Security Engineer Remote Jobs in Arkansas (US)
This page tracks remote security engineer openings that are location-eligible for Arkansas.
This page tracks remote security engineer openings that are location-eligible for Arkansas.
Open jobs
3,600
Hiring companies this week
8
Salary sample
$75 - $186,000
Jobs added last hour
0
3600 Jobs
1862 Companies
Gusto, formerly known as ZenPayroll, is a privately-held financial services company dedicated to revolutionizing how businesses handle employee benefits. Gusto
About Gusto At Gusto, we're on a mission to grow the small business economy. We handle the hard stuff — payroll, health insurance, 401(k)s, and HR — so owners can focus on their craft and their customers. With teams in Denver, San Francisco, and New York, we support more than 500,000 small businesses nationwide and are building a workplace that reflects the people we serve. All full-time employees receive competitive base pay, benefits, and equity (RSUs) — because everyone who helps build Gusto should share in its success. Offer amounts are determined by role, level, and location. Learn more about our Total Rewards philosophy. AI is a fundamental part of how work gets done at Gusto. We expect all team members to actively engage with AI tools relevant to their role and grow their fluency as the technology evolves. AI experience requirements vary by role and will be assessed during the interview process. About the Role: We’re hiring a Staff Backend Software Engineer for our Product & AI Security Engineering team. You’ll own and evolve the security foundations behind Gusto’s products and AI/LLM experiences—from authentication and authorization at scale to securing core services and data.You'll define and own security architecture and standards across Gusto's products and AI/LLM experiences — setting the direction for authentication, authorization, and safe data handling, and building the platforms and guardrails that other teams rely on. About the Team: The Product & AI Security Engineering team sits at the intersection of product, platform, and AI at Gusto. We prioritize high‑leverage projects that reduce risk, harden our foundations, and unlock faster delivery for other teams. We build security tools and services, embed with partner teams when needed, and set best practices for authentication, authorization, and safe data handling—especially as we adopt AI and LLMs. Here’s what you’ll do day-to-day: - Design, build, and operate authentication and authorization systems that work at Gusto scale. - Strengthen core services and data protections, including access control, storage, and APIs. - Detect and mitigate account takeover and other abuse, improving safety for our customers. - Build security platforms and tooling that help product and AI teams move quickly and safely. - Own and improve high-availability security and identity services that other teams depend on. - Tackle ambiguous AI/LLM security problems from threat modeling to practical mitigations. - Provide leadership in promoting security and software engineering excellence. Here’s what we're looking for: - 10+ years of experience as a backend engineer, building and operating large-scale server-side services and APIs - Proven track record building secure, highly available distributed systems and services. - Hands-on experience with modern security tooling and practices (e.g., SAST, DAST, SIEM, SCA). - Proficiency in one or more of: Ruby, Python, Kotlin, JavaScript/TypeScript - Experience with AI tools for coding (ex: Cloud Code, Cursor, Github Copilot) - Strong collaboration skills and comfort breaking down complex, cross‑cutting security and AI problems into clear, practical solutions. Required: - Strong backend software engineering skills — you write clean, scalable, well-tested code - Experience building and operating high-availability services at scale - Ability to partner cross-functionally and communicate technical tradeoffs clearly - Genuine interest and desire to grow within the security domain — you don't need to have worked in security before, but you're excited to get started. Nice to have: - Experience with authorization platforms/policy engines (e.g., Open Policy Agent, SpiceDB) and technologies like GraphQL, gRPC, Kubernetes, Terraform, Traefik, Flask, Okta. - Experience with authentication and authorization, such as SAML/SSO, RBAC, and ABAC. - Familiarity with security concepts like access control, abuse detection, or data protection - Prior work on security tooling or platforms Our cash compensation amount for this role is targeted at $181,000-215,000 in Denver & most remote locations, and $218,94-260,000 in the San Francisco Bay Area, Seattle, and NYC. Stock equity is additional. Final offer amounts are determined by multiple factors including candidate experience and expertise and may vary from the amounts listed above. Gusto has physical office spaces in Denver, San Francisco, and New York City. Employees who are based in those locations will be expected to work from the office on designated days approximately 2-3 days per week (or more depending on role). The same office expectations apply to all Symmetry roles, Gusto's subsidiary, whose physical office is in Scottsdale. Note: The San Francisco office expectations encompass both the San Francisco and San Jose metro areas. When approved to work from a location other than a Gusto office, a secure, reliable, and consistent internet connection is required. This includes non-office days for hybrid employees. Our customers come from all walks of life and so do we. We hire great people from a wide variety of backgrounds, not just because it's the right thing to do, but because it makes our company stronger. If you share our values and our enthusiasm for small businesses, you will find a home at Gusto. Gusto is proud to be an equal opportunity employer. We do not