Title: SAP Security Engineer (GRC – Technical) Job Description: Bright Vision Technologies is a forward-thinking software development company dedicated to building innovative solutions that help businesses automate and optimize their operations. We leverage cutting-edge technologies to create scalable, secure, and user-friendly applications. As we continue to grow, we’re looking for a skilled SAP Security Engineer (GRC – Technical) to join our dynamic team and contribute to our mission of transforming business processes through technology. This is a fantastic opportunity to join an established and well-respected organization offering tremendous career growth potential. Location: 100% Remote (Continental United States) Position Type: In-house Bright Vision Technologies SOW engagement (no third-party client or vendor) Salary: $100K - $150K Experience: 5+ years Sponsorship: No new H1B sponsorship available. H1B transfers welcomed for qualified candidates. Employment Type: Full-time, direct W2 with Bright Vision Technologies (no C2C, no 1099, no third-party) Engagement: Long-term, multi-year, aligned to the Bright Vision SOW delivery roadmap Compensation: Competitive base salary commensurate with experience, plus benefits. Employment Terms & Visa Policy This is a 100% remote, full-time, direct W2 position with Bright Vision Technologies. This role is part of Bright Vision Technologies’ in-house Statement of Work (SOW) engagement. The client, end customer, and employer for this position is Bright Vision Technologies — there is no third-party client, vendor, or implementation partner involved. We do not engage in C2C, 1099, or third-party arrangements for this role. BUT STRICTLY NO C2C/1099/3RD PARTY COMPANIES. ALL OUR ROLES ARE W2 AND NO 3RD PARTY BROKERING PLEASE. Candidates must be willing to work directly as a full-time W2 employee of Bright Vision Technologies and contribute to our in-house SOW deliverables. No new H1B sponsorship is available for this role. However, candidates who are currently on a valid H1B visa and require a transfer are welcome to apply. We will support H1B transfers for qualified candidates. For every role, a technical coding assessment is mandatory. Please apply only if you are confident in your technical abilities and hands-on experience. Job Summary We are seeking an experienced SAP Security and GRC (Governance, Risk, and Compliance) Engineer to design, implement, and operate security and access-control frameworks for complex SAP landscapes, including S/4HANA, ECC, BW/4HANA, Fiori, BTP, and SuccessFactors. In this role you will be responsible for SAP role design, user provisioning, segregation-of-duties analysis, audit support, and the technical operation of SAP GRC suites. The ideal candidate will combine deep expertise in SAP authorization concepts with strong hands-on experience operating SAP GRC Access Control and Process Control, and will partner closely with audit, compliance, and business teams to deliver a secure, auditable SAP environment. Key Responsibilities - Design and maintain SAP authorization concepts and role structures aligned with business processes and least-privilege principles. - Build and maintain master, derived, composite, and business roles for S/4HANA, ECC, and Fiori applications. - Configure and operate SAP GRC Access Control (ARA, ARM, BRM, EAM), including ruleset management, mitigating controls, and emergency access management. - Perform segregation-of-duties analysis and remediation in collaboration with business process owners and internal audit. - Configure user provisioning workflows in SAP GRC ARM, including request types, approval paths, and integration with IDM/IAM platforms. - Operate SAP GRC Process Control for continuous controls monitoring and policy management. - Implement security for Fiori applications, including catalogs, groups, and front-end authorizations. - Configure and operate security for SAP BTP and cloud applications using XSUAA, IAS, and IPS. - Support SAP audits (SOX, GxP, PCI) and respond to audit findings with documented remediation plans. - Implement transport security, table logging, and audit logging in line with internal security policies. - Monitor and remediate SAP Security Notes in coordination with Basis and DBA teams. - Maintain comprehensive, current technical documentation — including architecture diagrams, design decisions, configuration references, runbooks, and operational procedures — so that the system remains supportable, auditable, and easy to onboard new engineers onto over time. - Mentor junior team members and support knowledge transfer across the security team. Required Qualifications - Bachelor’s degree in Computer Science, Engineering, or a related technical discipline. - Five or more years of SAP Security / GRC experience in enterprise landscapes. - Strong hands-on experience with SAP authorization concepts and role design. - Deep experience operating SAP GRC Access Control (ARA, ARM, BRM, EAM). - Experience supporting SAP audits and remediation activities. - Hands-on experience securing Fiori, BTP, and cloud SAP applications. - Familiarity with SAP IDM or third-party IGA tooling. - Working knowledge of SAP Process Control. - Strong understanding of regulatory frameworks such as SOX, GxP, and PCI. - Excellent communication and documentation skills. Preferred Qualifications - SAP-certified Security or GRC credentials. - Experience with SAP Cloud Identity services (IAS, IPS) and SCIM-based integrations. - Familiarity with HANA security and analytic privileges. - Experience with continuous controls monitoring frameworks. - Exposure to SAP RISE / Grow security operating models. Position offered by “No Fee Agency.” Equal Employment Opportunity (EEO) Statement Bright Vision Technologies (BV Teck) is committed to equal employment opportunity (EEO) for all employees and applicants without regard to race, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, veteran status, or any other protected status as defined by applicable federal, state, or local laws. This commitment extends to all aspects of employment, including recruitment, hiring, training, compensation, promotion, transfer, leaves of absence, termination, layoffs, and recall. BV Teck expressly prohibits any form of workplace harassment or discrimination. Any improper interference with employees' ability to perform their job duties may result in disciplinary action up to and including termination of employment.

