• Lead the cybersecurity operations and security engineering function across corporate, cloud, hybrid, and production environments. • Manage and develop security engineers and analysts responsible for monitoring, detection, response, infrastructure security, vulnerability management, and operational security controls. • Own monitoring, detection, and response capabilities, including SIEM, EDR/XDR, DLP, vulnerability management, firewall, WAF, email security, identity security, and cloud security tooling. • Serve as the operational control point during significant cybersecurity incidents, coordinating response across Security, IT, Engineering, Legal, Communications, GRC, and executive stakeholders. • Develop, maintain, and test incident response playbooks, escalation paths, tabletop exercises, on-call procedures, and post-incident review processes. • Lead post-incident reviews and ensure root-cause remediation, lessons learned, and control improvements are completed. • Evaluate, implement, and optimize security solutions across endpoint, identity, network, email, cloud, logging, detection, and response platforms. • Partner with IT and Engineering to strengthen cloud, hybrid, and corporate security controls, including identity, network segmentation, key management, secrets management, privileged access, endpoint hardening, and secure configuration management. • Support GovRAMP and PCI DSS control requirements related to logging, monitoring, vulnerability management, incident response, endpoint security, access control, encryption, cloud security, configuration management, and evidence collection. • Drive measurable risk reduction across infrastructure, endpoints, cloud environments, identity systems, and business-critical services. • Own operational vulnerability management processes for infrastructure, cloud, endpoint, and corporate systems. • Support business continuity, disaster recovery, and resilience planning from a cybersecurity perspective. • Manage cybersecurity operations budget inputs, including vendor evaluation, renewals, tool rationalization, and investment recommendations. • Develop operational security metrics and reporting for executive leadership, including incident trends, vulnerability risk, detection coverage, response performance, control health, and remediation progress. • Stay ahead of evolving threats, including cloud-native attacks, identity compromise, ransomware, AI-enabled threats, and emerging attacker techniques. • Participate in or manage the security on-call rotation.

• Write clean, structured scripts (primarily Python and Bash) to automate repetitive security operations, optimize incident response workflows, and eliminate manual overhead. • Build, test, and deploy custom detection rules to flag anomalous behavior, misconfigurations, and potential threats across our cloud infrastructures (AWS, GCP, or Azure). • Design, construct, and maintain security dashboards (using tools like ELK/Elasticsearch, Splunk, Datadog, or SIEM platforms) to give our team clear, real-time visibility into our risk posture.

Role Description As a Senior Security Analyst Consultant – Attack Surface Management, you will lead and evolve our client’s enterprise Attack Surface Management (ASM) program, helping reduce cyber risk through proactive discovery, analysis, automation, and collaboration. This is a highly visible role that combines strategic leadership with hands-on technical execution, requiring expertise across vulnerability management, cloud security, threat intelligence, and offensive security disciplines. You will be responsible for developing a comprehensive view of the organization's attack surface, identifying opportunities to reduce exposure, and driving remediation efforts in partnership with engineering, cloud, DevOps, and security teams. Leveraging data, automation, and threat intelligence, you will help prioritize risk reduction initiatives while influencing architectural decisions that strengthen the organization’s security posture. This role is ideal for someone who enjoys building programs, solving complex security challenges, and partnering across the enterprise to create meaningful security outcomes. Qualifications - 6+ years of experience in cybersecurity, including security operations, threat hunting, offensive security, red teaming, or related disciplines - Experience building, scaling, or leading Attack Surface Management (ASM) capabilities and programs - Strong understanding of vulnerability management methodologies and risk prioritization frameworks - Experience working within multi-cloud environments, including AWS, Azure, and GCP - Deep knowledge of attacker tactics, techniques, and procedures (TTPs) and frameworks such as MITRE ATT&CK - Expertise in network security, cloud security, attack path analysis, and external attack surface discovery - Experience conducting OSINT, reconnaissance, and threat intelligence activities - Proficiency with scripting and automation technologies such as Python and PowerShell - Strong understanding of enterprise infrastructure, application architectures, and data flows - Ability to evaluate and influence architectural decisions that reduce organizational risk - Experience leading cross-functional security initiatives and driving collaboration across multiple teams - Excellent written and verbal communication skills with the ability to communicate effectively with both technical and non-technical stakeholders - Strong analytical and problem-solving skills with a data-driven approach to risk management Requirements - Industry certifications such as CISSP, OSCE, GREM, or similar cybersecurity credentials - Experience applying AI and automation technologies to security operations or attack surface management programs - Experience with cloud-native security platforms and exposure management tooling - Familiarity with threat modeling, purple teaming, or advanced adversary simulation exercises - Experience working in large-scale enterprise environments with complex security requirements Benefits - The annual salary range for this role is $110,000-$140,000. - We offer Medical, Dental, Vision plans, 401K with matching, and PTO for salaried employees. - Work/life balance – we know there’s more to life than work! We encourage our team to pursue other passions, get outside, and spend time with family. We work with clients and consultants to set expectations for a manageable workload. Company Description Kalles Group is an equal-opportunity employer and does not discriminate on the basis of creed, nationality, race, ethnicity, disability, gender, or other protected class.

