Title: SAP Security Engineer (GRC – Technical) Job Description: Bright Vision Technologies is a forward-thinking software development company dedicated to building innovative solutions that help businesses automate and optimize their operations. We leverage cutting-edge technologies to create scalable, secure, and user-friendly applications. As we continue to grow, we’re looking for a skilled SAP Security Engineer (GRC – Technical) to join our dynamic team and contribute to our mission of transforming business processes through technology. This is a fantastic opportunity to join an established and well-respected organization offering tremendous career growth potential. Location: 100% Remote (Continental United States) Position Type: In-house Bright Vision Technologies SOW engagement (no third-party client or vendor) Experience: 5+ years Salary: 100k - 150k Sponsorship: No new H1B sponsorship available. H1B transfers welcomed for qualified candidates. Employment Type: Full-time, direct W2 with Bright Vision Technologies (no C2C, no 1099, no third-party) Engagement: Long-term, multi-year, aligned to the Bright Vision SOW delivery roadmap Compensation: Competitive base salary commensurate with experience, plus benefits. Employment Terms & Visa Policy This is a 100% remote, full-time, direct W2 position with Bright Vision Technologies. This role is part of Bright Vision Technologies’ in-house Statement of Work (SOW) engagement. The client, end customer, and employer for this position is Bright Vision Technologies — there is no third-party client, vendor, or implementation partner involved. We do not engage in C2C, 1099, or third-party arrangements for this role. BUT STRICTLY NO C2C/1099/3RD PARTY COMPANIES. ALL OUR ROLES ARE W2 AND NO 3RD PARTY BROKERING PLEASE. Candidates must be willing to work directly as a full-time W2 employee of Bright Vision Technologies and contribute to our in-house SOW deliverables. No new H1B sponsorship is available for this role. However, candidates who are currently on a valid H1B visa and require a transfer are welcome to apply. We will support H1B transfers for qualified candidates. For every role, a technical coding assessment is mandatory. Please apply only if you are confident in your technical abilities and hands-on experience. Job Summary We are seeking an experienced SAP Security and GRC (Governance, Risk, and Compliance) Engineer to design, implement, and operate security and access-control frameworks for complex SAP landscapes, including S/4HANA, ECC, BW/4HANA, Fiori, BTP, and SuccessFactors. In this role you will be responsible for SAP role design, user provisioning, segregation-of-duties analysis, audit support, and the technical operation of SAP GRC suites. The ideal candidate will combine deep expertise in SAP authorization concepts with strong hands-on experience operating SAP GRC Access Control and Process Control, and will partner closely with audit, compliance, and business teams to deliver a secure, auditable SAP environment. Key Responsibilities - Design and maintain SAP authorization concepts and role structures aligned with business processes and least-privilege principles. - Build and maintain master, derived, composite, and business roles for S/4HANA, ECC, and Fiori applications. - Configure and operate SAP GRC Access Control (ARA, ARM, BRM, EAM), including ruleset management, mitigating controls, and emergency access management. - Perform segregation-of-duties analysis and remediation in collaboration with business process owners and internal audit. - Configure user provisioning workflows in SAP GRC ARM, including request types, approval paths, and integration with IDM/IAM platforms. - Operate SAP GRC Process Control for continuous controls monitoring and policy management. - Implement security for Fiori applications, including catalogs, groups, and front-end authorizations. - Configure and operate security for SAP BTP and cloud applications using XSUAA, IAS, and IPS. - Support SAP audits (SOX, GxP, PCI) and respond to audit findings with documented remediation plans. - Implement transport security, table logging, and audit logging in line with internal security policies. - Monitor and remediate SAP Security Notes in coordination with Basis and DBA teams. - Maintain comprehensive, current technical documentation — including architecture diagrams, design decisions, configuration references, runbooks, and operational procedures — so that the system remains supportable, auditable, and easy to onboard new engineers onto over time. - Mentor junior team members and support knowledge transfer across the security team. Required Qualifications - Bachelor’s degree in Computer Science, Engineering, or a related technical discipline. - Five or more years of SAP Security / GRC experience in enterprise landscapes. - Strong hands-on experience with SAP authorization concepts and role design. - Deep experience operating SAP GRC Access Control (ARA, ARM, BRM, EAM). - Experience supporting SAP audits and remediation activities. - Hands-on experience securing Fiori, BTP, and cloud SAP applications. - Familiarity with SAP IDM or third-party IGA tooling. - Working knowledge of SAP Process Control. - Strong understanding of regulatory frameworks such as SOX, GxP, and PCI. - Excellent communication and documentation skills. Preferred Qualifications - SAP-certified Security or GRC credentials. - Experience with SAP Cloud Identity services (IAS, IPS) and SCIM-based integrations. - Familiarity with HANA security and analytic privileges. - Experience with continuous controls monitoring frameworks. - Exposure to SAP RISE / Grow security operating models. How to Apply Would you like to know more about this opportunity? We recognize that our people are our strength, and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Bright Vision Technologies is an Equal Opportunity Employer, including Disability/Veterans. Position offered by “No Fee Agency.” Equal Employment Opportunity (EEO) Statement Bright Vision Technologies (BV Teck) is committed to equal employment opportunity (EEO) for all employees and applicants without regard to race, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, veteran status, or any other protected status as defined by applicable federal, state, or local laws. This commitment extends to all aspects of employment, including recruitment, hiring, training, compensation, promotion, transfer, leaves of absence, termination, layoffs, and recall. BV Teck expressly prohibits any form of workplace harassment or discrimination. Any improper interference with employees' ability to perform their job duties may result in disciplinary action up to and including termination of employment.

