Role Description In this role, you will be responsible for supporting the organization’s security posture through proactive risk management, operational readiness, and process improvement initiatives. You will collaborate closely with cross-functional teams to ensure secure practices are embedded across IT operations, and you will contribute to the development and enforcement of security policies and procedures. The ideal candidate will have a strong understanding of cybersecurity principles, excellent communication skills, and a proactive approach to identifying and mitigating risks. This role offers the opportunity to work in a dynamic environment where your contributions directly impact the resilience and integrity of our digital infrastructure. Key Responsibilities - Work in a 24×7 operational environment, including night shifts, weekends, and holidays, as per roster. - Oversee identity and access management (IAM) operations, including user provisioning, role-based access control, privileged access reviews, and account lifecycle tasks such as unlocking, disabling, and multi-factor authentication resets. - Contribute to the development and enforcement of access policies and conditional controls to strengthen account security. - Support the implementation and monitoring of endpoint protection and threat detection tools to enhance organizational resilience. - Develop and maintain standard operating procedures (SOPs) for key security processes, including onboarding, offboarding, and access governance. - Participate in the rollout and enforcement of data protection policies to prevent unauthorized data exposure. - Respond to security-related service requests and incidents, ensuring timely resolution and compliance with internal controls. - Collaborate with cross-functional teams to support compliance initiatives, risk assessments, and internal audits. - Ensure continuous monitoring, response, and support for critical systems and services. - Participate in shift rotations and handovers with clear documentation of ongoing activities, incidents, and priorities. - Maintain high alertness and responsiveness during non-business hours, when risk exposure is higher. - Monitor, detect, and respond to security incidents or operational issues in real time. - Ensure timely escalation of high-severity incidents as per defined SLAs. - Maintain audit trails and documentation for all actions taken during shifts. Qualifications - Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent practical experience). - 3+ years of experience in IT with 2+ years of experience in information security is a must. - Solid understanding of cybersecurity principles, frameworks (e.g., NIST, SOC2), and best practices. - Experience with security tools such as SIEM, vulnerability scanners, endpoint protection, and identity management systems. - Familiarity with incident response, threat analysis, and risk assessment methodologies. - Strong analytical and problem-solving skills with attention to detail. - Excellent communication skills, both written/verbal, with the ability to collaborate across teams. - Ability to manage multiple priorities in a fast-paced environment. - Experience working with ticketing systems and documenting security processes. Desired Skills - Incident detection and response. - Familiarity with security tools (e.g., SIEM, EDR). - Knowledge of ISO 27001, NIST, or similar frameworks. - Process-driven and detail-oriented. - Risk assessment and mitigation. - Strong analytical and problem-solving abilities. - Clear written and verbal communication. - Documentation and reporting proficiency. - Task and time management. - Commitment to continuous learning. - Maintain professionalism and decision-making consistency across all teams. - Be prepared to handle critical situations independently during off-hours. - Adhere to organizational policies, security guidelines, and operational procedures. - Ensure all actions during shifts are logged, traceable, and compliant with internal controls. - Support continuous improvement of shift processes and operational efficiency. Benefits - Expected salary range is $40,000 - $60,000 USD, depending on location, experience, and qualifications. - This role may also be eligible for additional compensation such as bonuses, commissions, or equity. - Comprehensive benefits package. Equal Opportunity Employer Statement Cyncly is committed to equal opportunity and does not discriminate based on race, color, creed, religion, gender, age, sexual orientation, national origin, disability, veteran status, or any other characteristic protected by law. Applicants must be legally authorized to work in the country in which they are applying to work (United States or Canada). This role is not eligible for employer sponsorship now or in the future.

• Advance Firefox's security architecture and cryptography stack: Contribute to improvements in Firefox's core security systems, with a focus on cryptographic protocols, WebPKI, and security-sensitive web APIs. Help implement and maintain security features that support the evolution of public key infrastructure on the web. • Design and implement web platform security features: Develop and ship web platform features in collaboration with teammates and the broader web community. Contribute to standards-based, secure, and interoperable implementations across Firefox. • Improve browser reliability, performance, and resource efficiency: Investigate and resolve issues impacting stability, correctness, and performance. Analyze and improve memory usage and efficiency within a complex, multi-threaded browser environment. • Collaborate on security initiatives: Partner with engineers across teams to identify, prioritize, and address security issues. Participate in debugging, root cause analysis, and implementation of effective long-term solutions. • Contribute to technical design and planning: Participate in technical discussions, design reviews, and project planning for security-related initiatives. Help evaluate tradeoffs and contribute to engineering decisions within your area of work.

Cloud Security Engineer locations Malvern, PA Charlotte, NC Dallas/Ft. Worth, TX time type Full time job requisition id 178318 Position Overview Provides senior-level technical support for security testing services across infrastructure, systems, and applications. This role is responsible for strengthening cloud security posture through automation, tooling, and cross-functional collaboration. Core Responsibilities - Develop and maintain CSPM tooling, automation pipelines, and integrations to support vulnerability identification, prioritization, and remediation across cloud environments - Engineer and operationalize cloud security posture controls, including preventative policies, build enforcement rules, and automated remediation workflows - Build and maintain integrations between security platforms and enterprise systems (e.g., CI/CD pipelines, reporting tools) to enable self-service capabilities and streamline exception management - Configure and tune cloud security policies to ensure accurate and reliable assessment outcomes - Analyze vulnerability and misconfiguration data to enhance risk scoring by incorporating exploit intelligence, environmental context, and threat signals - Partner with Platform Engineering, DevOps, SRE, and application teams to implement shift-left security practices and drive adoption of security tooling - Contribute to Infrastructure-as-Code (IaC) reviews, ensuring security controls are embedded, version-controlled, and enforced at deployment - Support special projects, including AI-assisted security tooling initiatives Preferred Qualifications - Proficiency in at least one programming language (e.g., Python, Go, JavaScript/TypeScript, Ruby) - Hands-on experience with a major cloud platform (AWS, Azure, or GCP) - Experience with Infrastructure-as-Code (e.g., Terraform, CloudFormation) - Familiarity with CSPM or cloud security tooling - Understanding of API design, systems integration, and event-driven architectures Qualifications - Minimum of 3+ years of experience in cloud security, vulnerability management, or security engineering - Bachelor’s degree in a related field or equivalent combination of education and experience Special Factors Sponsorship Vanguard is not offering visa sponsorship for this position. About Vanguard At Vanguard, we don't just have a mission—we're on a mission. To work for the long-term financial wellbeing of our clients. To lead through product and services that transform our clients' lives. To learn and develop our skills as individuals and as a team. From Malvern to Melbourne, our mission drives us forward and inspires us to be our best. How We Work Vanguard has implemented a hybrid working model for the majority of our crew members, designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.

• Você será responsável por liderar a melhoria contínua do processo de gestão de vulnerabilidades no ciclo de desenvolvimento de software, definindo e estruturando fluxos, papéis e critérios de priorização que conectem a descoberta de vulnerabilidades à sua remediação. • Seu papel será orientar decisões de eficiência e escalabilidade processual com base em sólida experiência técnica e ampla visão processual e sistêmica, atuando como elo entre times técnicos, lideranças de segurança e governança.