Security Engineer Remote Jobs in District of Columbia (US)
This page tracks remote security engineer openings that are location-eligible for District of Columbia.
This page tracks remote security engineer openings that are location-eligible for District of Columbia.
Open jobs
3,808
Hiring companies this week
10
Salary sample
$32 - $344,000
Jobs added last hour
0
3808 Jobs
1947 Companies
Jack Henry & Associates - JHA is a FinTech company whose solutions help connect financial institutions with the people they serve. The company offers a variety
Title: Senior Cloud Security Engineer DevSecOpsMulti‑Cloud JobID 17248 Position Level Individual Contributor Team Technology Solutions & Svcs Working Time Full-Time Position Type Regular Travel Requirements 5% Workplace Type Remote Senior Cloud Security Engineer: DevSecOps/Multi‑Cloud General information Press space or enter keys to toggle section visibility JobID 17248 Description & Requirements Press space or enter keys to toggle section visibility At Jack Henry, we’re more than a technology company, we’re a force for good in financial services. We’re redefining how community banks and credit unions connect with the people they serve. Our mission is rooted in people inspired innovation, empowering financial institutions to deliver seamless, secure, and human centered experiences. We deliver cutting-edge solutions that are paving the way for the next generation of digital banking and payments, but our true impact begins with our associates. If you're ready to help transform an industry and grow with a company that values purpose, collaboration, and excellence then we’d love to meet you. Jack Henry & Associates, a leader in the fintech industry; is hiring a Senior Cloud Security Engineer with deep expertise in DevSecOps, multi-cloud security engineering, automation, and security controls development. This role is responsible for embedding security throughout the CI/CD lifecycle—ensuring Security as Code across AWS, Azure, and Google Cloud Platform (GCP). The ideal candidate is highly technical, automation‑driven, and passionate about building scalable, cloud‑native guardrails that secure critical Cloud workloads. This engineer will design, implement, and validate cloud security controls, improve our CSPM capabilities, and automate remediation workflows across multi-cloud environments. This role also provides opportunities to mentor junior engineers and uplift engineering excellence across the team. This position may be worked remotely within the United States, with the exception of California. This position is not eligible for immigration sponsorship and support. Please do not apply if at any time you need immigration support now or in the future (i.e., H-1B, PERM). All positions, regardless of location, may require an onsite interview or in-person onboarding requirement to verify your identity. What you’ll be responsible for: - Researches, recommends and implements changes to enhance network security as part of our cloud infrastructure transformation. - Design security solutions that maintain security and compliance within public cloud while ensuring alignment of technology to business strategy. - Develop and understand JHA’s public cloud strategic roadmap and continuously identify gaps in cloud security program coverage. - Work with the Digital Cloud DevOps team to integrate and operationalize security within their workflows. - Participate and collaborate in project level architecture reviews and vendor selection recommendations. - Assist in creating security architecture documentation based on specifications. - Review security design to discover any errors or confirm the design meets required specifications. - Build and maintain secure CI/CD workflows using GitHub Repositories, GitHub Actions, GitHub Docs, and GitOps operating patterns. - Champion and implement Security as Code principles from design through deployment. - Engineer and operate Cloud Security Posture Management (CSPM) solutions across AWS, Azure, and GCP. - Build, test, validate, and promote cloud security controls into production workloads. - Perform ongoing cloud control effectiveness evaluations and contribute to ICS security architecture. - Use Terraform to build, deploy, and manage cloud security infrastructure and guardrail configurations. - Develop automation using Python to support monitoring, remediation, CI/CD integrations, and guardrail enforcement. - Performs other duties as assigned. What you’ll need to have: - Minimum of 6 years of experience in