Security Engineer Remote Jobs in Massachusetts (US)

This page tracks remote security engineer openings that are location-eligible for Massachusetts.

Open jobs

3,172

Hiring companies this week

Salary sample

$55,000 - $170,000

Jobs added last hour

Strict location onlyShow closed jobs

Post Date

Minimum Salary

Experience

3172 Jobs

1643 Companies

AWS Cloud Security and ICAM Specialist

LED FastStart

We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.

Security Engineer13 hours ago

Full Time Remote Mid LevelTeam 51-200

Role Description The AWS Cloud Security and ICAM Specialist supports the Case Management Modernization (CMM) Program for the Administrative Office of the U.S. Courts (AO) by designing, implementing, and managing secure authentication and authorization frameworks across modernized cloud-based applications. This role ensures compliance with federal identity governance, FedRAMP, and Zero Trust Architecture (ZTA) principles within an AWS environment. The ICAM Specialist collaborates with architecture, security, and DevSecOps teams to ensure access control, identity federation, and credential management are integrated seamlessly across all layers of the CMM application ecosystem. - Design and maintain the ICAM architecture for identity, access, and authentication management across AWS-hosted CMM applications and other legacy ICAM. - Implement federated identity and single sign-on (SSO) solutions using modern protocols (SAML, OAuth2.0, OIDC). - Collaborate with Cloud and Security Architects to enforce Zero Trust Architecture (ZTA) across microservices and APIs. - Configure and maintain directory services and identity providers (e.g., AWS Cognito, AWS IAM Identity Center, Azure AD, IBM Verify, Key Cloak). - Deep experience integrating KeyCloak as a broker IdP federating upstream enterprise IdPs while issuing downstream OIDC token to application. - Design ICAM brokerage solutions and support compliance assessments, ensuring adherence to FISMA, NIST 800-63, and FedRAMP security controls. - Develop and document identity lifecycle management processes — provisioning, deprovisioning, and access reviews. - Design and implement least privileged roles, groups, functionalities based on ZTA for both privileged and non-privileged users for a FedRAMP High system. - Experience defining workflow, rules, policies within ICAM tools particularly IBM Verify and Key Cloak. - Conduct access audits, user entitlement reviews, and anomaly detection to ensure least-privilege compliance. - Provide subject matter expertise in identity federation, PKI, certificate management, and secure API authorization. - Design strategies for logging, monitoring and auditing authentication and authorization related events in combination with other AWS event logs. - Design and implement storage level, microservice level Authentication and Authorization. - Support ATO process by providing solutions to all security controls, document implementation plan, maintain Visio diagrams. - Participate in design sessions and work closely with the security lead. - Collaborate with DevSecOps teams to embed ICAM policies within CI/CD pipelines and Infrastructure-as-Code (IaC) templates. - Direct and lead Pen testing, Review architecture diagrams produced by different teams. - Independently lead design and implement of vulnerability management. - Heavily participate in ATO activity. - Lead and direct engineering team. Deliverable Alignment & Performance Outcomes - Architecture Diagrams: Depicting identity flow, federation, and integration points with AWS and CMM systems. - Access Control Documentation: Policies, RBAC models, and credential management workflows. - Compliance Verification Reports: Audit results aligned to NIST 800-63, FedRAMP, and FISMA