discriminate in hiring or any employment decision based on race, color, religion, national origin, age, sex (including pregnancy, childbirth, or related medical conditions), marital status, ancestry, physical or mental disability, genetic information, veteran status, gender identity or expression, sexual orientation, or other applicable legally protected characteristic. Gusto considers qualified applicants with criminal histories, consistent with applicable federal, state and local law. Gusto is also committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. We want to see our candidates perform to the best of their ability. If you require a medical or religious accommodation at any time throughout your candidate journey, please fill out this form and a member of our team will get in touch with you. Gusto takes security and protection of your personal information very seriously. Please review our Fraudulent Activity Disclaimer. Personal information collected and processed as part of your Gusto application will be subject to Gusto's Applicant Privacy Notice.
Fresenius Medical Care provides dialysis treatments, products, and services for individuals living with chronic kidney diseases (CKD). Founded as a result of th
Role Description The Corporate Security Intelligence Lead is a senior leadership role responsible for developing and executing a global strategy to identify, assess, and mitigate internal and external threats to the organization. This role leads the corporate security intelligence function and insider threat risk program, integrating behavioral analytics, threat intelligence, and investigative capabilities to protect people, assets, and information. This position requires strong cross-functional collaboration with various internal and external stakeholders. The role must demonstrate sound judgment, integrity, and an initiative-taking approach to identifying and mitigating security risks while aligning with FME’s strategic business objectives. It requires a forward-looking leader with the ability to assess and mitigate risks, ensure regulatory compliance, build strong external partnerships, and leverage intelligence and technology to drive a comprehensive, resilient security program. Qualifications - Bachelor’s degree in Intelligence Studies, Security Management, Behavioral Science, or related field (master’s preferred) - Possess an active/in-scope security clearance - Preferred Certifications: Certified Threat Manager (CTM), Certified Protection Professional (CPP), Insider Threat Program Manager (ITPM), Intelligence Community or Law Enforcement credentials Requirements - Minimum of 15 years of experience in security management roles, with demonstrated expertise across a broad range of security and risk management domains - Proven track record in compliance programs, risk management, and incident response - Experience in systems management and leading people - Experience managing third-party vendors and cross-functional teams - Deep understanding of threat actor methodologies, behavioral threat indicators, and intelligence tradecraft - Strong analytical, investigative, and communication skills - Experience with insider threat platforms, SIEM tools, and behavioral analytics - Ability to operate in high-pressure environments and manage sensitive, confidential information with discretion - Ability to work in a matrixed, resource-constrained, and diverse environment Benefits - Comprehensive benefits package including medical, dental, and vision insurance - 401(k) with company match - Paid time off - Parental leave - Potential for performance-based bonuses depending on company and individual performance
Fresenius Medical Care provides dialysis treatments, products, and services for individuals living with chronic kidney diseases (CKD). Founded as a result of th
Role Description The Head of Physical Security is a senior security executive responsible for the strategic leadership, design, and execution of Fresenius Medical Care’s global physical security program across corporate offices, manufacturing facilities, research sites, distribution centers, and clinical environments. This role is capable of serving as Deputy to the Head of Security Center of Excellence (CoE), providing enterprise-wide security leadership, acting on behalf of the Head of Corporate Security Center of Excellence (CoE) when required, and ensuring alignment with corporate risk management, compliance, and patient safety priorities. The successful candidate brings deep expertise in healthcare security, physical protective measures, workplace violence prevention, behavioral threat assessment, investigations, training, and crisis response within a highly regulated, global operating environment. Qualifications - Bachelor’s degree required (Criminal Justice, Security Management, Healthcare Administration, or related field). - Master’s degree preferred (MBA, MS, or similar). - Relevant certifications strongly preferred (e.g., CPP, PCI, PSP, CISM, or equivalent). Requirements - Minimum of 15 years’ progressive experience in physical security, law enforcement, military, or corporate security leadership. - Extensive experience in healthcare, life sciences, or regulated environments strongly preferred. - Demonstrated ability to operate at an executive leadership level, including experience acting as or supporting a Chief Security Officer. - Proven background in: - Physical security systems and protective measures - Workplace violence prevention - Behavioral threat assessment and management - Corporate and healthcare investigations - Security training and program development Benefits - Comprehensive benefits package including medical, dental, and vision insurance. - 401(k) with company match. - Paid time off. - Parental leave. - Potential for performance-based bonuses depending on company and individual performance.