software development, DevOps, or Infrastructure as Code - Building and maintaining secure CI/CD workflows using GitHub Repositories, GitHub Actions, GitHub Docs, and/or GitOps operating patterns - Cloud Security Posture Management (CSPM) Engineering - Hands-on experience deploying and managing containerized applications - Practical experience in declarative service infrastructure environments, specifically using Terraform - Experience in an AWS, Azure, and/or GCP cloud environment What would be nice for you to have - Experience managing production environments in Google Cloud Platform (GCP) - Support cloud security architecture decisions, threat modeling engagements, and change control processes. - Implement serverless automated remediation using AWS Lambda, Azure Functions, and GCP Cloud Functions. - Mentor and coach junior and mid-level engineers. - Lead design discussions, perform peer reviews, and provide guidance on best practices. - Maintain engineering documentation, runbooks, diagrams, and GitHub-based developer guidance. - Production Programming Experience in Go or Python - Familiarity with operating in a Unix/Linux shell. - Industry Certification in Google PCSE, AWS Security, AZ-500, CKS, CCSP, CISSP, CCSK If you got this far, we hope you're feeling excited about this opportunity. Even if you don't feel you meet every single requirement on this posting, we still encourage you to apply. We’re looking for passionate, driven individuals who align with our mission and can bring unique perspectives to our team. Why Jack Henry? At Jack Henry, we live by the motto: “Do the right thing, do whatever it takes, and have fun.” It’s more than a tagline, it’s the foundation of our culture. We recognize that our associates are the key to our success, and we’re deeply committed to their wellbeing. That’s why we offer comprehensive benefits designed to support your physical, mental, and financial health so you can thrive both personally and professionally. We’re also leading the way in technology modernization, helping financial institutions evolve with speed, security, and flexibility. Our strategy focuses on delivering secure data access, mitigating fraud, and enabling seamless integration. Empowering our teams to build innovative solutions that meet the evolving needs of accountholders. Culture of Commitment Ask our associates why they love Jack Henry, and many will tell you it is because our culture is exceptional. We do great things together. Our culture empowers us to rise to challenges, seek new opportunities, and support one another through change. It’s this shared commitment that drives our success. We’re proud to foster an environment where inclusion, sustainability, and community impact are more than values, they’re how we operate. Visit our Corporate Sustainability site to learn more about our culture and commitment to our people, customers, community, environment, and shareholders. Equal Employment Opportunity At Jack Henry, we know we are better together. We value, respect, and protect the uniqueness each of us brings. Innovation flourishes by including all voices and makes our business - and our society - stronger. Jack Henry is an equal opportunity employer and we are committed to providing equal opportunity in all of our employment practices, including selection, hiring, performance management, promotion, transfer, compensation, benefits, education, training, social, and recreational activities to all persons regardless of race, religious creed, color, national origin, ancestry, physical disability, mental disability, genetic information, pregnancy, marital status, sex, gender, gender identity, gender expression, age, sexual orientation, and military and veteran status, or any other protected status protected by local, state or federal law. No one will be subject to, and Jack Henry prohibits, any form of discipline, reprisal, intimidation, or retaliation for good faith reports or complaints of discrimination of any kind, pursuing any discrimination claim, or cooperating in related investigations. Requests for full corporate job descriptions may be requested through the interview process at any time.
• Run our GRC program — then automate it. • Own how customer data moves through our stack. • Be the security gate for new tools and vendors. • Make Close best-in-class at communicating trustworthiness. • Coordinate product security audits. • Investigate and clean up security incidents. • Own our identity and device security. • Run our employee security program.
