Role Description We're hiring a Sr Product Security Engineer to do deep, hands-on security testing across BeyondTrust's product portfolio using AI as a force multiplier. You'll use Claude, Codex, and LLM-driven workflows to build threat hunting skills, develop fuzz factory plugins, and perform context-rich penetration testing that goes beyond what scanners and checklists catch. This is a technical role. You'll discover vulnerabilities, build proof-of-concept exploits, validate findings, and work with engineering to remediate them. You'll also partner closely with Security Architects and Cyber Defense to turn offensive findings into defensive mechanisms: detection signatures, monitoring rules, and hardening guidance informed by real exploitation paths you've validated firsthand. Our Product Security organization operates AI-first. You'll leverage Claude and Codex daily to automate repetitive testing workflows, generate targeted fuzz inputs, build custom security tooling, analyze code paths at scale, and produce exploit PoCs faster than manual methods allow. You'll also contribute back to the team by building reusable skills, prompts, and plugins that make everyone's testing more effective. What You’ll Do - AI-Driven Security Testing & Vulnerability Discovery: - Perform deep, context-aware penetration testing of web applications, APIs, endpoint agents, thick clients, identity systems, and cloud-native services. - Use Claude and Codex to analyze code paths, trace data flows, identify attack surfaces, and generate targeted test cases. - Threat Hunting Skills & Fuzz Factory Plugins: - Build AI-powered threat hunting skills and fuzz factory plugins using Claude and Codex. - Develop custom fuzzers that understand product-specific protocols, input formats, and business logic. - Create reusable skills and agent workflows that automate discovery of vulnerability classes. - Proof-of-Concept Exploit Development: - Develop working proof-of-concept exploits for discovered vulnerabilities. - Use Claude and Codex to accelerate exploit development, generate payloads, and validate exploitation chains. - Vulnerability Validation & Remediation Partnership: - Validate vulnerabilities from all sources and confirm exploitability. - Deliver specific fix recommendations to engineering teams. - Cyber Defense & Architect Partnership: - Partner with Cyber Defense and Security Architects to translate offensive findings into defensive capabilities. - Work with Security Architects to identify emerging attack techniques. - Security Tooling & Automation: - Build and maintain AI-driven security testing tooling integrated into CI/CD pipelines. - Develop custom SAST rules and automated validation workflows using Claude and Codex. - Threat Modeling & Secure Design: - Participate in threat modeling exercises alongside Product Security Architects. - Identify abuse cases and map exploitation paths. Qualifications - 5+ years in Product Security, or Penetration Testing with direct hands-on testing and exploit development. - Strong expertise in web application and API security. - Proficiency with penetration testing tools and methodologies. - Hands-on experience using LLM platforms (Claude, Codex, or similar). - Experience building custom security tooling. - Strong understanding of common vulnerability classes. - Experience collaborating with defensive security teams. - Understanding of cloud security fundamentals (preferably AWS) and CI/CD pipeline security. - Strong communication skills. Preferred - Experience building AI-native security workflows. - Background in securing endpoint technologies. - Experience with mobile application security testing. - Familiarity with container security and infrastructure-as-code scanning. - Experience working with bug bounty programs. - Professional certifications such as OSWE, OSCP, GWAPT, GPEN, or equivalent. - Contributions to security research or open-source security tooling. How We'll Measure Success - Consistent discovery of meaningful vulnerabilities with validated PoC exploits. - AI-powered threat hunting skills and fuzz factory plugins actively finding vulnerability classes. - Validated findings include specific, implementable fix recommendations. - Offensive findings translate into measurable defensive improvements. - Reusable skills, prompts, and plugins you build are adopted by the broader Product Security team. - Engineering and security leadership trust your severity assessments. About Us BeyondTrust is the global identity security leader protecting Paths to Privilege™. Our identity-centric approach goes beyond securing privileges and access, empowering organizations with the most effective solution to manage the entire identity attack surface and neutralize threats, whether from external attacks or insiders. BeyondTrust is leading the charge in transforming identity security to prevent breaches and limit the blast radius of attacks, while creating a superior customer experience and operational efficiencies. We are trusted by 20,000 customers, including 75 of the Fortune 100, and our global ecosystem of partners. Learn more at www.beyondtrust.com .