Bright Vision Technologies is a forward-thinking software development company dedicated to building innovative solutions that help businesses automate and optimize their operations. We leverage cutting-edge technologies to create scalable, secure, and user-friendly applications. We recognize that our people are our strength. We are an equal opportunity employer and place a high value on diversity and inclusion. We do not discriminate on the basis of any protected attribute. We make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Bright Vision Technologies is an Equal Opportunity Employer, including Disability/Veterans.
Role Description We are seeking an experienced SAP GRC Specialist to design, implement, and operate security and access-control frameworks for complex SAP landscapes, including S/4HANA, ECC, BW/4HANA, Fiori, BTP, and SuccessFactors. In this role you will be responsible for: - SAP role design - User provisioning - Segregation-of-duties analysis - Audit support - The technical operation of SAP GRC suites The ideal candidate will combine deep expertise in SAP authorization concepts with strong hands-on experience operating SAP GRC Access Control and Process Control, and will partner closely with audit, compliance, and business teams to deliver a secure, auditable SAP environment. Qualifications - Bachelor’s degree in Computer Science, Engineering, or a related technical discipline. - Five or more years of SAP Security / GRC experience in enterprise landscapes. - Strong hands-on experience with SAP authorization concepts and role design. - Deep experience operating SAP GRC Access Control (ARA, ARM, BRM, EAM). - Experience supporting SAP audits and remediation activities. - Hands-on experience securing Fiori, BTP, and cloud SAP applications. - Familiarity with SAP IDM or third-party IGA tooling. - Working knowledge of SAP Process Control. - Strong understanding of regulatory frameworks such as SOX, GxP, and PCI. - Excellent communication and documentation skills. Requirements - Design and maintain SAP authorization concepts and role structures aligned with business processes and least-privilege principles. - Build and maintain master, derived, composite, and business roles for S/4HANA, ECC, and Fiori applications. - Configure and operate SAP GRC Access Control (ARA, ARM, BRM, EAM), including ruleset management, mitigating controls, and emergency access management. - Perform segregation-of-duties analysis and remediation in collaboration with business process owners and internal audit. - Configure user provisioning workflows in SAP GRC ARM, including request types, approval paths, and integration with IDM/IAM platforms. - Operate SAP GRC Process Control for continuous controls monitoring and policy management. - Implement security for Fiori applications, including catalogs, groups, and front-end authorizations. - Configure and operate security for SAP BTP and cloud applications using XSUAA, IAS, and IPS. - Support SAP audits (SOX, GxP, PCI) and respond to audit findings with documented remediation plans. - Implement transport security, table logging, and audit logging in line with internal security policies. - Monitor and remediate SAP Security Notes in coordination with Basis and DBA teams. - Maintain comprehensive, current technical documentation — including architecture diagrams, design decisions, configuration references, runbooks, and operational procedures. - Mentor junior team members and support knowledge transfer across the security team. Benefits - 100% Remote (Continental United States) - Salary: $150K - $185K - This is a full-time, direct W2 position with Bright Vision Technologies. - No third-party client, vendor, or implementation partner involved. - Support for H1B transfers for qualified candidates. How to Apply For immediate consideration, please send your resume to [email protected] or contact us at (908) 505-3544.
Koniag Government Services (KGS) is an Alaska Native Owned corporation supporting the values and traditions of our native communities through an agile employee and corporate culture that delivers Enterprise Solutions, Professional Services and Operational Management to Federal Government Agencies.