Role Description This role is responsible for identifying, attracting, and securing top-tier talent for highly specialized positions within Cyber Security and IT industry. It requires a deep understanding of the Cyber Security and IT industry landscape, including key industry players, emerging technologies, and critical skill sets. Success in this position depends on strategic networking, leveraging diverse recruitment methodologies, and building strong relationships with both candidates and hiring managers to facilitate a seamless hiring process. This role will report to the client Delivery Manager and/or Director depending on the account type. Location: Remote Responsibilities - Full-cycle recruitment management for specialized technical and niche roles, overseeing the process from requisition intake to offer negotiation and onboarding. - Development and execution of innovative sourcing strategies to engage passive candidates with specialized skill sets, utilizing industry-specific job boards, professional networks, conferences, and referrals. - Deep industry expertise in Cyber Security and IT industry, maintaining knowledge of key companies, competitive landscape, emerging technologies, and critical skill sets while acting as a subject matter expert. - Leverage expertise, market knowledge, and insights to build trust and strong relationships with hiring managers and candidates, ensuring a positive, professional recruitment experience. - Collaboration with hiring managers to understand hiring needs, provide market insights, and develop tailored recruitment strategies. - Thorough screening and assessment of candidates through technical and behavioral interviews, utilizing appropriate assessment tools. - Offer negotiation management, ensuring competitive and attractive compensation packages. - Accurate data management and tracking of key recruitment metrics within the Applicant Tracking System (ATS). - Continuous market research on industry trends, competitor activities, and compensation benchmarks to refine recruitment strategies. - Support for employer branding efforts by representing the company at industry events and online forums. Qualifications - Bachelor’s degree in human resources, Business Administration, or a related field preferred or experience equivalent. - At least 3+ years in full-cycle recruitment of successfully placing candidates in specialized technical or niche industry. - Deep understanding of the Cyber Security and IT industry, including key players, technologies, and skill sets. - Possess executive-level experience with a strong focus on executive search, including sourcing, engaging, and hiring senior leaders. - Demonstrated ability to partner with top-level executives, understand complex business needs, and deliver high-quality talent solutions aligned with organizational goals. - Proficiency with Applicant Tracking Systems (ATS), LinkedIn Recruiter, and other sourcing tools. - Demonstrated ability to develop and execute effective sourcing strategies, including passive candidate sourcing. - Excellent verbal and written communication skills for effective interaction with candidates, hiring managers, and stakeholders. - Possess strong business acumen. - Strong interpersonal skills with the ability to build and maintain relationships. - Creative and strategic problem-solving abilities to address recruitment challenges. - Strong organizational skills with the ability to manage multiple requisitions simultaneously. - Must be 18 years of age or older. Requirements - Salary Range: $31.59 - $44.23 per hour, depending on experience and geographic location. - Please note that actual compensation offered may vary based on local pay requirements and will meet or exceed state-specific minimum wage or salary thresholds. Benefits - Employees and their eligible dependents are offered Medical/Dental/Vision insurance and short term disability, in addition to other programs. - Up to 10 days Paid Time Off per year.
We’re advancing quantum computing to solve the world’s most pressing challenges
• Develop and execute global facilities and real estate strategy aligned to business growth and innovation priorities. • Oversee site selection, lease negotiations, capital projects, and portfolio optimization. • Lead design, construction, and operation of complex environments including laboratories, cleanrooms, and technical facilities. • Drive cost efficiency, vendor performance, and long-term asset planning. • Ensure reliability and uptime of critical infrastructure systems (e.g., HVAC, power, specialized lab systems) • Partner with engineering and R&D teams to support advanced technical equipment and experimental environments. • Establish standards for maintenance, lifecycle management, and capacity planning. • Lead global physical and cyber security strategies, including access control, surveillance, incident response, and risk mitigation. • Protect people, intellectual property, and sensitive assets across all sites. • Coordinate with cybersecurity, legal, and compliance teams on integrated risk management. • Build and maintain a world-class HSE program ensuring compliance with all local, national, and international regulations. • Promote a proactive safety culture across laboratories, manufacturing, and office environments. • Oversee risk assessments, audits, training, and incident management. • Lead and scale a high-performing, multidisciplinary global team. • Establish policies, KPIs, and governance models for facilities, security, and safety operations. • Partner with executive leadership on risk, continuity planning, and enterprise resilience. • Manage budgets, capital investments, and vendor relationships.