standards. - Zero Trust Implementation Artifacts: Documentation and verification of ZTA enforcement within system components. - Performance Outcomes: - 100% of CMM applications integrated with SSO and MFA. - Zero unauthorized access incidents attributable to configuration error. - 100% compliance with NIST and FedRAMP ICAM control requirements. - Reduced account provisioning time by ≥30% through automation. Tools & Technologies - IAM & Federation: Key Cloak, Okta. - Access & Compliance: SailPoint, CyberArk, HashiCorp Vault. - Cloud: AWS IAM, KMS, CloudTrail, Lambda. - Protocols: SAML, OAuth2.0, OIDC, SCIM. - Monitoring & Audit: Splunk. - Collaboration: Jira, Confluence, SharePoint, MS Teams. Qualifications - Bachelor’s Degree in Cybersecurity, Information Systems, or related discipline required; Master's Degree preferred. - 10+ years of experience in identity and access management, including 8+ years in cloud-based federal environments required; 12+ years of experience in information systems preferred. - Hands-on experience with Key Cloak and AWS IAM Identity Center for SSO and MFA implementations. (IBM Verify a plus). - Strong knowledge of identity federation protocols (SAML, OAuth2.0, OIDC, SCIM) and modern authentication flows. - Expertise with RBAC/ABAC frameworks, policy-based access control, and least-privilege enforcement. - Familiarity with NIST 800-63, FISMA, FedRAMP, and ZTA standards and compliance frameworks. - Experience implementing ICAM solutions in Agile and DevSecOps environments. - Working knowledge of PKI, digital certificates, and encryption technologies. - Strong analytical and troubleshooting skills with ability to resolve identity integration issues. - Experience with AWS Container Security and Network Security (preferred, not required). - Expert in designing logging and monitoring system by correlating events from several AWS and ICAM system. - Experience supporting federal digital modernization or judiciary IT programs. - Familiarity with Zero Trust Architecture and micro segmentation principles. - Exposure to API gateway authentication (Kong, Apigee, AWS API Gateway). - Experience integrating identity governance tools (SailPoint, Saviynt). - Excellent presentation and communication skills. - Consultant mindset with the ability to work with high level customer stakeholders and build excellent customer relationship. - Experience identifying and applying industry tools, solutions, methods best practices, and emerging technologies. - Strong analytical skills and problem-solving skills with the ability to formulate and communicate recommendations for improvement. - Demonstrated ability to work effectively, independently, and as part of a team. Certification(s) - Certified Information Systems Security Professional (CISSP) - preferred. - AWS Certified Security – Specialty or Azure Identity & Access Administrator – preferred. - Certified Identity and Access Manager (CIAM) or Certified Identity Professional (CIP) – beneficial. - SAFe Practitioner (SPC/SSM) – a plus. Location - Remote. Salary Information The likely salary range for this position is $153,000 - $207,000. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range. Benefits - Medical plan options, some with Health Savings Accounts. - Dental plan options. - Vision plan. - 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. - Full flex work weeks where possible. - Variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. - 15 days of paid leave per calendar year to be used for vacations, personal business, and illness. - 10 paid holidays per year. - GDIT Paid Family Leave program provides a total of up to 160 hours of paid leave in a rolling 12 month period for eligible employees. - Short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance.