Title: Senior Director, Information Security & Compliance Location: United States Job Description: About Beeline Medicines: Beeline Medicines is a clinical‑stage biotechnology company focused on developing and delivering category-leading precision therapies to transform the lives of people living with autoimmune and inflammatory diseases. With a portfolio of potential best-in-class and first-in-disease therapeutic candidates that directly target key pathways governing dysregulated immunological and inflammatory responses, the Company is developing medicines that have the opportunity to provide durable, life-changing impact. Led by an established executive team and backed by world-class life science investors, each day Beeline Medicines is determined to bring the scientific rigor and operational excellence to get to what matters for patients – realizing a world where people with immune-mediated diseases can live life fully. Job Summary: The Senior Director, Information Security & Compliance is responsible for building, operating, and continuously improving the company's information security program. This role owns security governance, risk management, regulatory compliance, and security operations across all IT systems and data. The Senior Director establishes the security policy framework, manages relationships with managed security service providers, coordinates external security assessments, and ensures the company maintains a security and compliance posture appropriate for a clinical-stage biopharma preparing for public company obligations. This is a hands-on leadership role. At a company of this size, the Senior Director operates as a solo security practitioner with significant leverage through managed security partners (SentinelOne Vigilance MDR, Huntress ITDR/SIEM, Zscaler ZIA) and external assessment firms. The role reports to the VP of IT and works closely with Quality, Legal, Finance, and external auditors to ensure security controls satisfy SOX, GDPR, GxP, and FDA regulatory requirements. Work Arrangement & Location: Remote - This position is designated as remote; the incumbent will be expected to travel to Beeline Medicines’ offices on a periodic basis to support in-person collaboration, team engagement, and business operations. The frequency and scheduling of such visits will be determined at the company's discretion based on business need. Essential Duties and Responsibilities: - Security Governance & Policy. Own the information security policy framework, including development, maintenance, and periodic review of all security policies, standards, and procedures. Ensure policies align with NIST CSF 2.0, NIST SP 800-53, and applicable regulatory requirements (SOX, GDPR, GxP). Present the security posture and risk landscape to IT leadership and executive stakeholders. - Risk Management & Vendor Security. Lead IT risk management activities, including risk identification, assessment, treatment planning, and risk register maintenance. Conduct and coordinate vendor security risk assessments for third-party service providers. Support the company's broader enterprise risk management process with IT-specific risk inputs. - Compliance & External Assessments. Own IT General Controls (ITGCs) for SOX compliance readiness, including access controls, change management controls, computer operations, and audit evidence preparation. Coordinate with external SOX auditors, providing documentation, walkthroughs, and remediation of findings. Manage relationships with external firms performing penetration testing, NIST controls mapping, and security control assessments - Security Operations & MSSP Management. Manage the company's managed security service provider ecosystem, including SentinelOne Vigilance MDR (endpoint detection and response), Huntress (identity threat detection, SIEM), and Zscaler ZIA (network security). Define alert escalation procedures, review detection efficacy, and ensure coordinated incident response across all providers. - Incident Response. Own the security incident response program, including the incident response plan, tabletop exercises, breach notification procedures, and post-incident reviews. Serve as the primary technical incident coordinator, working with managed security providers for detection and containment and with Legal and the external DPO for regulatory notification