Role Description We are looking for a talented Senior Network Security Engineer to join our growing global team at Sectigo. The Senior Network Security Engineer is an experienced, hands-on security practitioner responsible for deploying, configuring, and operating enterprise and cloud-delivered security platforms. This role has a strong emphasis on network, SASE, and Zero Trust security, including Palo Alto Networks technologies such as Strata Cloud Manager, GlobalProtect, and Prisma Access Browser. The role is operational in nature and embedded within a 24x7 Security Operations Center (SOC) environment. The engineer will actively support continuous monitoring, incident response, and platform optimization across on-prem and cloud environments, ensuring reliable, scalable, and compliant security controls. - Lead the design, implementation, and maintenance of enterprise and cloud-based security infrastructure - Deploy, configure, optimize, and maintain security platforms with a focus on Palo Alto Networks technologies - Administer and support Strata Cloud Manager, GlobalProtect, and Prisma Access Browser for secure access and Zero Trust enforcement - Support SASE, CASB, MDR, and SIEM integrations across hybrid and cloud environments - Perform continuous security monitoring and deep-dive analysis of security alerts and events - Serve as a key member of the incident response team, participating in detection, response, containment, and recovery activities - Collaborate with infrastructure, networking, cloud, and application teams to embed security controls into designs and deployments - Identify, assess, and mitigate security vulnerabilities, misconfigurations, and emerging threats - Ensure security tooling and architectures align with industry standards and regulatory requirements - Automate repetitive security operations and monitoring tasks using scripting and tooling - Maintain accurate documentation for security configurations, architectures, procedures, and incident response - Participate in a rotating on-call schedule, including nights and weekends, to support 24x7 operations - Perform other job-related duties as required This is a 12-Month Contract and remote position based in India. This is an individual contributor role, reporting to our Senior Manager, Cybersecurity Operations. The targeted compensation package for this role is between 20 LPA to 30 LPA. Qualifications - Minimum of 5 years of hands-on experience deploying, configuring, and maintaining enterprise cybersecurity platforms - Hands-on experience with Palo Alto Networks products, including: - Strata Cloud Manager - GlobalProtect - Prisma Access Browser - Strong understanding of network security, secure remote access, Zero Trust, and SASE architectures - Demonstrated experience securing cloud environments (AWS, Azure, and/or GCP) - Experience operating in a 24x7 SOC environment, supporting monitoring and incident response - Proficiency integrating and troubleshooting security tools across complex hybrid environments - Strong knowledge of security best practices and frameworks such as NIST and ISO 27001 - Ability to work a rotating on-call schedule, including nights and weekends - Ability to thrive in a fast-paced, operationally focused environment Requirements - Palo Alto certifications such as PCNSA or PCNSE - Experience with Zero Trust and identity-aware security models - Strong scripting and automation skills (Python, PowerShell, or similar) - Experience with SIEM platforms, log analysis, and detection tuning - Familiarity with compliance, audit support, and security control validation - Strong communication and cross-team collaboration skills Benefits - Sectigo is an Equal Opportunity Employer. - Commitment to providing equal opportunities throughout your career. - Strong sense of belonging and support for a respectful, inclusive workplace. - Use of Artificial Intelligence (AI) tools during the recruitment process. - Global team with a commitment to engagement and diversity.

• Installation, configuration and troubleshooting of security products using the repeatable project plans under the guidance of Security Solutions Architects. • Work with the client’s IT teams to integrate the solution with various SIEM solutions • Provide complete post-implementation monitoring and provide various weekly/monthly/quarterly reports for the client as defined in the signed SOW. • Document various client implementation configurations and keep the configuration documents up to date. • Assist the client’s Primary Support Engineer and the account managers with the data to be shared with the client for various business reviews. • Work with the Onboard Project Managers (OPMs) to provide the status of the projects during the initial implementation stages. • Manage the security products related support cases for proper and timely updates in accordance to the SLAs for various clients. • Manage the product issue log and work with the Senior Solutions architects to provide the needed assistance for troubleshooting of product specific issues. • Create and manage the status updates for project plans utilizing the templates for all security products related projects for general product onboarding, professional services and managed services maintaining Rimini Street´s high standard SLAs and quality. • Self-training to learn the new security products for efficient implementation and support.

Role Description As a Security Risk Manager, you will be part of a centralized information security governance team providing security risk management services across multiple Deutsche Telekom legal entities. The role focuses on operating and continuously improving the security risk management framework, while supporting and enabling local risk managers through consultation, training, and professional use of GRC tools. You will contribute to transparent risk reporting, effective risk mitigation, and harmonized governance practices in a complex, multinational environment. - Operate and continuously improve the security risk management process, methodologies, and related policies - Ensure alignment with group-level security standards and governance requirements - Support the integration of risk management into business and IT processes - Act as a trusted advisor for supported legal entities on information security risk topics - Train and upskill local risk managers on risk processes, methods, and policies - Provide hands-on guidance during risk identification, assessment, and treatment - Support professional usage of the GRC platform by local risk managers - Assist in risk creation, maintenance, and lifecycle management within the tool - Collect user feedback and represent business needs toward process and tool improvements - Identify, create, and manage security risks in cooperation with stakeholders - Monitor and support risk mitigation actions, including follow-up on progress and effectiveness - Ensure risks are properly documented and audit-ready - Prepare and maintain Top 10 risk reports, quarterly risk summaries, and ad-hoc reports - Define, monitor, and analyze risk KPIs and metrics - Provide management with insights on risk trends and improvement areas Qualifications - Bachelor’s or Master’s degree in Information Security, Computer Science, Engineering, Business Informatics, or a related field - High-level English language knowledge (spoken and written) - At least mid-level German language proficiency - 3–7+ years of experience in Information Security / Cybersecurity / Risk Management / GRC roles - Experience in large enterprise or multinational environments - Strong understanding of information security risk management frameworks (e.g. ISO 27005, NIST RMF) - Knowledge of information security standards (e.g. ISO 27001, NIST, CIS) - Ability to apply security governance principles in practical, business-aligned ways - Strong communication and stakeholder management skills - Ability to explain security and risk topics in business-friendly language - Structured, proactive, and solution-oriented mindset Requirements - Experience in training, coaching, or enablement activities - Experience working in a shared service or internal consulting model is an advantage - CRISC, CISM, CISSP, COBIT, ITIL or similar governance-related certifications - Hands-on experience with GRC tools (e.g. ServiceNow, Archer, OneTrust, or similar) Benefits - Please be informed that our remote working possibility is only available within Hungary due to European taxation regulation.