Role Description Koniag IT Systems (KITS), a Koniag Government Services company, is seeking an experienced ICAM ISSO (Identity, Credential, and Access Management Information System Security Officer) to support critical cybersecurity and identity management initiatives. The ideal candidate is a detail-oriented security professional with a strong background in ICAM frameworks, federal security compliance, and risk management. The successful candidate will bring a combination of technical expertise and strong communication skills to ensure the security and integrity of identity and access management systems. Ability to obtain or maintain the required security clearance to support our government customer. The ICAM ISSO will serve as the primary security point of contact responsible for ensuring confidentiality, integrity, and availability of identity, credentials, and access management systems. This individual will work closely with system owners, program managers, and security teams to maintain system authorization, manage risks, and ensure compliance with federal security standards and ICAM policies. - Serve as the Information System Security Officer (ISSO) for one or more ICAM-related information systems, ensuring continuous monitoring and compliance with applicable federal security frameworks. - Develop, maintain, and update System Security Plans (SSPs), Plans of Action and Milestones (POA&Ms), and other Authorization to Operate (ATO) documentation in accordance with NIST and agency-specific requirements. - Support the Assessment and Authorization (A&A) process, including facilitating security assessments, coordinating with Security Control Assessors (SCAs), and preparing authorization packages. - Monitor and manage the security posture of ICAM systems, including identity proofing, credentialing, authentication, and access control solutions. - Review and analyze audit logs, security alerts, and system events to identify anomalies, potential threats, and compliance gaps. - Coordinate with system administrators, developers, and engineers to ensure security controls are properly implemented and functioning as intended. - Identify and document system vulnerabilities and risks, coordinating remediation efforts and tracking progress through the POA&M process. - Support the implementation and governance of ICAM policies, procedures, and standards in alignment with federal mandates such as FICAM, HSPD-12, EO 14028, and OMB Memoranda. - Participate in security incident response activities, including investigation, containment, and reporting of security events related to identity and access management systems. - Conduct periodic security reviews and assessments to ensure ongoing compliance with security requirements and ICAM best practices. - Provide security guidance and recommendations to program teams regarding identity management, privileged access management (PAM), multi-factor authentication (MFA), and zero trust principles. - Collaborate with cross-functional teams including IT, compliance, and operations staff to align security practices with organizational and mission objectives. - Prepare and deliver security briefings, reports, and documentation for government stakeholders and leadership. Qualifications - Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field from an accredited college or university. - 5+ years of experience in information security, with at least 2 years of direct experience in an ISSO role or equivalent security capacity. - Demonstrated experience supporting the NIST Risk Management Framework (RMF) and ATO processes. - Experience working with ICAM technologies and frameworks, including identity proofing, PKI, MFA, and access management solutions. - Active or ability to obtain the required security clearance. Requirements - Exceptional communication skills in English – both written and oral – with the ability to communicate effectively with technical and non-technical stakeholders, including government leadership. - Strong working knowledge of the NIST Risk Management Framework (RMF), including NIST SP 800-53, NIST SP 800-37, and FIPS 199/200. - Proficiency in developing and maintaining ATO documentation, including SSPs, POA&Ms, Security Assessment Reports (SARs), and Interconnection Security Agreements (ISAs). - Knowledge of ICAM concepts including identity lifecycle management, credentialing, authentication protocols (MFA, PIV/CAC), privileged access management (PAM), and single sign-on (SSO). - Experience with continuous monitoring programs and security information and event management (SIEM) tools. - Ability to analyze and interpret vulnerability scan results (e.g., Nessus, Tenable) and work with system teams to remediate findings. - Familiarity with federal cybersecurity policies, directives, and mandates, including FISMA, HSPD-12, EO 14028, and OMB Memoranda. - Strong analytical and problem-solving skills with attention to detail in reviewing security controls and documentation. - Ability to manage multiple priorities and deliver quality work products within defined timelines. - Ability to obtain and maintain the required security clearance. Desired Skills and Competencies - Experience working in a federal government IT or cybersecurity environment. - Knowledge of Zero Trust Architecture (ZTA) principles and implementation strategies, particularly as they relate to identity and access management. - Familiarity with Privileged Access Management (PAM) tools such as CyberArk, BeyondTrust, or similar platforms. - Experience with identity governance and administration (IGA) platforms. - Knowledge of SAML, OAuth2, OpenID Connect (OIDC), and other authentication and federation protocols. - Familiarity with cloud-based ICAM solutions and platforms (e.g., Azure Active Directory, Okta, AWS IAM). - One or more of the following certifications: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), CompTIA Security+, CAP (Certified Authorization Professional), GIAC Security Essentials (GSEC). - Experience with GRC (Governance, Risk, and Compliance) tools such as XACTA, eMASS, or Archer. Benefits - Competitive compensation. - Extraordinary benefits package including health, dental, and vision insurance. - 401K with company matching. - Flexible spending accounts. - Paid holidays. - Three weeks paid time off. - And more.
