Computer Task Group, Inc logo
Computer Task Group, Inc

CTG, a Cegeka company, is at the forefront of digital transformation, providing IT and business solutions that accelerate project momentum and deliver desired value. Over nearly 60 years, we have earned a reputation as a faster and more reliable, results-driven partner. Our vision is to be an indispensable partner to our clients and the preferred career destination for digital and technology experts. CTG leverages the expertise of over 9,000 team members in 19 countries to provide innovative solutions. Together, we operate across the Americas, Europe, and India, working in close cooperation with over 3,000 clients in many of today's highest-growth industries. For more information, visit www.ctg.com . Our culture is a direct result of the people who work at CTG, the values we hold, and the actions we take. In other words, our people define our culture. It's a living, breathing thing that is renewed every day through the ways we engage with each other, our clients, and our communities. Part of our mission is to cultivate a workplace that attracts and develops the best people. CTG will consider for employment all qualified applicants including those with criminal histories in a manner consistent with the requirements of all applicable local, state, and federal laws. CTG is an Equal Opportunity Employer. CTG will assure equal opportunity and consideration to all applicants and employees in recruitment, selection, placement, training, benefits, compensation, promotion, transfer, and release of individuals without regard to race, creed, religion, color, national origin, sex, sexual orientation, gender identity and gender expression, age, disability, marital or veteran status, citizenship status, or any other discriminatory factors as required by law. CTG is fully committed to promoting employment opportunities for members of protected classes.

Hashicorp Vault Engineer

Security EngineerSecurity EngineerContractRemoteMid LevelTeam 5,001-10,000

Location

United States

Posted

2 days ago

Salary

$70 - $75 / hour

Seniority

Mid Level

Job Description

Hashicorp Vault Engineer

Computer Task Group, Inc

Role Description CTG is seeking an experienced HashiCorp Vault Engineer to support enterprise secrets management and automation initiatives across hybrid cloud environments. This role focuses on HashiCorp Vault administration, Terraform automation, AWS/AWS Outposts infrastructure, and ServiceNow integration to deliver secure, scalable secrets management solutions. Join CTG and help deliver secure, automated secrets management solutions supporting modern enterprise cloud infrastructure. Location: Remote or Dallas, TX (preferred) Duration: 12 months Key Responsibilities - Deploy and administer HashiCorp Vault in enterprise and hybrid cloud environments. - Automate Vault provisioning and policy management using Terraform. - Support Vault integration with ServiceNow, Kubernetes, OpenShift, AWS, and CI/CD platforms. - Configure PKI, dynamic secrets, transit encryption, certificate automation, and authentication methods. - Collaborate with cloud, security, DevOps, and infrastructure teams to implement enterprise secrets management solutions. - Troubleshoot Vault environments and optimize performance, security, and reliability. Qualifications - 5+ years of infrastructure, cloud, or security engineering experience. - 3+ years of hands-on HashiCorp Vault administration. - Strong Terraform Infrastructure-as-Code experience. - Experience with AWS, AWS Outposts, Kubernetes/OpenShift, and ServiceNow integrations. - Excellent problem-solving, automation, and collaboration skills. - Education: Bachelor's degree in Computer Science, Information Technology, Cybersecurity, Engineering, or a related field, or equivalent work experience. - HashiCorp Vault, Terraform, AWS, or cloud security certifications are a plus. - Excellent verbal and written English communication skills and the ability to interact professionally with a diverse group are required. Requirements - CTG does not accept unsolicited resumes from headhunters, recruitment agencies, or fee-based recruitment services for this role. Benefits - The expected base salary for this position ranges from $70.00 to $75.00/hour. - Salary offers are based on a wide range of factors including relevant skills, training, experience, education, market factors, and where applicable, licensure or certifications obtained. - In addition to salary, a competitive benefit package is also offered. Company Description CTG, a Cegeka company, delivers IT and business solutions that enhance clients’ digital agility, empowering them to seize new opportunities and overcome any challenge. Backed by more than 60 years’ experience and a commitment to being a reliable, results-driven partner, we work shoulder to shoulder with clients to shape digital together. Our vision is to be an indispensable partner to our clients and the preferred career destination for digital and technology experts. With more than 9,000 team members in over 15 countries, we combine global expertise with local insight to deliver innovative solutions. We operate across the Americas, Europe, and India, working with over 3,000 clients in many of today's highest-growth industries. Together, we shape what’s next—working shoulder to shoulder to deliver impactful solutions for our clients and society. CTG is an Equal Opportunity Employer. CTG will assure equal opportunity and consideration to all applicants and employees in recruitment, selection, placement, training, benefits, compensation, promotion, transfer, and release of individuals without regard to race, creed, religion, color, national origin, sex, sexual orientation, gender identity and gender expression, age, disability, marital or veteran status, citizenship status, or any other discriminatory factors as required by law.