Role Description We are looking for an Application Security Engineer to embed security throughout the software development lifecycle, partnering with engineering teams to design secure systems, identify vulnerabilities, and reduce risk across our application portfolio. The role blends hands-on offensive and defensive skills with strong communication and collaboration, helping development teams build secure software efficiently rather than slowing them down. The ideal candidate brings deep technical security expertise, strong software engineering fundamentals, and a track record of shipping security improvements that meaningfully reduce risk in production. Key Responsibilities - Conduct threat modeling and security architecture reviews for new and existing applications and services. - Perform manual code reviews, secure design consultations, and pair with engineering teams on hardening critical components. - Operate and tune SAST, DAST, IAST, SCA, and secret-scanning tools across CI/CD pipelines. - Drive vulnerability management workflows including triage, prioritization, owner assignment, and SLA tracking. - Build paved-road libraries and frameworks that make secure patterns the default for engineering teams. - Lead red-team and purple-team exercises against internal applications and drive remediation of identified weaknesses. - Implement and operate runtime protections including WAF, RASP, bot protection, and abuse-detection mechanisms. - Design and enforce secure authentication, authorization, session management, and cryptographic patterns. - Partner with infrastructure and platform teams to harden container, Kubernetes, and cloud environments. - Develop and deliver application security training, lunch-and-learns, and onboarding content for engineering staff. - Respond to security incidents involving application vulnerabilities or active exploitation. - Track and apply emerging threats and CVEs that may affect the application portfolio. - Maintain comprehensive, current technical documentation — including architecture diagrams, design decisions, configuration references, runbooks, and operational procedures. - Stay current with application security research and emerging defensive tooling. Qualifications - Bachelor’s degree in Computer Science, Cybersecurity, or a related field. - Five or more years of application security or security engineering experience. - Strong understanding of OWASP Top 10, common vulnerability classes, and modern exploit patterns. - Hands-on experience performing code review across at least two major languages. - Deep familiarity with SAST, DAST, SCA, and CI/CD-integrated security tooling. - Strong understanding of authentication, authorization, and cryptographic primitives. - Experience with cloud security and modern infrastructure controls. - Strong communication skills with technical and non-technical audiences. - Proficiency in at least one programming language for tooling and automation. - Experience working closely with engineering teams in an Agile environment. Preferred Qualifications - Industry certifications such as OSCP, OSCE, GWAPT, or CISSP. - Experience with offensive security tooling and red-team operations. - Bug bounty experience, public CVEs, or open-source security contributions. - Familiarity with AI/LLM application security considerations. - Exposure to regulated industries with strict compliance requirements. How to Apply Would you like to know more about this opportunity? For immediate consideration, please send your resume to [email protected] . Learn more about Bright Vision Technologies at www.bvteck.com .