View details: AWS Cloud Security and ICAM Specialist

United States

$153K - $207K / year

Apply

AWS Cloud Security and ICAM Specialist

General Dynamics

General Dynamics is a global aerospace and defense company offering products designed to provide safety and security to people around the world. In the past, Ge

Security Engineer13 hours ago

Full Time Remote Mid Level

Company Site

Role Description The AWS Cloud Security and ICAM Specialist supports the Case Management Modernization (CMM) Program for the Administrative Office of the U.S. Courts (AO) by designing, implementing, and managing secure authentication and authorization frameworks across modernized cloud-based applications. This role ensures compliance with federal identity governance, FedRAMP, and Zero Trust Architecture (ZTA) principles within an AWS environment. The ICAM Specialist collaborates with architecture, security, and DevSecOps teams to ensure access control, identity federation, and credential management are integrated seamlessly across all layers of the CMM application ecosystem. - Design and maintain the ICAM architecture for identity, access, and authentication management across AWS-hosted CMM applications and other legacy ICAM. - Implement federated identity and single sign-on (SSO) solutions using modern protocols (SAML, OAuth2.0, OIDC). - Collaborate with Cloud and Security Architects to enforce Zero Trust Architecture (ZTA) across microservices and APIs. - Configure and maintain directory services and identity providers (e.g., AWS Cognito, AWS IAM Identity Center, Azure AD, IBM Verify, Key Cloak). - Deep experience integrating KeyCloak as a broker IdP federating upstream enterprise IdPs while issuing downstream OIDC token to application. - Design ICAM brokerage solutions and support compliance assessments, ensuring adherence to FISMA, NIST 800-63, and FedRAMP security controls. - Develop and document identity lifecycle management processes—provisioning, deprovisioning, and access reviews. - Design and implement least privileged roles, groups, functionalities based on ZTA for both privileged and non-privileged users for a FedRAMP High system. - Experience defining workflow, rules, policies within ICAM tools particularly IBM Verify and Key Cloak. - Conduct access audits, user entitlement reviews, and anomaly detection to ensure least-privilege compliance. - Provide subject matter expertise in identity federation, PKI, certificate management, and secure API authorization. - Design strategies for logging, monitoring and auditing authentication and authorization related events in combination with other AWS event logs. - Design and implement storage level, microservice level Authentication and Authorization. - Support ATO process by providing solutions to all security controls, document implementation plan, maintain Visio diagrams. - Participate in design sessions and work closely with the security lead. - Collaborate with DevSecOps teams to embed ICAM policies within CI/CD pipelines and Infrastructure-as-Code (IaC) templates. - Direct and lead Pen testing, Review architecture diagrams produced by different teams. - Independently lead design and implement of vulnerability management. - Heavily participate in ATO activity. - Lead and direct engineering team. Qualifications - Bachelor’s Degree in Cybersecurity, Information Systems, or related discipline required; Master's Degree preferred. - 10+ years of experience in identity and access management, including 8+ years in cloud-based federal environments required; 12+ years of experience in information systems preferred. - Hands-on experience with Key Cloak and AWS IAM Identity Center for SSO and MFA implementations (IBM Verify a plus). - Strong knowledge of identity federation protocols (SAML, OAuth2.0, OIDC, SCIM) and modern authentication flows. - Expertise with RBAC/ABAC frameworks, policy-based access control, and least-privilege enforcement. - Familiarity with NIST 800-63, FISMA, FedRAMP, and ZTA standards and compliance frameworks. - Experience implementing ICAM solutions in Agile and DevSecOps environments. - Working knowledge of PKI, digital certificates, and encryption technologies. - Strong analytical and troubleshooting skills with ability to resolve identity integration issues. - Experience with AWS Container Security and Network Security (preferred, not required). - Expert in designing logging and monitoring system by correlating events from several AWS and ICAM system. - Experience supporting federal digital modernization or judiciary IT programs. - Familiarity with Zero Trust Architecture and micro segmentation principles. - Exposure to API gateway authentication (Kong, Apigee, AWS API Gateway). - Experience integrating identity governance tools (SailPoint, Saviynt). - Excellent presentation and communication skills. - Consultant mindset with the ability to work with high level customer stakeholders and build excellent customer relationship. - Experience identifying and applying industry tools, solutions, methods best practices, and emerging technologies. - Strong analytical skills and problem-solving skills with the ability to formulate and communicate recommendations for improvement. - Demonstrated ability to work effectively, independently, and as part of a team. Requirements - Certification(s): Certified Information Systems Security Professional (CISSP) - preferred. - AWS Certified Security – Specialty or Azure Identity & Access Administrator – preferred. - Certified Identity and Access Manager (CIAM) or Certified Identity Professional (CIP) – beneficial. - SAFe Practitioner (SPC/SSM) – a plus. - Ability to pass a background check to obtain and maintain a position of Public Trust with the Administrative Office of the US Courts. - Must be a US Person (Green Card Holder, US Permanent Resident Alien, Refugee, Asylee, US Citizen). Benefits - Comprehensive benefits and wellness packages. - 401K with company match. - Competitive pay and paid time off. - Full flex work weeks where possible. - 15 days of paid leave per calendar year. - 10 paid holidays per year. - Paid Family Leave program providing up to 160 hours of paid leave in a rolling 12 month period for eligible employees. - Short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance.

AWS Identity Governance SSO SAML OAuth 2.0 OpenID Connect Microservices Amazon Cognito Amazon IAM Azure Keycloak Observability/Monitoring CI/CD Infrastructure as Code Apigee

View details: AWS Cloud Security and ICAM Specialist

United States

$153K - $207K / year

Apply

IT Senior Manager - Information Security Office

Enterprise Holdings

Enterprise Mobility is North America’s largest rental car company, offering locations within 15 miles of 90% of the U.S. population. As an employer, Enterpris

