• Enhance dynamic team providing Security Steward Services for the CDC • Hands-on experience with maintaining programs of record using GRC tools • Conduct Risk Management Framework processes for management and compliance • Support tasks associated with achieving an Authority to Operate (ATO) • Perform continuous monitoring, system auditing, and security policy development • Collaborate with customers and program office members

Title: Junior Security Engineer Location: United States Job Description: Description & Requirements Maximus is a trusted federal partner supporting mission‑critical programs across national security, defense, and public service delivery. Our work focuses on sustaining, operating, and improving essential government systems and services, with proven operational excellence, and a commitment to mission success for our customers. Joining Maximus means becoming part of a collaborative, mission‑driven organization where teamwork, accountability, and professional growth are core to how we operate. We invest in our workforce through training, education, and career development, empowering professionals to deliver high‑impact solutions while contributing to outcomes that matter at a national scale. The Junior Security Engineer supports 24x7 enterprise cybersecurity operations by monitoring security tools, performing initial incident triage, and assisting with containment, vulnerability management, and compliance activities. The role works under senior guidance to execute defined cyber actions, maintain incident documentation, support POA&M and ISVM tracking, and assist with patching, testing, and spill response. The position requires familiarity with security operations processes, cloud and infrastructure fundamentals, and the ability to follow established runbooks in a high‑availability operational environment. This position is contingent upon contract award and position availability. Selected candidates will receive a contingent offer of employment, which will become final only upon successful contract award to Maximus, availability of the position, and receipt of authorization to proceed. Ability to obtain and maintain a Public Trust is required. An active Public Trust and/or DHS suitability is preferred. Must be a U.S. Citizen without dual citizenship. This is a remote position. Maximus TCS (Technology and Consulting Services) Internal Job Profile Code: TCS055, T1, Band 4 Job-Specific Essential Duties and Responsibilities: - Provide 24x7x365 support for enterprise cybersecurity operations, assisting with execution of directed cyber actions under senior guidance. - Perform basic containment activities, including access changes, application removal, configuration updates, and allow/block list management following established procedures. - Support vulnerability management activities, including scanning coordination, remediation tracking, and compliance support. - Assist with implementation and tracking of ISVM-related requirements, ensuring timely remediation and reporting of vulnerabilities. - Contribute to POA&M tracking activities, supporting remediation efforts and preparation of recurring cybersecurity scorecard data. - Monitor security tools and alerts, performing initial triage and escalating issues in accordance with defined processes. - Maintain and update incident records, documentation, and runbooks to support auditability and knowledge management. - Support testing and validation activities related to patching, upgrades, configuration changes, and cyber actions. - Assist with spill response activities and follow established procedures to support containment and recovery efforts. - Provide support across enterprise platforms including cloud environments, operating systems, databases, and network/security infrastructure. Job-Specific Minimum Requirements: - 1+ years of experience in cybersecurity operations, security governance, or enterprise security program support - Experience supporting cybersecurity operations, vulnerability management, or IT security functions. - Familiarity with basic incident response and containment procedures. - Understanding of vulnerability management processes and compliance requirements (e.g., scanning, remediation tracking). - Experience working with security tools, monitoring systems, or ticketing platforms. - Ability to follow standard operating procedures and security runbooks. - Experience supporting documentation, incident tracking, and compliance reporting activities. - Basic understanding of cloud (AWS/Azure), operating systems, and network security concepts. - Ability to work in a 24/7 operational environment with defined escalation procedures. - Ability to obtain and maintain a Public Trust is required. An active Public Trust and/or DHS suitability is preferred. Must be a U.S. Citizen without dual citizenship. - Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent experience) Preferred Skills and Qualifications: - Familiarity supporting large-scale enterprise security operations environments - Familiarity with risk management, POA&M governance, and compliance frameworks - Experience coordinating with security operations centers and external security organizations - Basic knowledge of ITIL-based incident and change management processes - Some reporting, metrics, and dashboard development experience - Ability to work in cross-functional high-visibility environments - Strong communication skills Minimum Requirements TCS055, T1, Band 4 EEO Statement Maximus is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, age, national origin, disability, veteran status, genetic information and other legally protected characteristics. Pay Transparency Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances. Accommodations Maximus provides reasonable accommodations to individuals requiring assistance during any phase of the employment process due to a disability, medical condition, or physical or mental impairment.