Related Categories

Related Job Pages

More Security Engineer Jobs

Sequoia Connect logo

Cybersecurity Engineer II

Sequoia Connect

Our core expertise lies in connecting Top Technologists with Top Companies through unparalleled IT headhunting solutions

Full TimeRemoteTeam 11-50H1B No Sponsor

Role Description The Cybersecurity Engineer II (L2) is a hands-on technical contributor responsible for implementing, operating, and improving client’s cybersecurity capabilities across a rapidly growing enterprise. This role focuses on protecting enterprise systems, data, and users, while helping scale security controls across newly acquired agencies and modern cloud-based platforms. You will work closely with infrastructure, cloud, and application teams to ensure security is embedded into everything we build and operate. Qualifications - 3–5+ years of experience in cybersecurity, IT security, or related engineering roles - Strong hands-on experience with: - Microsoft 365 / Entra ID / Active Directory - Endpoint management and security tools - Vulnerability management practices - Experience working in complex or distributed enterprise environments - Strong troubleshooting, problem-solving, and analytical skills - Ability to balance security rigor with business agility Requirements - 3–5+ years of experience in cybersecurity, IT security, or related engineering roles - Strong hands-on experience with: - Microsoft 365 / Entra ID / Active Directory - Endpoint management and security tools - Vulnerability management practices - Experience working in complex or distributed enterprise environments - Strong troubleshooting, problem-solving, and analytical skills - Ability to balance security rigor with business agility Benefits - Fully remote work environment Key Responsibilities - Security Engineering & Operations - Implement and manage security controls across: - Identity & access management (IAM / Entra ID / Active Directory) - Endpoint security and device management (e.g., Intune) - Cloud security for SaaS and emerging platforms - Support day-to-day security operations, including alert triage, investigation, and response - Assist in improving detection and response capabilities (EDR/XDR, SIEM use cases) - Vulnerability & Risk Management - Identify, assess, and remediate vulnerabilities across infrastructure and applications - Support vulnerability management programs aligned with enterprise risk priorities - Partner with engineering teams to drive remediation tracking and accountability - M&A Integration Security - Help onboard newly acquired agencies into client’s security standards - Participate in: - Identity consolidation and cleanup - Endpoint onboarding and hardening - Security baseline enforcement - Ensure consistent security posture across a highly distributed organization - Security Enablement (Not “Security Says No”) - Collaborate with business and technical teams to deliver secure-by-design solutions - Provide actionable, pragmatic guidance that enables the business while reducing risk - Contribute to a culture of security as a business enabler, not a blocker - Compliance & Governance Support - Assist with implementation of controls aligned to regulatory and industry frameworks - Support audit readiness and evidence collection activities - Help align security practices with evolving cyber risk and regulatory requirements relevant to insurance and data protection - Automation & Continuous Improvement - Improve operational efficiency through automation and tooling - Contribute to standardization of security processes across the enterprise - Support adoption of scalable, repeatable security patterns Languages - Advanced Oral English - Advanced Spanish

Worldwide
Talentuch logo

Principal Network & Security Architect

Talentuch

Microsoft, SAP, and general IT recruiters | Talent Acquisition Worldwide | Recruitment Outsourcing