Role Description Cybersecurity Program Management - Lead coordination efforts with Information Security and Governance Risk & Compliance (GRC) leadership to strategically plan, execute, and oversee cybersecurity initiatives, ensuring alignment with company-wide objectives and regulatory compliance. - Direct and refine ongoing continuous monitoring requirements to ensure effectiveness and audit readiness. - Help lead and participate in FedRAMP audits, driving documentation strategy, POA&M tracking, and interdepartmental reporting between vendors, internal teams, and Security leadership. - Guide the team in identifying and prioritizing improvements for NIST 800-53 control effectiveness and maturity. - Coordination of risk assessments, vulnerability management activities, and security training schedules in collaboration with key stakeholders. IT Program Management - Partner and collaborate across the organization to align on strategic objectives and shape roadmaps IT and Security navigating complex, high-impact projects, with agility to re-prioritize as needed. - Drive initiatives to streamline operational efficiency, and maximize software utilization across the enterprise. Governance, Risk, and Compliance (GRC) - Collaboration with the GRC team to ensure policies, procedures, and standards are proactively updated to maintain alignment with evolving compliance frameworks. - Facilitate security risk assessments, ensuring thorough documentation of critical risks and establishing measurable strategies to drive risk mitigation and accountability. Incident Response - Provide strategic input in incident response planning and execution, contributing to the design of response processes and assisting in escalation and resolution of security incidents as needed. Project Management - Drive delivery of complex, cross-functional projects—from requirements gathering through implementation—defining schedules, scopes, and mitigation plans for enterprise-level initiatives. - Demonstrate expert-level capability in managing multiple, concurrent initiatives with conflicting priorities and tight deadlines, ensuring alignment with organizational goals. - Optimize use of project management tools such as Jira or Notion to enhance transparency, reporting, and collaboration. Qualifications - 10+ years of progressive experience in cybersecurity, FedRAMP, or IT program management with a proven track record of leading large-scale security or compliance programs. - Demonstrated leadership in Program Management related activities, including continuous monitoring, documentation, and third-party assessments. - Deep expertise in NIST frameworks (800-53, 800-30, 800-161) with the ability to advise teams and influence policy and control implementation. - Experience overseeing multiple compliance programs (e.g., SOC 2 Type 2, HIPAA, SOX ITGC) and ensuring cross-functional coordination for audit readiness. - Strong executive communication skills with the ability to present complex security topics to both technical and non-technical audiences. - Advanced problem-solving, strategic thinking, and decision-making abilities in complex IT environments. - U.S. citizenship required due to federal compliance. - Must meet identification verification requirements prior to start. - Demonstrated ability to thrive in high-pressure, fast-paced environments while managing competing priorities. - Open to Remote candidates. Preferred - Industry-recognized certifications such as CISA, CISSP, or PMP. - Experience with security and monitoring tools such as Jira, Splunk, Tenable, and Trend Micro. - Strong knowledge of cloud architectures, especially AWS and associated services. Compensation Range $144,000 — $195,000 USD A candidate’s final salary offer will be based on their skills, education, work location and experience, and thus it may differ from the posted range. Compensation may also include bonuses consistent with Ceribell’s corporate compensation plan. Note, the above description is not all-encompassing and Ceribell reserves the right to change or modify job duties and assignments at any time. Benefits - Performance-based incentive compensation (varies by role) - Equity opportunities - 100% Employer paid Health Benefits for Employees - 50% - 70% Employer paid Health, Dental & Vision for dependents (depending on plan selection) - 100% paid Life and Long-Term Disability Insurance - 401(k) with a generous company match - Employee Stock Purchase Plan (ESPP) with a discount - Monthly cell phone stipend - Flexible paid time off - 13 Paid Holidays + 3 Company Wellness Days - Excellent parental leave policy - Fantastic culture with tremendous career advancement opportunities - Joining a mission-minded organization! Application Deadline Ongoing Other Job Details Ceribell reports transfers of value to health care providers (HCPs) as required by federal and state transparency laws. These laws and implementing regulations require Ceribell to provide government agencies with HCPs’ names, addresses and the type of payments or other value received, generally for public disclosure. If you are an HCP and we pay or reimburse your recruiting expenses as a result of interviewing with Ceribell, your name, address and the amount of payments made may be reported to the government. Equal Opportunity Employer Ceribell is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth and related medical conditions), sexual orientation, gender identity or expression, national origin, age, marital status, disability, veteran status or any other characteristic protected by law. Ceribell complies with all applicable national, state and local laws governing nondiscrimination in employment as well as work authorization and employment eligibility verification requirements of the Immigration and Nationality Act and IRCA. Ceribell is an E-Verify employer. Any applicant with a disability who requires an accommodation during the application process should contact talent@ceribell.com to request reasonable accommodation. Privacy Statement For information on how Ceribell processes personal data of job applicants, please review our Privacy Policy. Compliance Disclaimer If you believe this job posting is non-compliant, please submit a report to legal@ceribell.com. Please note that we will not respond to inquiries unrelated to job posting compliance.
Transforming cities through autonomous technology to create a safer, greener, more accessible world.
