. The human work in this role centers on the alerts and investigations that require judgment: ambiguous signals, novel attacker behavior, high-impact incidents, and messy cross-environment investigations. You will help build that model by developing active and automated triage capabilities. DART's Monitoring & Triage function is both the front line and the front door. You will own daily security intake and will often be the first person partners across Block talk to when something does not look right. That can mean a high-confidence endpoint detection, a walk-in concern from Legal or Compliance, or a critical vulnerability. You are expected to ask the right questions, scope the issue quickly, make sound decisions, and either drive the work to resolution or route it cleanly. This is an operational security engineering role. The alert queue is your laboratory. The other half of this role is turning missing signal into better systems: sharper detections, richer context, stronger close-vs-escalate logic, and tighter responder-facing workflows. You're the right person for this role if you want to catch things, and then build things that catch things for you. You Will - Own daily security intake across alert queues, Slack channels, and walk-in escalations from teams across Block, acting as the welcoming front door for security ops. - Investigate and drive resolution of security events end-to-end, including endpoint detections, cloud/SaaS alerts, malware, supply chain issues, and hands-on-keyboard activity. - Pivot across endpoint, identity, cloud, SaaS, network, DNS, and application telemetry to build timelines, test hypotheses, determine scope, and assess impact. - Run nuanced investigations across non-uniform environments where device posture, identity models, and telemetry differ significantly. - Consistently turn recurring investigative patterns into durable improvements: recommend new detections, automate triage workflows, refine automation logic, and clarify escalation paths. - Identify structural gaps surfaced during investigations (weak controls, missing telemetry, outdated runbooks) and push for durable fixes rather than one-off workarounds. - Define containment criteria, organize investigation threads, coordinate responders, drive status updates, and follow through on lessons learned. - Lead cross-team efforts that improve investigation quality, response readiness, and operational maturity; and present interesting findings to the broader team and participate in tabletop exercises and post-incident reviews. You Have - 5+ years of experience in detection and response, incident response, security engineering, or equivalent depth of hands-on investigative experience. - Strong investigative judgment across endpoint, identity, cloud, SaaS, network, and application security signals; AWS and Kubernetes security fundamentals, cloud-native logging, networking, and Linux systems. - Experience leading incidents end-to-end, including scoping, containment, evidence collection, impact assessment, and stakeholder communication. - Strong SQL and log-query/analysis skills, with the ability to work effectively across large, messy telemetry sets without waiting for a perfect dashboard. - Current, practical working knowledge of attacker TTPs across macOS, Windows, and Linux with live response and forensics. - An established AI development workflow. - Experience building, tuning, or maintaining detections, investigation workflows, or internal security tooling. - An engineering mindset: you start looking for the detection, workflow, control, or automation change that will eliminate a manual pattern. - The ability to work independently across time zones, managing competing priorities with empathy, patience, and curiosity. Nice-to-have qualities that stand out - Experience with threat intelligence and threat hunting. - Experience with malware analysis, forensic artifact collection, or reversing. - Experience working with human-in-the-loop automation or AI-assisted investigation systems We're working to build a more inclusive economy where our customers have equal access to opportunity, and we strive to live by these same values in building our workplace. Block is a proud equal opportunity employer. We work hard to evaluate all employees and job applicants consistently, without regard to identity or other legally protected class. We believe in being fair, and are committed to an inclusive interview experience, including providing reasonable accommodations to disabled applicants throughout the recruitment process. We encourage applicants to share any needed accommodations with their recruiter, who will treat these requests as confidentially as possible. Want to learn more about what we're doing to build a workplace that is fair and square? Check out our I+D page . Block is a globally distributed company and this role will require working with other employees in multiple time zones. You may be required to perform work outside of normal business as part of this role Application Guidelines Candidates may submit up to 9 active applications within a 60-day period. Reapplications to the same role are accepted 90 days after a previous application has been reviewed. Use of AI in Our Hiring Process We may use automated AI tools to evaluate job applications for efficiency and consistency. These tools comply with local regulations, including bias audits, and we handle all personal data in accordance with state and local privacy laws. Contact us here with hiring practice or data usage questions. Every benefit we offer is designed with one goal: empowering you to do the best work of your career while building the life you want. Remote work, medical insurance, flexible time off, retirement savings plans, and modern family planning are just some of our offering. Check out our other benefits at Block. Block, Inc. (NYSE: XYZ) builds technology to increase access to the global economy. Each of our brands unlocks different aspects of the economy for more people. Square makes commerce and financial services accessible to sellers. Cash App is the easy way to spend, send, and store money. Afterpay is transforming the way customers manage their spending over time. TIDAL is a music platform that empowers artists to thrive as entrepreneurs. Bitkey is a simple self-custody wallet built for bitcoin. Proto is a suite of bitcoin mining products and services. Together, we're helping build a financial system that is open to everyone.