obligations. - Identity & Access Governance. Design and enforce identity and access management controls in Microsoft Entra ID, including Conditional Access policies, privileged access governance, access reviews, and role-based access control. Ensure access controls satisfy SOX ITGC requirements, FDA 21 CFR Part 11 electronic access provisions, and GDPR data access minimization principles. - Security Awareness & Training. Own security awareness and training program execution in coordination with KnowBe4, including phishing simulation campaigns, security awareness training content, completion tracking, and remedial training for failed simulations. Maintain training records as audit evidence for SOX and GxP compliance. - Perform other duties and responsibilities as assigned Qualifications: - Education: Bachelor's degree in Information Security, Computer Science, Information Technology, or a related discipline; equivalent professional experience accepted. - 12+ years of progressive information security experience with at least 5 years in a security leadership role (Manager, Director, or equivalent) preferred. - Demonstrated experience building or significantly maturing an information security program, including policy development, risk management, and compliance framework implementation. - Experience with security frameworks: NIST CSF, NIST SP 800-53, ISO 27001, or equivalent. - Direct experience with SOX IT General Controls — either implementing ITGCs for IPO readiness or supporting ongoing SOX compliance at a public company. - Strong working knowledge of Microsoft 365 security controls, including Entra ID, Conditional Access, Defender, and Purview. - Demonstrated experience building or significantly maturing an information security program, including policy development, risk management, and compliance framework implementation. - Experience managing managed security service providers (MDR, MSSP, or similar) and coordinating external security assessments (penetration testing, controls testing, risk assessments). - Demonstrated experience building or significantly maturing an information security program, including policy development, risk management, and compliance framework implementation - Independent judgment and self-direction — this role operates as a solo security practitioner at a small company and must prioritize effectively without day-to-day supervision. - Strong written and verbal communication with the ability to translate security risks into business terms for executive and non-technical audiences. Salary Range: The expected salary range for this position varies by location and will be communicated based on the country or region in which the selected candidate is hired. Actual pay will be determined based on experience, qualifications, location, and other job-related factors permitted by applicable local law. A discretionary annual bonus and long-term incentive award (e.g., equity) may be available based on individual and Company performance. Salary Range $264,000 - $285,000 USD Benefits: We offer a comprehensive benefits package tailored to the country and region in which you are hired, in compliance with local laws and practices. Benefits may include, but are not limited to: - Competitive health and wellness coverage (structure and premiums vary by country) - Paid time off, public holidays, and additional leave entitlements in accordance with local requirements - Flexible work arrangements / hybrid schedule Benefits vary by location and are subject to eligibility requirements, local regulations, and plan terms. Specific benefit details applicable to your country or region will be provided during the offer process. Equal Employment Opportunity: Beeline Medicines is an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity or expression, national origin, disability, age, protected veteran status, or any other characteristic protected by applicable federal, state, or local law. Reasonable Accommodation: If you require a reasonable accommodation to participate in the application or interview process. Privacy Upon submission of this form I understand that Beeline Medicines is based in the United States and personal data submitted in the form will be transferred and accessed in the U.S., Information about Beeline Medicines privacy practices can be found at Privacy Policy - Beeline Medicines.