• Integrate security practices — threat modeling, architecture reviews into product development workflows from requirements through release. • Provide early security input on hardware, firmware, and software design decisions, including third-party and supply chain risk considerations. • Write, review, and validate security requirements across hardware and software domains; enforce secure coding standards and perform security analysis on main compute systems. • Assist with maintaining Software Bill of Materials (SBOM) and Hardware Bill of Materials (HBOM) using dedicated SBOM tooling to ensure component visibility, vulnerability tracking, and supply chain transparency across products. • Apply security lenses during safety and functional assessments in collaboration with safety, systems, and software teams. • Assist in proactive vulnerability patching and support secure update strategies using product security tooling for threat modeling and risk profiling. • Conduct hazard and threat analyses (TARA/HARA) early in the architecture and development lifecycle. • Analyze and harden the security architecture of vehicle subsystems and autonomous stacks; define system- and product-level security requirements and ensure validation coverage. • Assist senior level engineers with Ethernet, in-vehicle networking, and cloud interface configuration, including port security and network segmentation. • Maintain working knowledge of R155/156, ISO 21434 and UL 4600; support internal audits, risk assessments, and compliance documentation. • Engage with Auto-ISAC to track emerging threats, attack vectors, and industry best practices. • Work across teams such as cybersecurity, hardware, and product engineering — providing architectural security design feedback. • Assist with fostering a security-first culture across the organization through integrated best practices and awareness programs. • Perform additional responsibilities as directed by your manager.
• Serves as a cybersecurity Subject Matter Expert (SME) with regards to Assessment and Authorization (A&A) of information systems and all associated cybersecurity policies and procedures. • Performs a DOW cybersecurity process while either authorizing an information system or serving as a SME for an information system undergoing authorization. • Possess an understanding of how the security controls identified in the NIST 800-53 apply to the process of assessing and authorizing a large organization’s IT infrastructure such as DLA’s, in which there is a compilation of large and small enclaves, AIS applications and outsourced IT processes. • Determines the applicable severity value for an identified vulnerability (e.g., non-compliant security control), and determines the possible ramifications on the system’s current or future authorization. • Briefs senior management on the progress or results of an information system undergoing the Risk Management Framework (RMF) process.
Inspira Financial provides health, wealth, retirement, and benefits solutions that strengthen and simplify the health and wealth journey. With more than 7 million clients, representing over $62 billion in assets, Inspira works with thousands of employers, plan sponsors, recordkeepers, TPAs, and other institutional partners — helping the people they care about plan, save, and invest for a brighter future. Inspira relentlessly pursues better outcomes for all with our automatic rollover services, health savings accounts, emergency savings funds, custody services, and more. Learn more at inspirafinancial.com.
Role Description The Sr. Cloud Security Engineer (Sr. CSE) is a hybrid cloud and security engineering role responsible for the hands-on remediation of infrastructure and cloud vulnerabilities, ensuring cloud and infrastructure resources maintain compliance with established policies and Minimum Security Baselines (MSBs), and reporting the organization's current compliance posture. The Sr. CSE will partner with the Security team to define, author, and maintain cloud security policies, keeping pace with evolving industry trends and regulatory requirements. This role will also actively participate in audit activities, including evidence gathering, reporting, and cross-functional collaboration with Compliance, Legal, and IT teams. Duties & Responsibilities: - Vulnerability Remediation & Security Operations - Perform hands-on remediation of infrastructure and cloud vulnerabilities, driving issues to closure within established SLAs and policy requirements. - Operate and administer vulnerability management and cloud security posture management (CSPM/DSPM) tooling - managing scan coverage, remediating findings, and reporting on SLA adherence. - Identify, prioritize, and remediate cloud misconfigurations and security posture gaps across the organization's Azure subscriptions and infrastructure. - Implement and validate security controls across cloud-native services, IaaS, PaaS, and container-based workloads. - Maintain and enforce secure configurations across firewalls, network security components, application delivery infrastructure, and compute platforms in partnership with the Security Team. - Assist