Role Description Consultor Funcional de Seguridad y Roles Senior para liderar el diseño, definición e implementación del modelo de gobierno de accesos en el marco del proyecto de migración core de SAP a Oracle Fusion Cloud. - Responsable de traducir los procesos operativos del negocio en una estructura de seguridad robusta. - Garantizar la continuidad operativa y el estricto cumplimiento de las auditorías de Segregación de Funciones (SoD). - Experiencia demostrable en proyectos de implantación de Oracle Fusion Cloud (SaaS) utilizando la consola de seguridad de Oracle. - Entendimiento alto de los procesos de negocio estándar de un ERP para identificar conflictos de funciones (ej. Compras vs. Pagos). - Conocimiento previo en la estructura de roles de SAP (Perfiles, Autorizaciones) para facilitar el proceso de migración de datos de seguridad. Qualifications - Experiencia en Oracle Fusion Cloud (SaaS). - Conocimiento en procesos de negocio estándar de un ERP. - Experiencia en la estructura de roles de SAP. Requirements - Cantidad: 1. - País de Asignación: Colombia. - Tipo de Proyecto: Implementación. - Inicio del Proyecto: 2026-06-10. - Duración del Proyecto: 12 meses. - Modalidad de Trabajo: Remoto. - Idioma: Español.

Role Description Provides management consulting services and technology/industry expertise in support of business and enterprise needs. Liaises with stakeholders to understand problems and opportunities, to facilitate the organization's goals by understanding business vision, objectives, and key performance indicators. - Aligns technology requirements and solutions to a real business need, meets essential quality standards, and ensures approval by all relevant stakeholders. - Acts as a consultant to business partners in collaboration with the project team in strategy and planning sessions (e.g. multi-year and annual plans), reviews, or inspections to ensure the quality of work products. - Promotes new processes and methodologies, emerging technologies, and agile, and aligns to the unique project team requirements. - Recommends and implements solutions based on analysis of issues and implications for the business. - Identifies emerging issues and trends to inform decision-making. - Assists in the development of strategic plans. - Helps determine business priorities and best sequence for execution of business/group strategy. - Breaks down strategic problems, and analyses data and information to provide insights and recommendations. - Understands and follows a project requirements management plan so that activities and milestones of the project team can be measured against the goals of the plan. - Facilitates discussions and follows a disciplined approach to plan, elicit, analyze, document, communicate, and manage business requirements with stakeholders; applies a variety of elicitation techniques to probe, challenge, and understand requirements. - Provides analytical support and insights to identified / assigned user areas to support relative product, channel, and business development initiatives (e.g. product, portfolio, and profitability analytics, and customer analytics). - Collaborates in root-cause analysis to determine underlying causes and participates in problem resolution. - Builds exceptional relationships with internal and external stakeholders. - Liaises with the business and the technology development and support groups. - Aligns business needs to vision/goals to ensure development teams to translate them into detailed design specifications and code. - Assesses project impact, benefits, and risks when scope changes. - Communicates and engages across stakeholder groups during construction and delivery of solutions. - Assesses the quality of supporting documentation, including business and process requirements documents, to ensure proper analysis supports recommendations or demonstrate continued alignment to strategic objectives. - Develops a deep understanding of organizational complexity to build strong rapport with internal stakeholders for the construction and delivery of the solution. - Stays abreast of industry technical and business trends through benchmarking and/or participation in professional associations. - Focus is primarily on business/group within BMO; may have broader, enterprise-wide focus. - Provides specialized consulting, analytical and technical support. - Exercises judgment to identify, diagnose, and solve problems within given rules. - Works independently and regularly handles non-routine situations. - Broader work or accountabilities may be assigned as needed. - Take measured risks while protecting the bank by applying our Risk Management Framework in the execution of your role, in line with our Risk Culture and within our approved Risk Appetite, making sound and risk informed decisions that align to business strategy, protect assets, and adhere to applicable policy documents (Frameworks, Policies, Standards, Procedures and Supporting documents), laws and regulations. Qualifications - Typically between 5 - 7 years of relevant experience and post-secondary degree in related field of study or an equivalent combination of education and experience. - Business Analysis Accreditation is an asset. - Knowledge of software development practice, concepts/methodologies (i.e. waterfall, Agile, iterative), and technologies obtained through formal training and/or work experience. - Knowledge of one or more requirements analysis and problem decomposition techniques. - Knowledge of technical/business environment (e.g. Microsoft business technologies and applications, relational databases, and SharePoint). - Understanding of industry standards and standard business capabilities. - Knowledge of business analysis, project delivery practices and standards across the project lifecycle. - Possesses a deep understanding and problem solving ability of information technology of various complexities. - Understanding of techniques associated with data modeling, process modeling, and user-centered design within the context of the organizational standards. - Familiar with business strategy and assessments (i.e. feasibility studies, business cases, cost/benefit analyses, project sizing and costing, and current state analysis/needs assessments). - Deep knowledge and technical proficiency gained through extensive education and business experience. - Verbal & written communication skills - In-depth. - Collaboration & team skills - In-depth. - Analytical and problem solving skills - In-depth. - Influence skills - In-depth. - Data driven decision making - In-depth. Requirements - Salary: $75,900.00 - $141,900.00 - Pay Type: Salaried Benefits - Performance-based incentives - Discretionary bonuses - Health insurance - Tuition reimbursement - Accident and life insurance - Retirement savings plans