• Advance Firefox's security architecture and cryptography stack: Contribute to improvements in Firefox's core security systems, with a focus on cryptographic protocols, WebPKI, and security-sensitive web APIs. Help implement and maintain security features that support the evolution of public key infrastructure on the web. • Design and implement web platform security features: Develop and ship web platform features in collaboration with teammates and the broader web community. Contribute to standards-based, secure, and interoperable implementations across Firefox. • Improve browser reliability, performance, and resource efficiency: Investigate and resolve issues impacting stability, correctness, and performance. Analyze and improve memory usage and efficiency within a complex, multi-threaded browser environment. • Collaborate on security initiatives: Partner with engineers across teams to identify, prioritize, and address security issues. Participate in debugging, root cause analysis, and implementation of effective long-term solutions. • Contribute to technical design and planning: Participate in technical discussions, design reviews, and project planning for security-related initiatives. Help evaluate tradeoffs and contribute to engineering decisions within your area of work.

• Advance Firefox's security architecture and cryptography stack: Contribute to improvements in Firefox's core security systems, with a focus on cryptographic protocols, WebPKI, and security-sensitive web APIs. Help implement and maintain security features that support the evolution of public key infrastructure on the web. • Design and implement web platform security features: Develop and ship web platform features in collaboration with teammates and the broader web community. Contribute to standards-based, secure, and interoperable implementations across Firefox. • Improve browser reliability, performance, and resource efficiency: Investigate and resolve issues impacting stability, correctness, and performance. Analyze and improve memory usage and efficiency within a complex, multi-threaded browser environment. • Collaborate on security initiatives: Partner with engineers across teams to identify, prioritize, and address security issues. Participate in debugging, root cause analysis, and implementation of effective long-term solutions. • Contribute to technical design and planning: Participate in technical discussions, design reviews, and project planning for security-related initiatives. Help evaluate tradeoffs and contribute to engineering decisions within your area of work.

• Drive the generation services and technologies business to meet or exceed quarterly and annual quota objectives in partnership with the account teams. • Following the Optiv Standardized Sales Operating Processes (SOPs) to achieve consistent success. • Understand and maintain knowledge of the client’s security environment, business operations, security needs, and risk appetite. • Identify their security concerns and how they correlate to Optiv’s strategic solutions across the assigned domains and holistic cybersecurity programs. • Actively participate in the Field Center of Excellence for the assigned domain and position Optiv services and our key technology partners and their products to deliver value to clients. • Identify cross-sell and upsell opportunities across clients and Optiv's partner relationships. • Qualify leads and partner with internal colleagues to determine scope, proposal management, and follow through to closure. • Participate in sales opportunities across Optiv's entire portfolio. • Clearly articulate how the necessary elements of the Optiv technology and services portfolio meet the specific needs of the client stakeholders at the leadership level. • Stay abreast of industry trends, news, and maintain a broad understanding of the security landscape to facilitate thought leadership, support, analysis, and guidance to clients and internal Optiv groups. • Collaborate with service delivery to ensure the team has the necessary supporting domain specialty materials that present a consistent and comprehensive approach. • Effectively work with multiple client personas across the security team, as well as other relevant personas, to develop a security strategy and define roadmaps to execute on the security strategy aligned with business goals, budgetary spend, and metrics based on return of investment. • Maintain advisory relationships with key stakeholders at clients by facilitating thought leadership, support, information, and guidance in conjunction with sales partners. • Maintain strong working relationships with relevant Optiv technology partners, based on client spend and Optiv focus. • Design and solution complete security programs to meet client objectives across technology and services including; facilitating new discussions by leveraging peer and industry network contacts performing requirements gathering analysis, and technology selection criteria coordinating demonstrations and security technology evaluations • Interface and partner with the internal Optiv teams, particularly service delivery liaisons, to align client expectations with the entire Optiv solution portfolio to ensure service delivery excellence and client satisfaction. • Listen for client feedback and continually share with internal teams to evaluate and cultivate continuous improvement. • Participate in account planning, forecasting, and pipeline management activities. • Participate in managing and prioritizing the proposal process to create business proposals, contracts, and respond to RFI/RFP’s. • Actively pursue personal development by maintaining and obtaining technical capabilities, soft skills, and security-specific knowledge through formal education, certification, and other avenues.