Design and maintain SAP authorization concepts, configure SAP GRC Access Control, and perform segregation-of-duties analysis while collaborating with business and audit teams to ensure a secure SAP environment.

Title: Senior Networking Security Engineer Location: Kansas City Full time Job Description: Job Description: The ITG division of the National Association of Insurance Commissioners (NAIC) has an exciting opportunity for a Senior Networking Security Engineer. This position is responsible for designing, implementing, and managing the organization's network infrastructure to ensure security, reliability, and optimal performance. This role focuses on maintaining standards, improving systems, and supporting business continuity. . This is a full-time hybrid position, in a positive and flexible environment. Residency within 100 miles of the Kansas City office is required. Responsibilities Include: - Design, implement, and manage enterprise network security systems, including firewalls, WAFs, DNS web filtering, and secure traffic flows. - Serve as a technical authority on network availability, performance, segmentation, and secure architecture. - Translate security policies, procedures, and standards into network architecture and configurations. - Configure, optimize, and maintain firewall platforms, including policy management, upgrades, and vulnerability mitigation. - Keep up to date on new product features, industry developments, emerging security threats, and evolving network technologies to maintain industry-leading expertise. - Maintain clear documentation, standards, runbooks, and operational procedures. - Respond to network alerts and outages promptly, including after-hours support. Management Responsibilities: This position does not have direct reports. Minimum Education and/or Experience Required: - Bachelor’s degree (B.A. or B.S.) from four-year College or university in a computer related field and 8+ years of experience in firewall management and/or equivalent combination of education and technical experience. - Hands-on experience with on-premises and AWS networking (Azure and OCI experience are a plus). - Ability to communicate complex security concepts clearly to technical and non-technical audiences. Preferred Experience: - Experience working in regulated or compliance-driven environments (e.g., SOC 2, GovRAMP, PCI, HIPAA). - Hands-on experience with infrastructure-as-code tools such as Terraform. - Relevant certifications (e.g., Security+, Network+, CCNP, AWS Certified Security, PCNSE) are a plus. - Experience with Cisco, Palo Alto, SIEMS, or other relevant enterprise networking/security technologies. Systems & Technology Requirements: - Windows, Linux, and MacOS Endpoints Wireshark - VPCs/VNETs - Firewalls (Palos preferred but not required) - Web Application Firewalls - Security Groups - DNS web filtering - Network Routing and Switching - AWS Transit Gateway - VPNs Travel: This position requires regular, out-of-state, overnight travel in support of member meetings and events throughout the year. Must be able and willing to travel to locations throughout the United States and with such frequency as necessary to meet the needs of this position and the Association. Compensation $123,000- $142,000, commensurate with education and experience. Sponsorship Applicants must be authorized to work for any employer in the U.S. We are unable to sponsor or take over sponsorship of an employment Visa at this time. Interested in learning more about the amazing benefits the NAIC offers? Visit our Benefits page for more information. The NAIC is proud to be an Equal Opportunity Employer Applicants for all positions are considered without regard to age, race, creed, color, religion, sex, sexual orientation, gender identity or expression, national origin or ancestry, marital status, pregnancy, genetic information, military or veteran status, disability, or any other basis protected by applicable law.