Role Description The Cloud Network Engineer III at Staritas is responsible for the architecture, design, governance, and operational excellence of enterprise cloud and hybrid network environments. This role leads the development and enforcement of network policies, standards, and security controls while ensuring scalability, performance, and resilience across multi-cloud and colocation platforms. This position plays a key leadership role in cloud transformation initiatives, including the migration of colocation-based infrastructure to cloud-native architectures. The Cloud Network Engineer III partners with IT Operations, Security, and Cloud Engineering to define network strategy, implement monitoring and KPIs, and ensure alignment with enterprise compliance and performance objectives. - Architect and govern enterprise cloud network solutions across Azure, AWS, and GCP, including landing zones, hub/spoke, and zero trust architectures - Lead network strategy and design for migration initiatives from colocation environments to cloud-native and hybrid architectures - Develop, implement, and enforce network policies, standards, and guardrails aligned with security and compliance frameworks (e.g., SOC 2, HIPAA) - Define and operationalize network KPIs and SLAs (e.g., availability, latency, MTTR, change success rate) and implement monitoring frameworks to track performance - Design and maintain secure hybrid connectivity (VPN, ExpressRoute, Direct Connect) with a focus on resiliency and scalability - Own and enhance network observability, including logging, alerting, and telemetry across cloud and hybrid environments - Architect and manage network security controls, including NGFWs (Check Point), WAFaaS, segmentation, and zero trust network access (ZTNA) - Drive capacity planning and cost optimization strategies for cloud networking resources - Lead incident response and root cause analysis, ensuring systemic improvements and prevention of recurring issues - Establish and maintain network architecture documentation, standards, and runbooks at an enterprise level - Collaborate with Security to ensure policy enforcement, audit readiness, and continuous compliance - Evaluate and recommend new technologies and architectural patterns to improve reliability, performance, and security - Provide technical leadership and mentorship to junior engineers and cross-functional teams - Interface with vendors and providers to guide strategic improvements and issue resolution - Manage DNS, load balancing, and traffic management services in cloud environments - Assist with cost optimization and capacity planning for cloud network resources - Evaluate and recommend new networking technologies, tools, and services - Work with vendors and service providers to resolve issues and optimize performance - Participate in incident response and root cause analysis for network-related issues Qualifications - 10+ years of experience in network engineering, with significant focus on cloud networking and architecture - Proven experience leading colocation to cloud migration initiatives, including network design and cutover execution - Deep expertise in Azure networking (preferred), with working knowledge of AWS and/or GCP - Strong hands-on experience with Check Point NGFWs, Cisco networking, and secure hybrid connectivity - Demonstrated experience developing and enforcing network policies, governance models, and standards - Experience implementing monitoring, observability tools, and KPI-driven operations - Strong understanding of zero trust architecture, segmentation, and cloud-native security controls - Experience supporting regulated environments (e.g., SOC 2, HIPAA) - WAFaaS and advanced traffic management experience strongly preferred Requirements - Associate/bachelor’s degree in Info Tech, Cybersecurity, Computer Science, or related field is preferred but not required - Relevant experience may be considered equivalent Benefits - Competitive salary and performance bonus program - Fully remote work environment - Comprehensive benefits package including 401k match - 19 days of PTO per year; 10 holidays per year - Opportunity to work in a mission-driven organization where your work directly shapes clarity, confidence, and better outcomes across healthcare - Up to 10% travel, based on business needs
SIXGEN’s mission is to deliver agile, mission-ready cybersecurity solutions that empower government and critical infrastructure organizations to stay ahead of advanced cyber threats. We combine innovation, deep expertise, and cutting-edge capabilities to uncover vulnerabilities, protect vital systems, and ensure operational superiority in an ever-evolving digital landscape.