with privileged credential hygiene, certificate lifecycle, and secrets governance across the environment when needed. - Support the hardening of Windows and Linux server environments through configuration management and compliance-as-code practices. - Maintain awareness of known and emerging vulnerabilities across the full technology stack - cloud services, OS platforms, network components, and application runtimes. - Compliance, Policy & Reporting - Monitor and report the organization's compliance posture against established security policies, baselines, and regulatory frameworks. - Partner with the Security team to define, author, and maintain cloud and infrastructure security policies - keeping pace with evolving industry trends and regulatory requirements. - Review and update existing policies on a regular cadence to reflect changes in the cloud environment and threat landscape. - Produce accurate, timely compliance posture reports for leadership - covering baseline adherence, vulnerability SLA performance, and remediation progress. - Coordinate and assist in evidence collection and audit maintenance for internal and external organizational assessments, including regulatory audits and third-party risk reviews. - Respond to findings from audits, security questionnaires, and internal/external scanning or penetration testing. - CI/CD Pipeline & Infrastructure Security - Partner with Software Engineering and App Security teams to embed security into CI/CD pipelines and deployment workflows - including secret scanning, least-privilege deployment identities, and secrets management integration. - Review and advise on Infrastructure-as-Code (IaC) implementations from a security perspective, ensuring patterns align with security baselines and organizational standards. - Support secure configuration management across server and cloud environments. - Ensure PKI and certificate management practices are maintained across the environment - including TLS/SSL lifecycle, renewal processes, and certificate inventory. - Technical Leadership & Mentorship - Serve as an informal technical leader and security subject matter expert across Cloud Engineering, Platform Engineering, and adjacent teams. - Mentor engineers on security best practices, secure design patterns, and compliance requirements - elevating security competency across the department without direct people management responsibilities. - Contribute to architecture and design reviews, providing a security lens on cloud platform decisions in partnership with the Cloud Architect. - Cross-Team Collaboration - Cloud Engineering & Platform Engineering - consult on secure architecture, container platform hardening, network segmentation, and pipeline security practices. - Identity & Access Management (IAM) - partner on identity governance, privileged access management, and access control policy enforcement. - Incident Response / Vulnerability Management - collaborate with the Security Detection & Response team on vulnerability prioritization, SLA tracking, remediation coordination, and incident response activities. - Audits & Assessments - provide technical support for evidence gathering, compliance posture reporting, and audit response. - Application Development Teams - consult on security requirements for cloud-native application platforms, ensuring developer environments are built securely from the ground up. Qualifications - 10+ years of experience in cloud engineering, infrastructure, or security engineering - with demonstrated hands-on security work, not just advisory. - Bachelor's Degree in Computer Science, Software/Computing Engineering, Information Security, or related field - or equivalent experience. - Technical certifications preferred: AZ-500, SC-100, SC-200, AZ-104, or equivalent cloud/security certifications. - Experience working in regulated industries (Financial Services, Insurance, or Health-Tech preferred). - Familiarity with compliance frameworks: NIST, HIPAA, PCI and Minimum Security Baselines (MSBs). Requirements - Hands-on experience or significant exposure to the following services and concepts: - Cloud Platform - Azure. - Networking & Security: Virtual Networks (VNETs) and peering, NSGs, UDRs, Private Endpoints, Azure Firewall, Application Gateways (including WAF - OWASP ruleset configuration, Detection vs. Prevention mode), ExpressRoute, VPN Gateways, and Azure Bastion. - Compute & Containers: Virtual Machines, VM Scale Sets, AKS (Kubernetes), and Container App Environments - including cluster hardening, network policy enforcement, workload identity, and Azure Policy for Kubernetes. - Identity & Access: Active Directory (on-prem, hybrid Entra Connect sync), Microsoft Entra ID, Privileged Identity Management (PIM), Conditional Access policy design and enforcement, Azure RBAC (including custom role design), and Entra ID Protection. - Security & Compliance Tooling: Microsoft Sentinel, Microsoft Defender for Cloud (Defender for Containers, Defender for Servers, Defender CSPM), and Azure Policy. - Monitoring & Observability: Azure Monitor - KQL, alert rule configuration, log-based queries, and action group integrations; familiarity