Security Engineer23 hours ago

Full Time Remote Lead

Company Site

Title: IT Senior Manager - Information Security Office Location: Saint Louis MO United States Category Technology - All Other Positions Job ID 2026-549327 Job Description: Overview Enterprise Mobility is a leading provider of mobility solutions, owning and operating the Enterprise Rent-A-Car, National Car Rental and Alamo Rent A Car brands through its integrated global network of independent regional subsidiaries. Enterprise Mobility and its affiliates offer extensive car rental, carsharing, truck rental, fleet management, retail car sales, as well as travel management and other transportation services, to make travel easier and more convenient for customers. Privately held by the Taylor family of St. Louis, Enterprise Mobility together with its affiliate Enterprise Fleet Management manages a diverse fleet of 2.4 million vehicles and accounted for nearly $39 billion in revenue through a network of more than 9,500 fully-staffed neighborhood and airport rental locations in more than 90 countries and territories. At the center of it all, our dedicated IT teams innovate, design and develop the technology that is redefining how customers rent, buy and share vehicles from our family of brands. Here, you will be part of a diverse and talented team that creates and delivers powerful technology solutions for our customers and employees across the world with the resources and support to develop in a variety of career paths. As an Enterprise Mobility team member, we offer an excellent package with market-competitive pay, comprehensive healthcare packages, 401k matching & profit sharing, schedule flexibility, work from home opportunities, paid time off, and organizational growth potential. This position offers the opportunity to work fully remote within the United States (except for Alaska and/or Hawaii). Team members who choose virtual / remote work should have an adequate space to serve as their home office, and must be able to work a schedule within U.S. Central Standard Time core business hours. This position will require employees to come on site to one of our St. Louis campus locations a few times per year for meetings/events or as needed. #LI-REMOTE Responsibilities The Information Security Office is seeking an experienced IT Senior Manager to lead our organization's internal Penetration Testing team, responsible for proactively identifying security vulnerabilities, emulating real-world threats, and strengthening the organization's cybersecurity posture. As an IT Senior Manager, you will have the opportunity to lead and grow high-performing technical professionals, oversee enterprise testing initiatives, communicate insights that inform strategic security decisions, and partner with technology and business teams to drive measurable security improvements. Candidates must have a strong cybersecurity background and understand offensive security methodologies. Success in this role is defined by the leader's ability to continuously develop the penetration testing team, drive ongoing improvement across offensive security processes, and deliver clear, actionable communication to internal and external stakeholders. The ideal candidate is detail‑oriented with strong communication, critical‑thinking, and collaboration skills; has a solid grasp of security frameworks and enterprise IT; and can interpret adversarial techniques, vulnerabilities, and threats. The successful candidate will be an influential leader who is comfortable guiding teams through change, supporting senior leadership with credible technical and security expertise, has a proven ability to achieve strategic goals, and can effectively articulate risk in ways that drive informed decisions. Additional Responsibilities: - Develop and maintain an ongoing comprehensive penetration testing strategy and roadmap aligned with departmental priorities, enterprise IT initiatives, business objectives, and the evolving threat landscape. - Define and track KPIs, identify optimization opportunities, and continuously improve team processes and methodologies. - Produce executive‑level reporting that clearly communicates trends, key risks, and overall program maturity. - Oversee penetration testing activities across EM, including project planning, execution oversight, reporting, and stakeholder communication to ensure high‑quality results and timely delivery. - Drive automation, process optimization, and tooling enhancements to continually strengthen the penetration testing program. - Stay current on security trends and provide expert guidance on emerging threats, attacker techniques, and mitigation strategies. - Lead and mentor a team of security engineers, providing technical guidance, career development, and performance management - Foster a culture of continuous learning, technical excellence, and responsible testing practices - Build strong relationships across our Global IT teams to ensure consistency, transparency, and best practices Knowledge, Skills, & Abilities: - Demonstrate exceptional communication and presentation skills, with the ability to translate technical findings into clear, actionable recommendations for diverse audiences. - Exhibit strong time‑management, organizational skills, and keen attention to detail in a fast‑paced environment. - Demonstrated ability to manage operations while driving and implementing strategic change simultaneously - Working knowledge of MITRE ATT&CK, NIST CSF, and other security frameworks - Strong understanding of network security, application security, cloud security, and authentication mechanisms. - Strong understanding of adversarial techniques, vulnerability exploitation, and modern attack vectors - Must have a demonstrated track record of successfully collaborating across the IT organization to achieve business objectives. - Superb relationship management skills, specifically related to leading change, with the ability to create a non-adversarial atmosphere and be viewed as a partner Equal Opportunity Employer/Disability/Veterans Qualifications Required: - Must be presently authorized to work in the U.S. without a requirement for work authorization sponsorship by our company for this position now or in the future - Must reside in the United States (does not include Alaska or Hawaii) - Must be committed to incorporating security into all decisions and daily job responsibilities - 8+ years of related experience (can include a combination of experience in Information Technology, Information Security, and/or leadership) - 4+ years of experience leading cybersecurity functions within large organizations, with responsibility for team performance, strategic direction, and stakeholder engagement - 3+ years of experience of offensive security or penetration testing Preferred: - Bachelor's degree in Computer Science, Computer Information Systems, Management Information Systems, or related field preferred - Experience with common penetration test tools (e.g., Burp Suite, Metasploit, Cobalt Strike, Kali Linux, BloodHound, etc.) is preferred - Experience building or maturing an internal penetration testing or red team program - Certified Information Systems Security Professional (CISSP) or other related security certifications preferred