Role Description The Security Fusion Center (SFC) Manager is responsible for leading the strategy, governance, and operational maturity of an enterprise Security Fusion Center. This role serves as the primary architect and coordinator for an intelligence-driven cybersecurity program that integrates: - Threat intelligence - Threat hunting - Incident response - Security engineering - Insider threat - Continuous monitoring - Attack surface management The ideal candidate possesses extensive experience developing and managing enterprise cybersecurity programs, establishing governance frameworks, and driving cross-functional collaboration among cybersecurity operations, engineering, and executive leadership. This individual will lead the development of Security Fusion Center strategy, operational processes, performance metrics, and implementation roadmaps while continuously improving the organization's ability to identify, detect, respond to, and mitigate cyber threats. Qualifications - Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Information Assurance, or a related field. - 6+ years of experience in cybersecurity operations, cyber defense, or enterprise security program management. - Demonstrated experience developing or managing a Security Operations Center (SOC), Security Fusion Center (SFC), Cyber Fusion Center, or equivalent enterprise cybersecurity program. - Experience leading cross-functional cybersecurity initiatives involving multiple operational teams. - Strong understanding of: - Threat Intelligence - Advanced Threat Hunting - Incident Response - Continuous Monitoring - Security Engineering - Insider Threat Programs - Attack Surface Management - Experience developing governance documentation, operational procedures, playbooks, and Concepts of Operations (CONOPS). - Experience developing cybersecurity strategies, roadmaps, implementation plans, and executive-level reporting. - Strong knowledge of cybersecurity frameworks including the NIST Cybersecurity Framework (CSF), NIST Risk Management Framework (RMF), and MITRE ATT&CK. - Excellent communication, leadership, and stakeholder engagement skills. Requirements - CISSP (Certified Information Systems Security Professional) - GIAC Certified Incident Handler (GCIH) - GIAC Cyber Threat Intelligence (GCTI) - Certified Information Security Manager (CISM) - Project Management Professional (PMP) - Experience supporting federal government cybersecurity programs. - Experience implementing enterprise SIEM, SOAR, XDR, EDR, threat intelligence platforms, or security analytics solutions. - Familiarity with Zero Trust Architecture and enterprise cyber modernization initiatives. Benefits - Competitive salary - Employer-paid health insurance premiums (medical, dental, vision) - Employer-paid short/long term disability insurance and basic life/AD&D insurance - 401K with a 4% employer contribution - Professional development reimbursement options available (training, certification, education, etc) - Flexible and remote work policies for most positions - Paid Time Off (PTO) at a rate of three (3) weeks plus one (1) day per year of service up to four (4) weeks annually - 11 paid holidays per calendar year - The anticipated salary range for this role is $100,000 - $155,000 per year, depending on experience and qualifications.
CE Labs designs and builds systems where security comes first — applied cryptography and rigorous engineering, backed by formal methods where correctness matters most.
Role Description At CE Labs, which we just spun off from Cryspen, we're all about creating the core security and privacy tools for the apps of tomorrow. We do everything from advanced, end-to-end encrypted protocols such as MLS to handling all the cryptography underneath. Plus, we assist others in bundling these into SDKs and applications. We are looking for a systems-minded engineer fluent in Rust to join our small team. Your main focus will be translating RFCs, complex cryptographic primitives, and academic papers into production-ready, safe, and highly optimized software. You will also actively help us design and create entirely new protocols and standards. - Develop and implement cryptographic protocols to enhance system security. - Collaborate with internal and external teams to integrate security protocols and cryptography into software applications. - Conduct security audits and vulnerability assessments to identify and mitigate risks. - Stay updated on the latest advancements in security and cryptography and apply them to our projects. - Work closely with clients to understand their security needs and provide tailored solutions. Qualifications - Strong foundation in applied cryptography and understanding of cryptographic protocols. - Experience with software development in Rust, specifically in security-focused applications. - Excellent problem-solving skills and the ability to work collaboratively in a small team setting. - A plus: A degree in Computer Science, Engineering, or a related field, or equivalent experience. - A plus: Interest in formal methods and their application in ensuring system correctness. Benefits - Flexible working hours - Public transportation benefits - Remote work - Room to grow personally and professionally - Family-friendly work environment - 4 day work week Company Description CE Labs designs and builds systems where security comes first — applied cryptography and rigorous engineering, backed by formal methods where correctness matters most.
