Role Description We are looking for an experienced and talented DevSecOps engineer with a focus on MS SQL and Internet Information Server to join our team! As our DevSecOps engineer, you will be working with a team of highly skilled and experienced engineers across multiple teams including development, implementation and integration, and secure operations who are delivering and operating systems for Bechtel Nuclear, Security & Environmental global business unit. These systems support our global customers and projects as they have a positive impact on cleaning up the environment, maintaining national and global security, generating sustainable energy, and returning to space. Major Responsibilities - Build, install, and support various MS SQL Server, Oracle and Mongo DB environments meeting current technical and security standards. - Support code deployments in all environments. - Support systems tests for security, performance, and availability. - Help monitor systems, provide support, and develop ways to improve these systems. - Provide technical guidance and educate team members on operational and security requirements. - Brainstorm for new ideas and ways to improve system delivery and security. - Help with regular system patching including operating system, database, application framework, and other layers. - Help with service account maintenance including password renewal/retrieval from the password vault and updating the impacted systems. - Work with all teams to achieve business objectives. Qualifications - Requires bachelor's degree (or international equivalent) and 2-5 years of relevant experience or 6-9 years of relevant work experience. Requirements - Cloud migration and operation experience, focusing on Microsoft Azure and Azure.gov as cloud provider. - Oracle RDMS including but not limited to import/export, migrations, backup restore, basic troubleshooting, user management and tablespaces. - Working understanding of code and scripts. - Working understanding of US Government data classifications and related security frameworks including but not limited to Controlled Unclassified Information (CUI), Official Use Only (OUO), and Risk Mitigation Framework (RMF). - Knowledge of application externalization technologies and methodologies including but not limited to SSL certificates, Single Sign On (SSO) interactions, and API gateway and externalizations. - Knowledge of Windows server administration for Windows 2019 and higher. - Knowledge of PowerShell scripting or other scripting languages to automate processes during deployment, operations, and maintenance. - Knowledge of best practices and IT operations in an always-up, always-available service mentality. - Familiar with UNIX/Linux administration. - Familiar with Oracle Fusion Middleware (including maintenance and patching) a plus. - Familiar with VMWare virtual server environment and VCenter. - Passionate about technology, automation, security, and eager to learn and share. - Ability to work independently and as part of multiple teams. - Ability to multi-task, be self-motivated, work well independently and with multiple teams, experience working in high-pressure environments, and able to meet deadlines. - Ability to work occasionally after normal business hours. Benefits - Robust benefits to ensure our people thrive. - Programs to enhance our culture. - Time to recharge.

Role Description TrendAI Research is seeking a Vulnerability Researcher to join our industry-leading research team. TrendAI Research supports a global customer base including leading security product vendors, software and high-tech manufacturers, telecommunications providers, and large enterprise customers with a set of industry-leading technical data feeds, research products, and engineering services. - Research newly discovered vulnerabilities in a wide range of software products - Reverse engineer and research network protocols, file formats, and software - Develop proof-of-concept files and code - Produce reports describing software vulnerabilities and detection of attack vectors - Develop signatures for network traffic-based attack detection - Monitor security industry publications, news groups and other online sources for newly discovered security vulnerabilities and emerging threats - Implement new and improve existing tools to automate and streamline the vulnerability research process - Collaborate with other vulnerability researchers on research, analysis and report production Qualifications - Functional understanding of TCP/IP protocol stack and higher-level networking protocols - Experience in static and dynamic reverse engineering of x86 binaries (amd64 is a plus) - Knowledge in a variety of operating systems Requirements - Ability to analyze and describe vulnerabilities and attack methods - Familiarity with tools such as IDA Pro, OllyDbg, WinDbg, gdb and Wireshark - At least two of C/C++, assembly language, Java, Python, and shell scripting - Ability to learn new detection signature languages quickly - Excellent oral and written communication skills - Reliable and dependable team player - Great attention to detail and personal quality assurance - Self-directed, self-motivated with the ability to work with minimal supervision Preferred Professional Designation/Certification - Bachelor's or Master's degree in computer science or a related field preferred but not required Preferred Experience - Industry experience performing similar technical role preferred but not required Benefits - Group benefits program with health and dental coverage - Telehealth Virtual Health Services - Life Insurance - Short & Long Term Disability - Pre-partum, maternity, parental and medical leave - Critical Illness Insurance - Mental Health Wellness Program - Wellness Incentive Program - Retirement Savings Programs with company match - Paid Time Off - 14 Annual Holidays - Tuition Assistance - Employee Resource Groups