Linux

View details: IT Senior Manager - Information Security Office

Worldwide

Apply

Field CISO

HeroDevs

At HeroDevs, we believe in the power of diversity, equity, and inclusion to drive innovation, creativity, and success. We are committed to creating a workplace that embraces and celebrates individual differences. We encourage people of all backgrounds and experiences to apply.

Security Engineer1 day ago

Full Time Remote Mid Level

Role Description We are hiring a Field CISO to be the public voice of HeroDevs in the AppSec and security-leadership community. - Lead the category conversation externally - Speak at major events such as RSA, Black Hat, BSides, OWASP Global, and regional CISO summits. - Publish original thought leadership: essays, research-backed reports, points of view. - Convene a CISO and AppSec advisory council and host an in-person dinner program in top metros. - Sell from the front by partnering with AEs and CRO on strategic accounts. - Translate value for prospects connecting EOL OSS exposure to metrics their boards track. - Pressure-test our positioning and product with insights from the buyer's perspective. - Coach the field by training AEs, SEs, and CSMs on engaging with security leaders. Qualifications - An AppSec or security leader with experience in application security, product security, or a significant portion of a security program. - Active voice in the community with an audience of practitioners. - Operator credibility from having done the work. - Commercially fluent, able to hold executive conversations. - Builder’s temperament, energized by ambiguity and willing to define a category. Requirements - Recent experience in a respected company, likely as CISO, Deputy CISO, VP or Head of AppSec, or VP or Head of Product Security. - Comfortable being the named, attributable face of a point of view. - Authority comes from practical experience. - Ability to partner cleanly with a sales team. Benefits - Executive-level base plus meaningful equity. - No quota; measures include category leadership, influenced pipeline, and internal leverage. Logistics - Reports to: CEO - Location: Remote, US-based with 30 to 40 percent travel for events, customer meetings, and team offsites. How to apply Send a short note. Skip the cover letter. Tell us why this problem is worth your attention right now. Include a link or two to something you have published or a talk you have given that you are proud of. We read everything. We move fast on the right people. At HeroDevs, we believe in the power of diversity, equity, and inclusion to drive innovation, creativity, and success. We are committed to creating a workplace that embraces and celebrates individual differences. We encourage people of all backgrounds and experiences to apply.

View details: Field CISO

United States

Apply

Director, Cybersecurity

Accommodations Plus International

Providing the best and most efficient layover experience for our clients and their team members.

Security Engineer1 day ago

Full Time Remote LeadTeam 201-500Since 1984H1B No Sponsor

Company Site LinkedIn

• Lead API’s global cyber defense program • Own API’s cyber defense strategy across threat intelligence, detection, incident response, and product fraud and abuse • Lead and manage the SOC MSSP, ensuring 24x7x365 monitoring, investigation, and response • Manage API’s cloud security posture across AWS and Azure • Partner with engineering to embed security into product development • Lead containment, recovery, and postmortem activities for security incidents • Apply NIST, MITRE ATT&CK, and the Cyber Kill Chain to guide security architecture • Develop and maintain scorecards that measure SOC effectiveness and organizational risk • Identify and implement automation technologies to improve threat detection