Title: Senior Security Engineer, Enterprise Security Location: São Paulo Job Description: At Braze, we have found our people. We’re a genuinely approachable, exceptionally kind, and intensely passionate crew. We seek to ignite that passion by setting high standards, championing teamwork, and creating work-life harmony as we collectively navigate rapid growth on a global scale while striving for greater equity and opportunity – inside and outside our organization. To flourish here, you must be prepared to set a high bar for yourself and those around you. There is always a way to contribute: Acting with autonomy, having accountability and being open to new perspectives are essential to our continued success. Our deep curiosity to learn and our eagerness to share diverse passions with others gives us balance and injects a one-of-a-kind vibrancy into our culture. If you are driven to solve exhilarating challenges and have a bias toward action in the face of change, you will be empowered to make a real impact here, with a sharp and passionate team at your back. If Braze sounds like a place where you can thrive, we can’t wait to meet you. WHAT YOU'LL DO As a Senior Security Engineer on the Enterprise Security team, you'll protect Braze employees, their assets, and work locations using various tools and technologies. Your responsibilities include investigating malware and advanced threats, implementing DLP in a variety of solutions, securing SAAS applications, hardening internal configurations, proposing security architecture enhancements, and developing alerts & reports. In this role you will build, maintain, and document essential security infrastructure operating at the center of cloud operations, product, app security, and system architecture. That includes developing and enforcing policies, collaborating with other business units to enhance SIEM capabilities, and reviewing business partner technologies for security improvements. This role allows for collaboration with technical stakeholders to further expand upon DLP, Integrations management & 3rd party Saas application review, Shadow AI, IAM, SSO, and vulnerability remediation. Take charge of securing communications, facilitating compliance, and deploying automation. You'll operate independently and collaboratively to implement protective systems and mentor junior associates in security concepts. As a senior team member, you'll help build functionality for a high-scale, growing customer base, collaborate with diverse security professionals, address unique security challenges, participate in on-call rotations, and respond to critical incidents. On-call rotation and working with Security and Engineering resources to help respond to critical incidents and escalations is an active part of this role. WHO YOU ARE Qualifications: - 5+ years of Security Engineering experience with a strong focus on enterprise security, network security, endpoint security - 3+ years of experience working in a corporate security organization/environment with hands on, technical, user facing implementation - Prior experience working as a technical authority in a team environment - A self-starter with great communication and organizational skills - Professional experience with the modern tech stack and protecting SaaS applications. Direct technical and hands on experience with securing Email, Mac endpoints, IAM, Crowdstrike EDR, Enterprise networking security (both endpoint and infra), and forensics - Experience conducting end-to-end security reviews of SaaS applications, data flow analysis, Technical architecture, authentication and authorization controls, and contractual security requirements, to ensure third-party tools meet organizational security standards - Experience leading the design, implementation, and continuous tuning of Data Loss Prevention (DLP) programs across endpoints, networks, and cloud environments, including policy development, incident triage, data classification alignment, and cross-functional collaboration to prevent unauthorized exfiltration of sensitive data. - Bonus: - Cloud security experience - Technical Security Certifications that delve deeper than high level concepts - #LI-Hybrid WHAT WE OFFER Braze benefits vary by location, and we encourage you to review our specific benefits offerings for each country here. More details on benefits plans will be provided if you receive an offer of employment. From offering comprehensive benefits to fostering hybrid ways of working, we’ve got you covered so you can prioritize work-life harmony. Braze offers benefits such as: - Competitive compensation that may include equity - Retirement and Employee Stock Purchase Plans - Flexible paid time off - Comprehensive benefit plans covering medical, dental, vision, life, and disability - Family services that include fertility benefits and equal paid parental leave - Professional development supported by formal career pathing, learning platforms, and a yearly learning stipend - A curated in-office employee experience, designed to foster community, team connections, and innovation - Opportunities to give back to your community, including an annual company-wide Volunteer Week and donation matching - Employee Resource Groups that provide supportive communities within Braze - Collaborative, transparent, and fun culture recognized as a Great Place to Work® - ABOUT BRAZE Braze is the leading customer engagement platform that empowers brands to Be Absolutely Engaging™. Braze helps brands deliver great customer experiences that drive value both for consumers and for their businesses. Built on a foundation of composable intelligence, BrazeAI™ allows marketers to combine and activate AI agents, models, and features at every touchpoint throughout the Braze Customer Engagement Platform for smarter, faster, and more meaningful customer engagement. From cross-channel messaging and journey orchestration to Al-powered decisioning and optimization, Braze enables companies to turn action into interaction through autonomous, 1:1 personalized experiences. The company has been consistently recognized as a Leader in marketing technology by industry analysts, and was named a G2 “Best of Marketing and Digital Advertising Software Product” in 2026. Braze was also named a 2026 Best Places to Work by Built In, a 2025 America’s Greenest Companies by Newsweek, and a 2025 Fortune Best Workplace in Technology™ by Great Place To Work®. Braze is also proudly certified as a Great Place to Work® in the U.S., the UK, Australia, and Singapore. The company is headquartered in New York with offices in Austin, Berlin, Bucharest, Chicago, Dubai, Jakarta, London, Paris, San Francisco, São Paulo, Singapore, Seoul, Sydney and Tokyo. BRAZE IS AN EQUAL OPPORTUNITY EMPLOYER At Braze, we strive to create equitable growth and opportunities inside and outside the organization. Building meaningful connections is at the heart of everything we do, and that includes our recruiting practices. We're committed to offering all candidates a fair, accessible, and inclusive experience – regardless of age, color, disability, gender identity, marital status, maternity, national origin, pregnancy, race, religion, sex, sexual orientation, or status as a protected veteran. When applying and interviewing with Braze, we want you to feel comfortable showcasing what makes you you. We know that sometimes different circumstances can lead talented people to hesitate to apply for a role unless they meet 100% of the criteria. If this sounds familiar, we encourage you to apply, as we’d love to meet you. Please see our Candidate Privacy Policy for more information on how Braze processes your personal information during the recruitment process and, if applicable based on your location, how you can exercise any privacy rights.

• Design and engineer security controls for AI-enabled SaaS applications • Define and evolve the enterprise AI Security Architecture, guardrails, and security requirements aligned to business objectives • Treat AI agents as first-class identities, defining authentication, authorization, lifecycle management, and revocation • Identify and mitigate AI-specific risks including data leakage, prompt injection, jailbreaks, model abuse, data poisoning, model extraction, and AI supply-chain risk • Collaborate closely with IAM, SecOps, AppSec, GRC, IT engineering, AI platform teams, and business stakeholders to embed security controls where they belong