with Log Analytics Workspace architecture and log ingestion patterns at scale. - Secrets & Certificates: Azure Key Vault and Key Vault CSI Secrets Store driver for AKS. - Storage & Recovery: Storage Accounts, Backup Vault, and Azure Site Recovery. - Virtual Desktop: Azure Virtual Desktop (AVD). - Security Tooling - Rapid7 - vulnerability management and scanning (InsightVM or InsightIDR); scan configuration, reporting, and SLA tracking. - Wiz and/or Orca Security - CSPM/DSPM platform experience; cloud misconfiguration identification, prioritization, and remediation workflows. - Microsoft Sentinel - SIEM administration, analytics rule management, and data connector configuration; familiarity with security log feeds from edge and email security platforms preferred. - Microsoft Defender for Cloud - Defender plans (Servers, Containers, CSPM), agentless scanning, and security recommendation management. - Datadog - log management, infrastructure monitoring, and security-adjacent alerting. - Identity, Access & Privileged Access Management - Delinea Secret Server (Thycotic) - PAM administration, privileged credential vault management, and access policy configuration. - Active Directory + Entra ID - hybrid identity, Entra Connect sync, group policy (GPO), DNS, and DHCP administration. - Conditional Access, PIM, and RBAC - policy design, enforcement, and least-privilege access models at enterprise scale. - Microsoft Intune - device compliance enforcement as part of a Zero Trust security posture. - Certificate Management - PKI, TLS/SSL lifecycle management, certificate inventory, and renewal processes. - Network & Perimeter Security - Cloudflare (Enterprise) - CDN, WAF, DDoS protection, and DNS proxy configuration and management. - Network routing and VPN - hub-and-spoke topology, route tables, ExpressRoute, and VPN Gateway. - Cisco ASAv - virtual firewall configuration and management. - DNS, DHCP, and Group Policy - enterprise-scale administration in hybrid environments. - DevOps, IaC & Pipeline Security - Azure DevOps (ADO) - CI/CD pipeline security, build agent management, and secure pipeline design. - GitHub / GitLab - source control security, branch protection, secret scanning, and pipeline hardening. - Infrastructure-as-Code (IaC) - Terraform, ARM templates, or Bicep - with a security-first approach to cloud deployments. - CHEF - configuration management and compliance-as-code for server fleet hardening and baseline enforcement. - Endpoint & Server Platforms - Windows Server - administration, hardening, security baseline enforcement, and Group Policy management. - Linux Server - administration, hardening, and security baseline enforcement across enterprise server fleets. - Microsoft 365 Suite - Exchange, SharePoint, Teams, and Intune - security configuration and administration. - Frameworks & Compliance - Familiarity with NIST, HIPAA, and organizational Minimum Security Baselines (MSBs). - Understanding of Zero Trust architecture principles and how they apply across identity, network, and workload security. - Familiarity with PCI-DSS scoped environment security requirements preferred. - Experience operating in regulated industries (Financial Services, Insurance, or Health-Tech). - Experience with or exposure to the following developer runtimes and technologies is a plus, as this role will consult on security posture within environments built on: ASP.NET, .NET, Java (JBoss / Hibernate / JMS), gRPC, Redis, SQL Server.
Role Description RxBenefits is seeking a highly experienced Senior Security Engineer to lead our SIEM platform, security monitoring, and incident response function. This role owns the health and effectiveness of the security operations program end to end: - Log source architecture - Detection engineering - Alert triage - Threat hunting - Incident response The Senior Security Engineer operates as the technical authority for detecting and responding to threats across cloud, endpoint, identity, and network environments, and works closely with infrastructure and application security teams to close the loop from detection to remediation. The ideal candidate combines deep SIEM engineering skill with hands-on incident response experience and can operate independently in a HIPAA-regulated environment working toward NIST, ISO, and SOC 2 requirements. Essential Job Responsibilities Include: - SIEM Engineering & Administration: Own the SIEM platform end to end, including log source onboarding, correlation rule development, detection tuning, dashboarding, and platform performance and cost management. - Incident Response: Lead the full incident response lifecycle, including triage, containment, eradication, recovery, root cause analysis, and post-incident reporting. - Threat Detection & Hunting: Build and maintain detection content mapped to MITRE ATT&CK conduct proactive threat hunts across cloud infrastructure, endpoints, identity systems, and network traffic. - Security Operations: Define and enforce SOC processes, including alert triage workflows, escalation paths, on-call procedures, and operational metrics such as mean time to detect and mean time to respond. - Log Source Architecture: Manage ingestion pipelines from cloud audit logs (e.g., AWS CloudTrail), EDR, identity providers, network security platforms, and endpoint management tools into the SIEM. - Threat Intelligence Integration: Operationalize threat intelligence feeds into detection rules, enrichment workflows, and hunting hypotheses. - Automation & Scripting: Develop automation for detection engineering, alert enrichment, and response playbooks to reduce manual analyst workload and speed response time. - Tabletop Exercises: Lead in and support tabletop exercises to assess and continuously improve incident response procedures, crisis management, and disaster recovery plans. - Cross-Functional Investigations: Correlate findings across infrastructure, application security, and identity teams during investigations, and drive permanent remediation of identified risks. - Reporting: Produce technical incident reports and SOC posture reporting that give leadership clear visibility into detection coverage, response performance, and outstanding risk. - Standards & Documentation: Define and enforce detection engineering standards, runbooks, and playbooks used across the security team. Qualifications - Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent work experience required. - Cyber-specific certification required (e.g., GCIH, GCFA, CISSP, or a relevant SIEM/vendor certification). - Minimum of seven (7) years of IT experience, with at least four (4) years in a security engineering, SOC, or incident response role. - Expert-level, hands-on experience with SIEM platforms (Sumo Logic strongly preferred), including log architecture, correlation rule development, and performance tuning. - Working knowledge of incident response methodology (e.g., NIST 800-61) and fluency with the MITRE ATT&CK framework. - Strong understanding of AWS security logging and detection services (CloudTrail, GuardDuty, Security Hub) and Windows/Linux log sources; Linux required. - Hands-on experience investigating alerts and telemetry from EDR (e.g., CrowdStrike), network security platforms (e.g., Zscaler), and O365/identity log sources. - Advanced scripting and automation experience with PowerShell, Python, or Bash required. - Ability to work fully independently and lead multiple complex investigations and projects to completion. - Excellent interpersonal and communication skills (verbal and written) across all levels of the organization. - Strong analytical and problem-solving skills, with sound judgment under incident pressure. - Ability to deliver on objectives. Requirements - Experience participating in tabletop exercises preferred. - Healthcare industry experience preferred. Benefits - Remote first work environment - Choice of a HDHP or PPO Medical plan, we pay 100% of the premium for the HDHP for you and your eligible family members - Dental, Vision, Short- and Long-Term Disability, and Group Life Insurance that we also pay 100% of premiums (for your family too on Dental and Vision) - Additional buy-up options for Short- and Long-Term Disability and Life Insurance - 401(k) with an employer match up to 3.5% available after 60 days - Community Service Day to give back and support what you love in your community - 10 company holidays including MLK Day, Juneteenth, and the day after Thanksgiving plus a floating holiday to use as you like - Reimbursements for high-speed internet, we’ll send you a computer and monitors to help you do your best work - Tuition Reimbursement for accredited degree programs - Paid New Parent Leave that can be used for adoption or birth - Pet insurance to protect your furbabies - A robust mental health benefit and EAP service through Spring Health to support you when you need it most
Relevant, scalable, and blazing-fast search and discovery experiences
• Design and automate controls, detection mechanisms, and tooling to improve the Information Security of Algolia’s infrastructure and products • Research, evaluate, and recommend new Information Security technologies, techniques, and frameworks • Design, implement, and maintain information security monitoring and remediation systems that move the needle in protecting Algolia’s customers’ data, and protecting Algolia’s systems and data • Partner with engineering and product teams to integrate Information Security into new features, systems, and development pipelines • Contribute to improving Information Security standards, processes, and best practices across the company • Conduct Information Security risk assessments and threat models of core systems, services, and third-party vendors (this does not include answering customer third-party risk assessment questionnaires). • Participate in and sometimes lead Information Security incident response activities and post-incident analysis • Support ongoing and emerging Information Security and compliance initiatives (e.g., SOC 2, Type II, ISO 27001, C5, GDPR) • Manage and enhance Algolia’s public bug bounty and vulnerability disclosure programs
3,798more opportunities are still waiting for you.Log in now and take your next shot before someone else does.
AWS, Observability/Monitoring, Azure, Python, Linux, Cyber Security