AWS Azure Cloud Cyber Security

View details: Director, Cybersecurity

United States

$170K - $190K / year

Apply

Senior Manager – Offensive Security

Cybersecurity Advisors Network (CyAN)

An international community of cyber advisors from various disciplines and background, who want to build a better future

Security Engineer1 day ago

Full Time Remote SeniorTeam 1-10Since 2015H1B No Sponsor

Company Site LinkedIn

• mature, lead and deliver the firm’s service offerings around system-wide views of threat-driven risks and applying them to the testing of systems and services that the firm delivers. • Partner with sales and delivery teams to support pre-sales engagements, scope assessments, and solution development efforts • Mentor and develop managers, leads, and senior consultants • Influence hiring standards, interview calibration, and onboarding for senior technical roles within the practice • Define and maintain practice playbooks, severity models, and exploitation guidelines • Lead offensive security team members for Cyber Advisors, maximizing the efforts and satisfaction of all offensive security team members. • Mature the program and methodology that shapes how Cyber Advisors approaches Threat Emulation, to include defining the rules and parameters for ethical hacking of systems, software and networks to identify and mitigate potential vulnerabilities • Set direction and oversee the performance of penetration tests and Threat Emulation simulations on targets across all Cyber Advisors partners and customers • Assisting in the sales process with potential or existing clients, and acting as a client’s primary program contact for projects delivered by Cyber Advisors’ Threat Emulation team • As necessary, perform scoped and open-ended assessments on internal and external facing systems • Perform threat and vulnerability research to identify new ways of achieving the program’s mission and act as a source for innovation within the cybersecurity industry • Participate and contribute to Cyber Advisors’ social media presence on various platforms

Cyber Security Firewalls Linux Unix

View details: Senior Manager – Offensive Security

United States

$150K - $185K / year

Apply

Director, Security & Risk GTM

ServiceNow

As the AI platform for business transformation, we're putting AI to work across organizations — freeing people for work that matters. Making old tech work with new tech. Reaching across departments, from the front office to the back office and every office in between. Our ambition? To become the AI defining enterprise software company of the 21st century (or "AI DESCO21C," as we like to call it). With more than 8,100+ customers, we serve approximately 85% of the Fortune 500®, and we're proud to be a Fortune 100 Best Companies to Work For® and World's Most Admired Companies™. Explore your future career with us, visit www.servicenow.com/careers. From Fortune. ©2025 Fortune Media IP Limited. All rights reserved. Used under license.

Security Engineer1 day ago

Full Time Remote LeadTeam 10,001+Since 2004H1B Sponsor

Company Site LinkedIn

Role Description As the CISO Solutions GTM for US Enterprise Industries, you will play a pivotal role in driving the execution of go-to-market (GTM) strategies for the CISO solutions portfolio tailored for your region. Reporting directly to the Global Head of CISO Solutions GTM, you will champion customer engagement and ensure operational excellence through regionalized activation and measurable impact. This role is ideal for a results-oriented leader with a passion for customer-centric innovation and cross-functional collaboration. - Engage directly with a broad set of customers, ensuring their needs are understood and met. - Foster strong relationships and drive adoption through practitioner-led advocacy and feedback loops. - Develop, prioritize, and refine GTM strategies specific to the US Enterprise Industries. - Integrate market and customer feedback to continuously improve offerings and regional positioning. - Enable and activate the field on all CISO solutions GTM plans, ensuring cohesive execution and alignment with business objectives of Field. - Lead the immersion and activation of GTM initiatives within distinct regional beats, driving scalable and consistent execution across teams, to maximize pipeline generation, progression, and new net annual contract value (NNACV) for the region. - Design and execute scalable engagement models that reach multiple customers simultaneously, maximizing impact and pipeline generation. - Elevate, simplify, and transform CISO solution messaging in partnership with the Industry team, ensuring clarity and impact across all channels in the region. - Measure, analyze, and refine business KPIs and Regional OKRs to track performance and drive continuous improvement. - Provide actionable insights to leadership and stakeholders. - Stay ahead of market trends, competitive shifts, and emerging technologies to inform GTM strategy and positioning. - Represent the company at industry events, panels, and executive forums. - Foster a culture of innovation, collaboration, and continuous improvement. Qualifications - 7+ years of experience in GTM strategy, business operations, or customer success, with at least 3 years in a senior role. - Proven track record of driving strategic initiatives and operational execution in complex, matrixed environments. - Deep experience engaging with senior stakeholders and influencing executive decision-making. - Strong analytical, communication, and storytelling skills. - Experience in SaaS, cloud, or enterprise technology preferred. - MBA or equivalent advanced degree is a plus. Benefits - Senior leader level visibility and impact. - A dynamic, collaborative environment with top-tier talent. - Competitive compensation and benefits. - Opportunities for growth and leadership across the organization.