Bright Vision Technologies is a forward-thinking software development company dedicated to building innovative solutions that help businesses automate and optimize their operations. We leverage cutting-edge technologies to create scalable, secure, and user-friendly applications. We recognize that our people are our strength. We are an equal opportunity employer and place a high value on diversity and inclusion. We do not discriminate on the basis of any protected attribute. We make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Bright Vision Technologies is an Equal Opportunity Employer, including Disability/Veterans.
Role Description We are seeking an experienced SAP Security & GRC Engineer to design, implement, and operate security and access-control frameworks for complex SAP landscapes, including S/4HANA, ECC, BW/4HANA, Fiori, BTP, and SuccessFactors. In this role you will be responsible for: - SAP role design - User provisioning - Segregation-of-duties analysis - Audit support - Technical operation of SAP GRC suites The ideal candidate will combine deep expertise in SAP authorization concepts with strong hands-on experience operating SAP GRC Access Control and Process Control, and will partner closely with audit, compliance, and business teams to deliver a secure, auditable SAP environment. Qualifications - Bachelor’s degree in Computer Science, Engineering, or a related technical discipline. - Five or more years of SAP Security / GRC experience in enterprise landscapes. - Strong hands-on experience with SAP authorization concepts and role design. - Deep experience operating SAP GRC Access Control (ARA, ARM, BRM, EAM). - Experience supporting SAP audits and remediation activities. - Hands-on experience securing Fiori, BTP, and cloud SAP applications. - Familiarity with SAP IDM or third-party IGA tooling. - Working knowledge of SAP Process Control. - Strong understanding of regulatory frameworks such as SOX, GxP, and PCI. - Excellent communication and documentation skills. Requirements - Design and maintain SAP authorization concepts and role structures aligned with business processes and least-privilege principles. - Build and maintain master, derived, composite, and business roles for S/4HANA, ECC, and Fiori applications. - Configure and operate SAP GRC Access Control (ARA, ARM, BRM, EAM), including ruleset management, mitigating controls, and emergency access management. - Perform segregation-of-duties analysis and remediation in collaboration with business process owners and internal audit. - Configure user provisioning workflows in SAP GRC ARM, including request types, approval paths, and integration with IDM/IAM platforms. - Operate SAP GRC Process Control for continuous controls monitoring and policy management. - Implement security for Fiori applications, including catalogs, groups, and front-end authorizations. - Configure and operate security for SAP BTP and cloud applications using XSUAA, IAS, and IPS. - Support SAP audits (SOX, GxP, PCI) and respond to audit findings with documented remediation plans. - Implement transport security, table logging, and audit logging in line with internal security policies. - Monitor and remediate SAP Security Notes in coordination with Basis and DBA teams. - Maintain comprehensive, current technical documentation — including architecture diagrams, design decisions, configuration references, runbooks, and operational procedures. - Mentor junior team members and support knowledge transfer across the security team. Benefits - Competitive base salary commensurate with experience, plus benefits.