Role Description First Merchants Bank is seeking a Security Automation Engineer to join our team! This position will be responsible for designing, engineering, and governing automated vulnerability remediation execution across the enterprise. This role owns the end-to-end remediation system, including automation, orchestration, validation, and reporting. The role is accountable for transforming remediation from manual, ticket-driven processes into event-driven, automated execution pipelines capable of achieving multi-day remediation timelines for critical vulnerabilities. Working across Cyber, Endpoint, Systems, Network, Cloud, and Application teams, this role establishes standardized remediation playbooks and ensures vulnerabilities are remediated consistently, efficiently, and in alignment with regulatory and operational expectations. - Remediation Automation & Orchestration - Design and implement event-driven automated workflows that leverage AI and scripting to drive remediation across endpoints, servers, networks, applications, and cloud platforms. - Integrate vulnerability scanning tools, ticketing systems, and change management platforms into cohesive, low-friction remediation pipelines. - Reduce manual handoffs and execution variance through automation-first remediation models. - Evaluate and integrate AI-assisted triage and prioritization capabilities to support compressed remediation timelines. - Eliminate manual ticket routing and approval dependencies for pre-approved remediation scenarios. - Enterprise Remediation Playbooks - Create and maintain standardized remediation playbooks by platform and asset class (endpoints, servers, network, cloud, applications). - Define patching, configuration hardening, mitigation, and exception handling paths for each asset class. - Build playbooks that enable autonomous execution without human intervention. - Ensure playbooks account for scenarios where patching cannot meet SLA windows, providing fallback mitigation workflows (containment, isolation, configuration controls) as valid operational alternative(s). - Execution Ownership & Validation - Own remediation tracking, validation scanning, re-scan scheduling, and formal closure across all asset classes. - Partner with execution teams to identify and resolve systemic blockers to remediation. - Partner with Cyber to maintain enterprise-wide visibility into remediation status and proactively escalate aging items. - Risk, Audit & Compliance Support - Produce audit-ready remediation evidence as part of automated workflows. - Ensure exception handling and risk acceptance processes are documented, approved, and time-bound. - Support regulatory and audit requirements (FFIEC, GLBA, PCI-DSS, SOX). - Tooling & Platform Integration - Administer and optimize integrations between vulnerability scanning platforms, ITSM systems, and automation tooling. - Evaluate emerging tools and capabilities to improve remediation velocity, coverage, and automation breadth. - Serve as a subject-matter expert on remediation tooling for IT Operations and Cyber/Information Security teams. - Continuous Improvement & Metrics - Define, track, and report on key remediation KPIs: Mean Time to Remediate (MTTR), SLA compliance rate, backlog aging, and automation coverage. - Identify recurring remediation failures and engineer durable solutions that reduce or eliminate manual intervention. - Present remediation program metrics and maturity updates to IT Operations and Information Security leadership on a regular cadence. Qualifications - High School Diploma or equivalent (GED). - At least five (5) years of experience in infrastructure engineering, security operations, or IT operations within a regulated enterprise environment. - At least two (2) years of experience with API-based integrations, SOAR platforms, automation frameworks, and building and operating automation or orchestration workflows in an enterprise context. - At least two (2) years of hands-on experience with enterprise vulnerability management and scanning platforms (Crowdstrike VM, Tenable.io/Nessus, Qualys, or Rapid7 InsightVM). Requirements - Bachelor’s degree in computer science, security, or a related field (preferred). - Industry certifications: CISSP, CompTIA Security+, CEH, GIAC GPEN, or equivalent (preferred). - Experience evaluating or operating AI-assisted security tooling and an ability to govern AI use in a compliance-sensitive context (preferred). - Previous experience in banking, financial services, or another heavily regulated industry (preferred). - Experience with ITSM and ticketing platforms (preferred). - Proficiency in scripting and automation (Python, PowerShell, Ansible, or equivalent) (preferred). - Strong working knowledge of vulnerability management lifecycles, CVSS scoring, and remediation prioritization strategies (preferred). - Proven ability to influence and coordinate cross-functional teams without direct management authority (preferred). - Excellent written and verbal communication skills (preferred). Benefits - Base Pay - PLUS Bonuses - Medical, Dental and Vision Insurance - 401k - Health Savings and Flexible Spending Accounts - Vacation/Sick Time - Paid Holidays - Paid Parental Leave - Tuition Reimbursement - Additional Benefits Company Description First Merchants is guided by a genuine philosophy of being a meaningful place to work and having a prosperous impact across all walks of life throughout the communities we serve, including consumers, businesses and other organizations. Our Vision, Mission and Team statement reflect and reinforce that authentic service philosophy. - Our Vision: To enhance the financial wellness of the diverse communities we serve. - Our Mission: To be the most responsive, knowledgeable, and high-performing financial organization for our clients, teammates, and shareholders. - Our Team: "We are a collection of dynamic colleagues with diverse experiences and perspectives who share a passion for positively impacting lives. We are genuinely committed to attracting and engaging teammates of diverse backgrounds. We believe in the power of inclusion and belonging." Apply today to begin your career with us!