Full TimeRemoteTeam 11-50Since 2017H1B No Sponsor

Role Description We are looking for a Principal Network & Security Architect to serve as the company's senior technical authority for enterprise SASE, SD-WAN, and cloud security transformation projects. This person will lead complex, large-scale Palo Alto Networks Prisma deployments, including environments with thousands of mobile users, hundreds of branch locations, next-generation firewalls, multi-cloud infrastructures (AWS and OCI), Megaport connectivity, and migrations from legacy SD-WAN platforms. The architect will own the entire technical lifecycle of each engagement—from discovery and solution design through implementation, migration, testing, and final cutover—while working alongside a dedicated project team. The role also includes providing technical consulting to customers and acting as the primary technical decision-maker throughout the engagement. Key Responsibilities - Lead the architecture and delivery of enterprise Prisma SASE and Prisma SD-WAN solutions, including Strata Cloud Manager, Cloud Identity Engine, Prisma Access, Prisma Browser, ADEM, CASB-X, VM-Series firewalls, PA-Series NGFWs, microsegmentation, and Prisma SD-WAN branch deployments. - Serve as the technical lead for new customer implementations, managing all phases from project kickoff through successful completion. - Produce and maintain technical documentation, including High-Level Designs (HLDs), Low-Level Designs (LLDs), implementation plans, as-built documentation, failover testing results, and cutover runbooks. - Design, implement, and validate cloud connectivity solutions using Megaport, AWS Direct Connect, OCI FastConnect, BGP routing, and secure cloud interconnects. - Lead migrations from Zscaler (ZIA/ZPA) and legacy SD-WAN platforms to Prisma Access and Prisma SD-WAN while ensuring minimal business disruption and maintaining rollback capabilities. - Facilitate customer workshops, discovery sessions, design reviews, project kickoffs, cutovers, and executive presentations, while serving as the escalation point for technical issues and vendor-related challenges. - Support Sales Engineering by providing technical estimates, Statements of Work (SOW), Change Order input, and peer reviews. - Mentor engineering team members, promote knowledge sharing, and develop reusable design standards for future SASE engagements. - Ensure compliance with change management processes, documentation standards, Autotask ticketing, post-mortem reviews, and customer acceptance procedures. - Help establish and mature our security consulting practice by developing scalable methodologies and best practices for SASE, NGFW, Zero Trust, and related security engagements. Qualifications - 12+ years of experience in enterprise networking and cybersecurity. - At least 5 years of hands-on experience designing and deploying large-scale SASE solutions. - Extensive expertise with Palo Alto Networks technologies, including Prisma Access, Prisma SD-WAN (CloudGenix), Strata Cloud Manager, VM-Series, PA-Series NGFW, GlobalProtect, Cloud Identity Engine, ADEM, and CASB-X. - Proven experience leading migrations from Zscaler (ZIA/ZPA) and legacy SD-WAN platforms such as SilverPeak/EdgeConnect, Cisco Viptela, or Fortinet SD-WAN. - Strong networking and security knowledge, including eBGP, iBGP, OSPF, IPsec, Zero Trust architecture, segmentation, DLP, CASB, Quality of Service (CoS), and all OSI networking layers. - Hands-on experience with AWS, OCI, Azure, Megaport, AWS Direct Connect, and OCI FastConnect. - Demonstrated ability to independently deliver complete Prisma implementations without relying on vendor professional services or subcontractors. - Excellent written and verbal communication skills, with the ability to communicate effectively with engineers, CIOs, and CISOs. - Strong organizational and time management skills, with the ability to manage multiple projects simultaneously and perform effectively under pressure. - Willingness to participate in after-hours migration windows and occasional travel when required. Preferred Qualifications - Palo Alto Networks certifications, such as PCNSE, PCSAE, PCCSE, or equivalent. - Additional cloud or networking certifications (Cloud CSP, NaaS Networking Specialty). - Previous experience working for Palo Alto Networks, WWT, Optiv, AHEAD, or another Tier-1 SASE integrator. - Experience with OT/IoT microsegmentation projects. Work Schedule - Full-time - Monday through Friday - 8-hour workday - On-call responsibilities - Weekend and after-hours availability for production cutovers