Google Tag Manager

View details: Director, Security & Risk GTM

United States

Apply

Security Control Assessor, Mid

AGE Solutions LLC

#betterwithage

Security Engineer1 day ago

Full Time Remote Mid LevelTeam 51-200Since 2021H1B No Sponsor

Company Site LinkedIn

Role Description AGE Solutions is looking for a Security Control Assessor, Intermediate to join our team in support of a cybersecurity risk management and assessment program with our DoD customer. - Conduct cybersecurity assessments, audits, and inspections for DoD organizations and partners handling DoD information or connecting to the DoDIN. - Evaluate systems and Defensive Cyberspace Operations using cyber threat emulation and performance-based testing. - Adhere to policies and processes for each assessment type. - Support assessment development and execution to ensure security expertise is properly applied. - Coordinate logistics, test plans, and scope with the SCA Team Lead. - Perform vulnerability assessments, capture results using STIG Viewer or designated tools, and document findings in eMASS. - Analyze security gaps and provide mitigation recommendations. - Validate cybersecurity controls, TTPs, STIGs, RMF controls, and compliance with DoD policies and guidelines. - Provide risk analysis and assessment results for authorization recommendations. - Participate in daily assessment reviews, in-briefs, and out-briefs, sharing findings with the SCA-R. Qualifications - Bachelor's degree (IT-related field preferred) - Five (5) years of overall experience in cybersecurity or network security position - Three (3) years of experience in a Certification and Accreditation/A&A role - Must have and maintain an active DoD Top Secret clearance with SCI eligibility - DoD 8570 IA Technical (IAT) Level II certification - Demonstrated experience with STIGs (Security Technical Implementation Guides), Security Requirement Guides (SRGs), Plan of Action and Milestones (POA&Ms) and cybersecurity best practices - Strong understanding of the RMF process, NIST SP 800-37, NIST SP 800-53, CNSSI 1253 - Demonstrated experience with relevant tools such as eMASS, STIG Viewer, Nessus, ACAS, SCAP, or HBSS - Demonstratable understanding of key technologies areas/domain such as: Network, Mobility, Windows, UNIX, Cloud Environments and Cloud Native Tools/Services, Host Based Security System (HBSS)/Endpoint Security Solutions (ESS), Databases, Applications - Strong written and verbal communication skills for reporting assessment findings. Requirements - This is a remote role requiring approximately 85% travel both CONUS AND OCONUS. - Candidates must have a valid US Passport, or the ability to obtain one quickly. Benefits - 26 Days Paid Leave: Includes vacation, sick, personal time, and holidays. You choose how to use it. - Performance Bonuses: Performance bonuses are awarded based on individual contributions and company-wide results, aligning recognition with impact. - 401(k) with Match: We match 3% of your contributions with immediate vesting. - Financial Protection: Company-paid life insurance up to $300K and options for additional coverage for you and your dependents. - Health Benefits: Multiple medical plans, dental, vision, FSA and HSA options to fit your needs. - Parental Leave: 15 days of fully paid leave for new parents, because family matters. - Military Differential Pay: We bridge the gap for employees on active duty, so they don’t take a financial hit while serving. - Professional Growth: Paid training and certifications, tuition reimbursement, and the tools and tech to get the job done right. - Shared Success: In the event of a company sale, our CEO has committed to returning 80% of net proceeds to employees. This ensures our team shares in the long term value they help create.

R Nessus Microsoft Windows Unix

View details: Security Control Assessor, Mid

United States

$70K / year

Apply

Program Manager, Security Business Enablement

Stripe

Help increase the GDP of the internet.