Title: Security Engineer Location: Remote Department: Palo (Sales Operations) Full Time Experienced Job Description: Secur-Serv is a leading managed services provider of IT, print, and hardware services, with a security focus at the core of every service. Secur-Serv provides nationwide, on-site service to businesses of every size, focusing on the financial, manufacturing, transportation, and healthcare industries. Why Secur-Serv? Join Secur-Serv because we are committed to professional and personal growth, working with employees to develop a defined career path and helping them achieve their career goals with internal and external training. We empower our employees to innovate and be a part of solutions that improve processes, systems, and transformation. We recognize and provide an environment where each and every employee can make an impact.. - Explore new training opportunities through our LinkedIn Learning platform and partners to develop your skills and career. - Free wellness and mental health resources via our Employee Assistance Program (EAP) available which is all employees for help with life's stresses and up to three visits with a professional. This is a remote, work-from-home position, and all qualified candidates are encouraged to apply in the continental U.S., with the exception of candidates from California, Maryland, Colorado, Washington, New York, Illinois, or New Jersey. POSITION SUMMARY The Security Engineer designs, implements, and maintains secure network access solutions for our customer's (Palo Alto) enterprise environment. Will work closely with network, cloud, and IT operations teams to optimize performance, troubleshoot issues, and ensure compliance with organizational security standards. ESSENTIAL RESPONSIBILITIES - Follow all Secur-Serv requirements, policies, procedures, and management directions - Migrate customers from legacy firewall technologies to Palo Alto Networks platforms - Build custom security policies and application signatures, configured for our client’s needs - Take every opportunity to maintain proficiency and increase the level of knowledge on Palo Alto Networks SASE products, software, and services - Provide after-hours and weekend on-call support as needed to support maintenance activities - Analyze logs and events from the solution to perform initial troubleshooting and issue identification - Work with our Technical Assistance Center to troubleshoot and diagnose support cases - Maintain the Company's solution and provide mentorship on code upgrades and best practices - Ensure client needs are met and deliverables produced on time according to specified project deliverables and scope REQUIREMENTS - Bachelor’s degree in Computer Science, Electrical Engineering, Computer Engineering or a related technical field or equivalent background or military experience - Minimum 4 years’ experience in professional services - PCNSE, CCNA, CCNP, and/or CCIE certification - Project leadership experience - ability to drive organizations and resources to complete required tasks in service of end goals - Detailed technical experience in the installation, configuration, and operation of high-end firewall appliances - Strong understanding of LAN and WAN networking protocols and technologies, including switching, routing, firewalls and security solutions - Strong TCP/IP networking skills - Strong dynamic routing skills (BGP, OSPF, etc) - Experience working with Remote Access VPN solutions, IPSEC, PKI & SSL, TCP/IP, Authentication Protocols (LDAP, RADIUS, SAML, etc.) - Experience working with URL filtering - Experience working with Proxy and SSL Decryption - Experience working with Windows and MAC OS including (debugging, editing Windows Registries, Plist, etc.) - Experience with one or more of these vendors: Palo Alto Networks NGFW, Cisco, Checkpoint, Juniper (Netscreen), Fortinet products, Symantec/ Blue Coat, Zscaler - Good troubleshooting skills and ability to use tools like tcpdump & Wireshark - Application Delivery expertise – L7 SLB / Global SLB / Traditional Link LB - Application Performance Monitoring expertise – Response time metrics, Application identification - Packet capture analysis / fault isolation and remediation - In-depth knowledge and deployment experience of SD-WAN and Remote Access technologies - Network Security expertise (IPS/IDS, ZBFW, NGFW) - In-depth IP Routing protocol expertise (BGP, OSPF, EIGRP) - Implementation of Legacy WAN solutions (MPLS, Leased Line, Frame Relay, Satellite, Internet VPN, ECMP, DMVPN) - Global-scale network design - Demonstrable Virtualization experience (VMware/Microsoft/Citrix/Linux KVM) - Ability to work in a cross-functional environment which involves coordination with different teams such as Sales/Pre Sales/Product Management/Engineering - Good written and verbal communication skills with confirmed ability to communicate with senior leaders and technical peers - Desire to learn on your feet and thrive on the bleeding edge of networking. PREFERRED SKILLS/EXPERIENCE - Experience with Prisma Access - Experience with public clouds like AWS/GCP/Azure - Scripting and automation development experience PHYSICAL/MENTAL REQUIREMENTS - Sit Frequently at a desk - Frequent fine hand and finger movements (keyboard, writing, mouse movement) - Continual close visual acuity for reading - Hearing and Speaking for communication within and outside of company. - May be required to lift/push/pull up to 10 pounds for set up/movement of office equipment, - Mental Requirements – must be able to consistently: - Learn new tasks, - Remember Processes, - Maintain focus, - Complete tasks independently - Make timely decisions in the context of a workflow, - Ability to communicate effectively, - Able to adhere to process protocol in a timely manner WE ARE AN EQUAL OPPORTUNITY EMPLOYER.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law.