Everforth Apex, a division of Everforth and formerly Apex Systems, an IT staffing and workforce solutions firm, provides recruiting and staffing services to lar
Title: IT - Cyber Security Specialist IV Job Description: Job#: 3039262 Location: Home, Arkansas (Teleworker) Pay Range: $75 - $85 per hour Employee Type: Contract Role Overview An Information System Security Officer (ISSO) is sought to join a team supporting the ClaimsCore Program. This role involves overseeing activities related to system security authorization, compliance, and continuous monitoring for a federal environment. The ISSO will be instrumental in ensuring secure and compliant systems across both legacy integrations and modern cloud-based platforms, supporting major cybersecurity initiatives for the Centers for Medicare & Medicaid Services (CMS). Key Responsibilities - Serve as the ISSO for the ClaimsCore Program, ensuring compliance with FISMA Moderate, FedRAMP Moderate, and CMS ARS 5.1 security controls. - Oversee the Authorization to Operate (ATO) process, including the preparation and maintenance of all Security Authorization (SA) and Certification & Accreditation (C&A) documentation. - Conduct risk and vulnerability assessments, track remediation activities, and ensure zero open Critical/High vulnerabilities at go-live. - Manage security incidents, ensuring notification within 1 hour, and coordinate with stakeholders on mitigation and reporting. - Develop, maintain, and update security policies, procedures, SSPs, SOPs, and other RMF documentation. - Support annual and ad hoc federal security assessments, including CSRAP, CFO, and OMB A123 reviews. - Manage POA&M entries, validate mitigation strategies, and support audit responses. - Perform continuous monitoring activities, analyze security reports, and recommend corrective actions. - Collaborate with engineering, operations, and program management teams to embed security into system design. - Provide subject matter expertise on NIST 800-53 controls, FedRAMP requirements, and CMS-specific security processes. - Ensure all system changes follow proper security impact analysis procedures prior to deployment. - Support contractor, government, and third-party security assessments. Required Qualifications Education & Experience: - Minimum of 8 years of experience with a BS/BA degree; or - Minimum of 6 years of experience with an MS/MA degree; or - Minimum of 3 years of experience with a PhD. Technical Skills & Experience: - Demonstrated experience as an ISSO or similar security lead on federal programs following FISMA, NIST RMF, and FedRAMP requirements. - Hands-on experience developing and reviewing RMF documentation (SSP, SAR, POA&M, CMP, Incident Response Plan, Contingency Plan, etc.). - Experience conducting or supporting risk assessments, vulnerability analysis, and security audits. - Familiarity with CMS ARS 5.1, CMS ATO processes, and federal cybersecurity reporting requirements. - Experience supporting incident response processes, including rapid notification and coordination. - Strong understanding of vulnerability management tools and processes (e.g., Nessus, Tenable.sc, Qualys). - Ability to communicate effectively with both technical and non-technical stakeholders. - U.S. Citizenship is required. Preferred Qualifications - Relevant certifications such as CISSP, CISM, Security+, CEH, or CAP. - Previous experience supporting CMS, federal healthcare programs, or large federal IT modernization efforts. - Experience in hybrid environments involving legacy systems and cloud platforms (AWS/Azure) subject to FedRAMP Moderate controls. - Familiarity with continuous monitoring processes and automation tools. - Experience supporting external audits such as CSRAP, CFO, and OMB A-123. - Knowledge of secure software development practices and DevSecOps concepts. - Experience with enterprise-scale government contractors or large federal IT programs. Everforth Apex is a world-class IT services company that serves thousands of clients across the globe. When you join Everforth Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRateds Best of Staffing® in Talent Satisfaction in the United States and Great Place to Work® in the United Kingdom and Mexico. Everforth Apex uses a virtual recruiter as part of the application process. Click here for more details. By applying for this job, you agree to receive calls, AI-generated calls, text messages, or emails from Everforth Apex and its affiliates, and contracted partners. Frequency varies for text messages. Message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You can reply STOP to cancel and HELP for help. You can access our privacy policy at https://www.apexsystems.com/privacy-policy Everforth Apex Benefits Overview: Everforth Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Everforth Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Everforth Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Everforth Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our ‘Welcome Packet’ as well, which an Everforth Apex team member can provide. Everforth Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Everforth Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you require an accommodation under the Americans with Disabilities Act to participate in an interview with a virtual recruiter or to use our website for a search or application, please contact our Benefits Department . Please note that this contact information is strictly to be used for medical ADA accommodations and that no other inquiries will be answered. UnitedHealthcare creates and publishes the Transparency in Coverage Machine-Readable Files on behalf of Everforth Apex Systems.
3,590more opportunities are still waiting for you.Log in now and take your next shot before someone else does.
Observability/Monitoring, SIEM, Amazon IAM, Azure, C++, SAP