Role Description The Intune and Mobile Security Lead is responsible for the design, deployment, and ongoing management of the organization's Microsoft Intune-based endpoint management platform and mobile device security program. This role serves as the subject matter expert for all managed endpoints - including Windows workstations, iOS/Android mobile devices, and shared clinical devices - ensuring compliance with healthcare regulatory requirements (HIPAA, HITECH) and alignment with the organization's security framework. The ideal candidate bridges technical depth with a security-first mindset and operates effectively across a complex, multi-facility healthcare environment. - Endpoint & Mobile Device Management: Architect, deploy, and maintain Microsoft Intune (MEM) policies for Windows, iOS, Android, and macOS devices across all facilities. - Security & Compliance: Develop and maintain mobile security baselines aligned with CIS Benchmarks, NIST 800-124, and HIPAA Security Rule requirements. - Identity & Access Integration: Partner with the Identity & Access Management team to align device compliance with Entra ID-based access controls and MFA policy enforcement. - Clinical & Shared Device Support: Design and maintain enrollment and management strategies for shared clinical devices (kiosks, workstations-on-wheels, nurse call tablets). - Governance & Operations: Maintain the Intune environment health, including policy conflict resolution, update ring management, and feature update deferrals. Qualifications - 2+ years of hands-on Microsoft Intune / Microsoft Endpoint Manager administration in an enterprise environment. - Bachelor degree in Information Technology, Computer Science, Cybersecurity, or equivalent practical experience. - Certifications (Required or Expected Within 12 Months): Microsoft 365 Certified: Endpoint Administrator Associate (MD-102). Requirements - Strong proficiency with Microsoft Intune, Entra ID, Conditional Access, and Defender for Endpoint. - Hands-on experience with Windows Autopilot, Apple Business Manager, and Android Enterprise. - Working knowledge of PowerShell scripting and Microsoft Graph API for Intune automation. - Familiarity with co-management (Intune + MECM) architectures. - Understanding of PKI, certificate deployment via SCEP/PKCS, and VPN/Wi-Fi profile management. Benefits - Pay Rate: Min - $145,000 | Max - $145,000. Company Description

Role Description The Purview and Sentinel Lead serves as the organization's primary subject matter expert for Microsoft Purview (compliance, data governance, and eDiscovery) and Microsoft Sentinel (cloud-native SIEM/SOAR). This role is responsible for the design, operation, and continuous improvement of the organization's data protection posture and security operations detection capabilities across a multi-facility healthcare environment. - Microsoft Sentinel - SIEM/SOAR Operations: Own the architecture, configuration, and day-to-day health of the Microsoft Sentinel environment, including workspace design, data connector management, and cost optimization. - Microsoft Purview - Compliance & Data Governance: Design and administer the organization's Microsoft Purview compliance posture, including Information Protection, Data Loss Prevention (DLP), Insider Risk Management, Communication Compliance, and Audit solutions. - Detection Engineering & Threat Intelligence: Maintain a detection engineering lifecycle - ideate, build, validate, tune, and retire - for Sentinel analytic rules based on threat intelligence feeds (H-ISAC, MDTI, CISA advisories). - Governance, Reporting & Collaboration: Produce regular operational metrics and executive-level reporting on SIEM alert volume, detection coverage, DLP policy effectiveness, and eDiscovery activity. Qualifications - Experience: 2+ years in security operations, compliance engineering, or cloud security roles with direct hands-on experience in Microsoft Sentinel and/or Microsoft Purview. - Education: Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or equivalent practical experience. - Certifications (Required or Expected Within 12 Months): Microsoft Security Operations Analyst Associate (SC-200). - Technical Skills: - Advanced KQL proficiency - analytic rules, hunting queries, workbooks, and summarization. - Hands-on experience with Sentinel data connectors, DCRs, automation rules, and Logic Apps playbooks. - Working knowledge of Microsoft Purview compliance portal: DLP, sensitivity labels, eDiscovery, litigation holds, and Audit. - Familiarity with Microsoft Defender XDR suite integration (MDE, MDI, MDA, MDO). - Proficiency with PowerShell and Microsoft Graph API for compliance and security automation. - Understanding of MITRE ATT&CK framework and its application to detection rule development. Requirements - Pay Rate: Min - $135,000 l Max - $135,000 - Job Listing ID: 1791294