Title: Security Engineer Location: San Francisco Office (Fremont St); Bellevue, WA; San Jose Office (First St) Department: Data Center Business Job Description: Lambda, The Superintelligence Cloud, is a leader in AI cloud infrastructure serving tens of thousands of customers. Our customers range from AI researchers to enterprises and hyperscalers. Lambda's mission is to make compute as ubiquitous as electricity and give everyone the power of superintelligence. One person, one GPU. If you'd like to build the world's best AI cloud, join us. *Note: This position requires presence in our San Francisco/San Jose/Bellevue office location 4 days per week; Lambda’s designated work from home day is currently Tuesday. About the Role Lambda Security protects some of the world's most valuable digital assets: training data, model weights representing immense computational investments, and the sensitive inputs required to leverage best-of-breed AI models. We're responsible for securing every byte that powers breakthrough artificial intelligence. As a Security Engineer at Lambda, you'll touch many areas across the security program such as building detections, hardening infrastructure, reviewing designs, automating toil, and responding to incidents. Reporting to the Head of Security and partnering closely with Product Engineering, Data Center Operations and Engineering, IT, and embedded Technical Program Managers, your work shapes the security posture customers rely on. Security at Lambda directly enables customer trust and unlocks enterprise revenue. Our customers run billion-dollar training jobs and irreplaceable model weights on our infrastructure; our job is to make Lambda the safest place to build with AI. Over the next 12-18 months, you'll help deliver our 2026 security roadmap, expand detection coverage for AI-specific threats, help mature our incident response program, and ship security automation that other engineering teams adopt voluntarily. You'll also have direct access to LLMs hosted on Lambda's own infrastructure to push security operations beyond what's possible elsewhere. Security is a broad field, and we don't expect you to be an expert in everything our team does, but we do expect you to learn quickly, ship across domains, and support the specialists around you. If you enjoy moving between detection, architecture, and platform work and want to build security alongside the engineers you're protecting rather than from the outside then we'd love to talk. We value diverse backgrounds, experiences, and skills, and we are excited to hear from candidates who can bring unique perspectives to our team. If you do not exactly meet this description but believe you may be a good fit, please still apply and help us understand your readiness for this role. Your application is not a waste of our time. What You'll Do - Build and Tune Detections: Develop and refine detection content across our SIEM and EDR to catch threats targeting customer data, model weights, and infrastructure. - Respond to Incidents: Participate in on-call, lead investigations end-to-end, and turn each incident into automation, playbooks, or controls that prevent the next one. - Harden Systems Directly: Remediate vulnerabilities and security findings in production, partnering with engineering teams when fixes cross team boundaries. - Review Architectures and Code: Provide actionable security feedback on high-level designs and individual changes, and turn recurring review patterns into reusable standards. - Build Security Tooling: Ship Python or Go services that automate evidence collection, vulnerability triage, and other toil, using Lambda's hosted LLMs where they meaningfully accelerate the work. - Partner Across Engineering: Work with Product Engineering, Data Center Operations and Engineering, IT, and Legal to land security improvements at the moments they're cheapest to adopt. - Balance Strategic and Tactical: Recognize when to invest in a long-term fix versus when "good enough" is exactly that, and bias toward measurable forward progress. What We Think a Candidate Needs to Demonstrate to Succeed - 5+ years of demonstrated security engineering experience, either directly as a security engineer or as an engineer driving security outcomes. We also welcome equivalent backgrounds: significant formal security training paired with strong engineering experience. - A track record of working across security domains; for example, shipping detection work in one role and architecture, platform, or vulnerability management work in another. We don't expect mastery of every domain; we do expect demonstrated breadth and eagerness to learn. - Thrives in high-speed, high-ambiguity startup environments where priorities shift regularly and structure must be built while executing. - Strong hands-on Linux experience that showcases your ability to protect both our applications and the cloud we build underneath them. - Comfortable solving problems in Python, Go, or a similar language, with the discipline to ship production-grade tooling rather than only one-off scripts. - Excellent collaboration with technical teams both with and without authority (we're all on the same team!). Nice to Have - You've led or developed a meaningful component of a security program (detection & response, security architecture, platform/tooling, vulnerability management, GRC operations, etc.). - Experience driving or providing significant evidence for compliance audits such as SOC 2, ISO 27001, PCI-DSS, HIPAA/HITECH, or FedRAMP. - Significant experience operating large-scale production services (e.g., SRE across thousands of hosts) or with virtualization at scale (KVM, Hyper-V, Xen). - You've built or deployed critical security infrastructure such as SIEM, SOAR, EDR, IDS/IPS, or canary/honeypot systems. - Experience with AI/ML infrastructure security, model security, or protecting high-value computational workloads. - Enthusiasm about leveraging direct access to state-of-the-art LLMs to push security operations beyond the status quo, including through automated triage, intelligent alert correlation, AI-assisted code review. Salary Range Information The annual salary range for this position has been set based on market data and other factors. However, a salary higher or lower than this range may be appropriate for a candidate whose qualifications differ meaningfully from those listed in the job description. Compensation - San Francisco / San Jose$296K – $395K - Bellevue$266K – $356K