United States
UP.Labs logo

Sr. Security Controls & Compliance Engineer

UP.Labs

Transforming the moving world, one startup at a time

ContractRemoteTeam 11-50H1B No Sponsor

Role Description We are hiring a Sr. Security Controls & Compliance Engineer to build, implement, and operate the security control foundation across multiple applications in a venture studio environment. This is a hands-on security execution role. We need someone who can: - Understand enterprise customer security requirements. - Identify the controls required. - Implement or configure those controls directly where possible. - Verify that controls are operating effectively. This person will help prepare our venture applications for SOC 2 readiness while supporting enterprise customer data, information security, and TPRM requirements. They will work across: - Cloud environments - Identity systems - Source control - CI/CD workflows - Logging - Monitoring - Compliance tooling - Operational security processes The goal is to create a repeatable security baseline that each venture application can inherit, operate against, and eventually carry forward as it matures or spins out. Responsibilities - Build, implement, and operate security and compliance controls across multiple venture applications and supporting systems. - Translate enterprise customer security, data handling, and TPRM requirements into practical technical controls, operational workflows, evidence requirements, and remediation plans. - Create a reusable security control baseline that can be applied across current and future venture applications. - Configure and operate compliance automation platforms such as Vanta, Drata, Secureframe, or similar tools. - Configure evidence integrations across systems such as cloud platforms, GitHub, identity providers, ticketing systems, device management tools, productivity platforms, and security tooling. - Implement identity and access controls, including SSO, MFA, role-based access, least-privilege permissions, access review workflows, and offboarding evidence. - Implement secure SDLC controls, including branch protection, required code reviews, code scanning, dependency scanning, secret scanning, vulnerability management workflows, and release/change management evidence. - Implement or configure cloud security controls, including IAM policies, encryption settings, logging, monitoring, backup settings, network restrictions, and security alerting. - Implement operational security workflows, including vendor review, risk review, change management, policy attestation, incident response evidence, exception tracking, and recurring control reviews. - Maintain a centralized control library mapped to SOC 2 Trust Services Criteria, customer-specific requirements, and relevant frameworks such as ISO 27001, NIST CSF, or CIS Controls. - Support SOC 2 readiness activities, including control mapping, evidence requirements, gap tracking, audit preparation, and control verification. - Identify launch-blocking security gaps and close them directly where possible. - Partner with product engineering only where application-specific code, architecture, or deeper infrastructure changes are required. - Write clear technical requirements and acceptance criteria for any security work that must be completed by product engineering. - Review and verify control implementation to ensure controls are actually operating and producing evidence. - Support customer security questionnaires, audits, evidence requests, and enterprise security reviews with accurate technical detail. - Track control gaps, remediation status, launch blockers, and compliance risk for leadership. - Help create a repeatable security implementation playbook that future ventures can inherit as they mature or spin out. What Success Looks Like - Enterprise customer requirements are translated into implemented controls, not just documented gaps. - Each venture application has a working security baseline across identity, cloud, source control, CI/CD, logging, monitoring, evidence, and operational processes. - SOC 2 readiness is actively tracked with clear control ownership, evidence collection, and operating cadence. - Compliance tooling is configured and produces useful evidence across the required systems. - Engineering teams are not overloaded with generic security tasks; they are engaged only when product-specific implementation is required. - Security launch blockers are identified early, prioritized clearly, and remediated quickly. - Customer security reviews, audits, and questionnaires are handled with accurate technical detail and supporting evidence. - Leadership has clear visibility into control maturity, launch risk, audit readiness, and open remediation items. - The venture studio has a reusable security control baseline that can be applied to new applications and carried forward as ventures mature. Qualifications - 5+ years of experience in security engineering, cloud security, DevSecOps, security operations, security compliance, GRC, or a related field. - Hands-on experience implementing security controls in cloud/SaaS application environments. - Experience supporting SOC 2 readiness, SOC 2 audits, or similar compliance programs. - Strong understanding of security controls, audit evidence, policy requirements, control testing, and control operation. - Experience translating customer or enterprise security requirements into practical technical controls. - Ability to configure and operate security and compliance systems directly, not just document requirements. - Experience with identity and access controls, including SSO, MFA, RBAC, least privilege, access reviews, and offboarding controls. - Experience with secure SDLC controls, including source control permissions, code reviews, branch protection, vulnerability management, dependency scanning, secret scanning, and change management evidence. - Experience with cloud security controls such as IAM, encryption, logging, monitoring, backups, network restrictions, and alerting. - Experience with compliance automation or GRC tools such as Vanta, Drata, Secureframe, OneTrust, Tugboat Logic, or similar platforms. - Familiarity with tools such as GitHub, Jira, Linear, Okta, Google Workspace, Slack, AWS, Azure, GCP, or similar systems. - Strong written communication skills for policies, procedures, audit documentation, technical requirements, and customer-facing security responses. - Ability to operate in an ambiguous, fast-moving startup or venture environment. Preferred Qualifications - Experience supporting enterprise customers with strict security, data handling, or TPRM requirements. - Experience in venture-backed startups, SaaS companies, enterprise software, or venture studio environments. - Familiarity with SOC 2 Trust Services Criteria, ISO 27001, NIST CSF, CIS Controls, or similar frameworks. - Experience implementing security controls across AWS, Azure, GCP, or multi-cloud environments. - Experience with GitHub security features, CI/CD security controls, vulnerability management tools, and cloud security monitoring tools. - Experience with identity platforms such as Okta, Google Workspace, Microsoft Entra ID, or similar. - Experience with logging, monitoring, incident response, vendor risk, evidence automation, and security questionnaire support. - Relevant certifications such as CISSP, CISM, CISA, CRISC, ISO 27001 Lead Implementer, AWS Security Specialty, Security+, or similar.

United States
ESA - Electronic Security Association logo

Lead Cyber Security Architect

ESA - Electronic Security Association

THE voice of the electronic security and life safety industry.

Full TimeRemoteTeam 11-50Since 1948H1B No Sponsor

• Act as a thought leader in cyber security, championing best practices and innovative solutions that enhance the organisation’s security posture. • Monitor and anticipate future security trends, leveraging this knowledge to influence and adapt security strategies, ensuring they remain robust and effective. • Drive the development of security strategies and roadmaps, ensuring a cohesive and forward-thinking approach to all security initiatives. • Develop and implement reference security architectures that align with organisational goals. • Collaborate with cross-functional teams to design and deploy advanced security controls, ensuring compliance with company and industry standards. • Act as a mentor, providing guidance and support to junior cybersecurity professionals in organisation.

Romania