Title: Lead Engineer AI Security - Security Architecture(Remote Or Hybrid) Location: Brooklyn Park, MN / US Job Description: Job Id: R0000442410 The pay range is $132,000.00 - $238,000.00 Pay is based on several factors which vary based on position. These include labor markets and in some instances may include education, work experience and certifications. In addition to your pay, Target cares about and invests in you as a team member, so that you can take care of yourself and your family. Target offers eligible team members and their dependents comprehensive health benefits and programs, which may include medical, vision, dental, life insurance and more, to help you and your family take care of your whole selves. Other benefits for eligible team members include 401(k), employee discount, short term disability, long term disability, paid sick leave, paid national holidays, and paid vacation.  About Us Working at Target means helping all families discover the joy of everyday life. We bring that vision to life through our values and culture. Learn more about Target here. Target is one of the world’s most recognized brands and one of America’s leading retailers. But behind the brand our guests love, is a culture of continual innovation and right now, we are up to big things! Target’s security team is a place where innovation happens daily. Interested in a culture that combines ongoing learning, engineering excellence, and stellar outcomes? We are too – that’s why we work here. Join our team to improve Target’s security and move the business forward. As a Lead Engineer on the Security Architecture team, you’ll collaborate with technical and leadership teams across Target Tech to ensure that systems are designed and built securely. You will identify relevant security risks, develop appropriate mitigation strategies, integrate security functions and controls into the overall system architecture, evaluate and provide feedback on proposed architectures, and design secure architecture. This role is highly technical, and you bring a deep understanding of security risks, controls, mitigations, and standards to a collaborative and advisory role, helping the rest of the enterprise as new platforms and systems are built, and as existing ones are modified over time. Beyond the deep expertise, you have great interpersonal skills: our Security Architects are called upon to collaborate across the enterprise and have exceptional communication skills that enable open and cooperative partnerships. Expect to: - Collaborate with system designers to integrate security requirements into the design phase of IT systems - Develop and maintain security architecture documentation, including security models, frameworks, and diagrams - Ensure that security architecture aligns with the organization’s business objectives and regulatory requirements - Understand security risks in order to identify potential vulnerabilities and threats - Develop risk mitigation strategies and recommend appropriate security controls - Design and implement security solutions, including firewalls, encryption protocols, and access control mechanisms - Collaborate with development and operations teams to ensure secure creation and deployment of IT systems - Provide guidance on secure coding practices - Prioritize driving highly impactful changes that improve the business - Conduct full-stack architecture reviews of products and platforms - Provide expertise on information security for complex systems and applications in cloud and on-prem environments - Design security reference architectures and create implementation/configuration guides - Provide expertise on creation and implementation of security controls with an emphasis on cloud technologies - Efficiently assess and communicate risk accurately while negotiating priorities with cross-domain stakeholders - Collaborate with engineering teams to perform advanced security analysis on complex cloud systems, identifying gaps while contributing to design solutions and security requirements Core responsibilities of this job are described within this job description. Job duties may change at any time due to business needs. About You: - 4-year degree OR equivalent experience - Polyglot programmer comfortable in many languages across different platforms - 7+ years of hands-on experience in technology, with extensive knowledge of cybersecurity domains including Information Protection, AI Security and/or Cloud Security (GCP strongly preferred) - Demonstrated curiosity and ability to learn - Expertise in containerization technologies and tools - Solid understanding of genAI/ML - Understanding of prompt injection and its various styles (direct, indirect, RAG poisoning, etc.) / Familiarity with OWSAP top ten for LLMs - Understanding of MCP auth patterns including dynamic client registration - Knowledge in RAG authorization patterns - Experience mitigating the security risks of local coding agents. - Seeks out cross-team collaboration opportunities - Stays current on relevant technologies with self-directed learning - Excellent written and verbal interpersonal skills with strong presentation abilities - Proven history of effectively utilizing a variety of security tools and technologies across diverse environments. The ideal candidate will not be limited to specific vendors or solutions but will possess the technical depth to comprehend and implement an end-to-end solution that aligns with our reference security architecture's requirements - Good understanding of security management workflows in large enterprise organizations and complex environments - Has a good understanding of the current threat landscape and the challenges that most organizations are facing - Knowledge of security frameworks, standards, and best practices (e.g., NIST, ISO/IEC 27001) - Strong understanding of network security, cryptography, and secure software development - Experience with security technologies, such as firewalls, IDS/IPS, SIEM, and DLP - Excellent analytical, problem-solving, and communication skills Preferred: - GCP native security product experience (VPC Service Controls, Organization constraints, Cloud Armor, NextGen Firewall etc.) - Experience with Google SCC or Wiz is a plus - Vertex AI experience - AWS or Azure experience This position may be considered for a Remote or Hybrid (known internally at Target as "Flex for Your Day") work arrangement based on Target's needs.  A Remote work arrangement means the team member works full-time from home or an alternate location that's not a Target location, does not have a desk at a Target location and may travel to HQ up to 4 times a year.  A Hybrid/Flex for Your Day work arrangement means the team member's core role may be performed either remote or onsite at a Target location depending upon what your role, team and tasks require for that day. Work duties cannot be performed outside of the country of the primary work location, unless otherwise prescribed by Target.