Role Description As a Senior Security Analyst Consultant – Attack Surface Management, you will lead and evolve our client’s enterprise Attack Surface Management (ASM) program, helping reduce cyber risk through proactive discovery, analysis, automation, and collaboration. This is a highly visible role that combines strategic leadership with hands-on technical execution, requiring expertise across vulnerability management, cloud security, threat intelligence, and offensive security disciplines. You will be responsible for developing a comprehensive view of the organization's attack surface, identifying opportunities to reduce exposure, and driving remediation efforts in partnership with engineering, cloud, DevOps, and security teams. Leveraging data, automation, and threat intelligence, you will help prioritize risk reduction initiatives while influencing architectural decisions that strengthen the organization’s security posture. This role is ideal for someone who enjoys building programs, solving complex security challenges, and partnering across the enterprise to create meaningful security outcomes. Qualifications - 6+ years of experience in cybersecurity, including security operations, threat hunting, offensive security, red teaming, or related disciplines - Experience building, scaling, or leading Attack Surface Management (ASM) capabilities and programs - Strong understanding of vulnerability management methodologies and risk prioritization frameworks - Experience working within multi-cloud environments, including AWS, Azure, and GCP - Deep knowledge of attacker tactics, techniques, and procedures (TTPs) and frameworks such as MITRE ATT&CK - Expertise in network security, cloud security, attack path analysis, and external attack surface discovery - Experience conducting OSINT, reconnaissance, and threat intelligence activities - Proficiency with scripting and automation technologies such as Python and PowerShell - Strong understanding of enterprise infrastructure, application architectures, and data flows - Ability to evaluate and influence architectural decisions that reduce organizational risk - Experience leading cross-functional security initiatives and driving collaboration across multiple teams - Excellent written and verbal communication skills with the ability to communicate effectively with both technical and non-technical stakeholders - Strong analytical and problem-solving skills with a data-driven approach to risk management Requirements - Industry certifications such as CISSP, OSCE, GREM, or similar cybersecurity credentials - Experience applying AI and automation technologies to security operations or attack surface management programs - Experience with cloud-native security platforms and exposure management tooling - Familiarity with threat modeling, purple teaming, or advanced adversary simulation exercises - Experience working in large-scale enterprise environments with complex security requirements Benefits - The annual salary range for this role is $110,000-$140,000. - We offer Medical, Dental, Vision plans, 401K with matching, and PTO for salaried employees. - Work/life balance – we know there’s more to life than work! We encourage our team to pursue other passions, get outside, and spend time with family. We work with clients and consultants to set expectations for a manageable workload. Company Description Kalles Group is an equal-opportunity employer and does not discriminate on the basis of creed, nationality, race, ethnicity, disability, gender, or other protected class.

Role Description We are looking for an Application Security Engineer to embed security throughout the software development lifecycle, partnering with engineering teams to design secure systems, identify vulnerabilities, and reduce risk across our application portfolio. The role blends hands-on offensive and defensive skills with strong communication and collaboration, helping development teams build secure software efficiently rather than slowing them down. The ideal candidate brings deep technical security expertise, strong software engineering fundamentals, and a track record of shipping security improvements that meaningfully reduce risk in production. Key Responsibilities - Conduct threat modeling and security architecture reviews for new and existing applications and services. - Perform manual code reviews, secure design consultations, and pair with engineering teams on hardening critical components. - Operate and tune SAST, DAST, IAST, SCA, and secret-scanning tools across CI/CD pipelines. - Drive vulnerability management workflows including triage, prioritization, owner assignment, and SLA tracking. - Build paved-road libraries and frameworks that make secure patterns the default for engineering teams. - Lead red-team and purple-team exercises against internal applications and drive remediation of identified weaknesses. - Implement and operate runtime protections including WAF, RASP, bot protection, and abuse-detection mechanisms. - Design and enforce secure authentication, authorization, session management, and cryptographic patterns. - Partner with infrastructure and platform teams to harden container, Kubernetes, and cloud environments. - Develop and deliver application security training, lunch-and-learns, and onboarding content for engineering staff. - Respond to security incidents involving application vulnerabilities or active exploitation. - Track and apply emerging threats and CVEs that may affect the application portfolio. - Maintain comprehensive, current technical documentation — including architecture diagrams, design decisions, configuration references, runbooks, and operational procedures. - Stay current with application security research and emerging defensive tooling. Qualifications - Bachelor’s degree in Computer Science, Cybersecurity, or a related field. - Five or more years of application security or security engineering experience. - Strong understanding of OWASP Top 10, common vulnerability classes, and modern exploit patterns. - Hands-on experience performing code review across at least two major languages. - Deep familiarity with SAST, DAST, SCA, and CI/CD-integrated security tooling. - Strong understanding of authentication, authorization, and cryptographic primitives. - Experience with cloud security and modern infrastructure controls. - Strong communication skills with technical and non-technical audiences. - Proficiency in at least one programming language for tooling and automation. - Experience working closely with engineering teams in an Agile environment. Preferred Qualifications - Industry certifications such as OSCP, OSCE, GWAPT, or CISSP. - Experience with offensive security tooling and red-team operations. - Bug bounty experience, public CVEs, or open-source security contributions. - Familiarity with AI/LLM application security considerations. - Exposure to regulated industries with strict compliance requirements. How to Apply Would you like to know more about this opportunity? For immediate consideration, please send your resume to [email protected] . Learn more about Bright Vision Technologies at www.bvteck.com .

• Supports the U.S. Census Bureau by designing, implementing, operating, troubleshooting, and improving enterprise network security services across on-premises, hybrid-cloud, and cloud-connected environments. • Focuses on firewall engineering, VPN and remote access services, RSA SecurID or equivalent MFA/token services, content filtering, network access control, edge security services, monitoring and logging integration, vulnerability remediation, security documentation, and policy compliance for TCO-managed systems. • Serves as a senior technical resource for secure network architecture, operations support, incident response coordination, and compliance support. • Designs, configures, administers, maintains, and troubleshoots enterprise firewall solutions, including Cisco and Palo Alto platforms. • Administers VPN services including remote access VPN, site-to-site VPN, client/clientless access, partner connectivity, mobile device access, and cloud connectivity. • Supports network access control services, including NAC policy administration, endpoint posture or 802.1X controls, identity-aware access policies, and integrations with firewalls, wireless, LAN, and identity management systems. • Implements and manages network security controls across AWS, Azure, and hybrid environments. • Reviews logs, alerts, vulnerability notices, and vendor advisories; recommends and implements improvements to reduce risk.

• Leading and mentoring a team of threat intelligence analysts and security researchers • Defining research priorities and intelligence strategy aligned with Akamai's security mission • Driving cross-functional collaboration across security operations, product engineering, and executive leadership • Translating complex threat intelligence into actionable insights for customers, product teams, and leadership