Security Engineer1 day ago

Full Time Remote LeadTeam 1,001-5,000Since 2010H1B Sponsor

Company Site LinkedIn

Role Description The Security Business Enablement Program Manager position will be part of Stripe’s Office of the CISO pillar. You will represent all of Stripe directly to our customers and partners, facilitate conversations with Legal and Security teams, and identify opportunities to enhance our coverage and scalability with tooling and automation. Responsibilities - Function as an information security subject matter expert and lead cross-functional teams to engage with customers and partners to build trust and grow our business. - Serve as the main point of contact for all go-to-market related requests. - Operate autonomously, leading large-scale efforts to implement and operate tooling and automation across multiple teams and functions, with stakeholders in different disciplines and time zones. - Identify and evaluate information security control gaps and oversee remediation efforts, in partnership with control owners. - Develop information security policies and standards based on cybersecurity framework guidelines. - Develop, define, and report on the team’s program health and success metrics to provide insights to management to help drive strategic direction. Qualifications - You are a subject matter expert in information security frameworks, practices, policies, standards and procedures (e.g. NIST CSF, PCI DSS, ISO 27001, SOC 2 or equivalent). - You understand how to balance business needs with security requirements and focus on business outcomes. - You have 5+ years engaging with customer and partner business, engineering, security, compliance, and legal teams as part of the go-to-market sales cycle. - You have experience driving large-scale projects and programs from start to finish within highly complex operating environments. - You have strong written and verbal communication skills, building strong relationships at all levels of the organization from executives to project teams. - You communicate clear and succinct security compliance controls and requirements with external Stripe stakeholders, including security counter-parties at global financial institutions. - You possess a strong background in information security operations, risks and controls identification, and assessment. - You are a critical thinker, passionate, self-driven, and detail-oriented. Preferred Qualifications - You have developed reports on program performance via dashboards and OKRs, and perform detailed data analysis. - You have experience working with engineers for the automation of security controls and generation of evidence. - You have utilized AI to automate complex information gathering tasks and built interfaces for non-technical users.

Stripe AI

View details: Program Manager, Security Business Enablement

United States

Apply

Security Control Assessor, Junior

AGE Solutions LLC

#betterwithage

Security Engineer1 day ago

Full Time Remote JuniorTeam 51-200Since 2021H1B No Sponsor

Company Site LinkedIn

Role Description AGE Solutions is looking for a Security Control Assessor, Junior to join our team in support of a cybersecurity risk management and assessment program with our DoD customer. - Conduct cybersecurity assessments, audits, and inspections for DoD organizations and partners handling DoD information or connecting to the DoDIN. - Evaluate systems and Defensive Cyberspace Operations using cyber threat emulation and performance-based testing. - Adhere to policies and processes for each assessment type. - Support assessment development and execution to ensure security expertise is properly applied. - Coordinate logistics, test plans, and scope with the SCA Team Lead. - Perform vulnerability assessments, capture results using STIG Viewer or designated tools, and document findings in eMASS. - Analyze security gaps and provide mitigation recommendations. - Validate cybersecurity controls, TTPs, STIGs, RMF controls, and compliance with DoD policies and guidelines. - Provide risk analysis and assessment results for authorization recommendations. - Participate in daily assessment reviews, in-briefs, and out-briefs, sharing findings with the SCA-R. Qualifications - Bachelor's degree (IT-related field preferred) - Three (3) years of overall experience in a DoD or Federal IT environment - Must have an active DoD Top Secret clearance with SCI eligibility - DoD 8570 IA Technical (IAT) Level II certification required - Familiarity with STIGs (Security Technical Implementation Guides), Security Requirement Guides (SRGs), Plan of Action and Milestones (POA&Ms) and cybersecurity best practices - Understanding of the RMF process, NIST SP 800-37, NIST SP 800-53, CNSSI 1253 - Familiarity with relevant tools such as eMASS, STIG Viewer, Nessus, ACAS, SCAP, or HBSS - Strong written and verbal communication skills for reporting assessment findings. Requirements - This is a remote role requiring approximately 85% travel both CONUS AND OCONUS. - Candidates must have a valid US Passport, or the ability to obtain one quickly. Benefits - 26 Days Paid Leave: Includes vacation, sick, personal time, and holidays. You choose how to use it. - Performance Bonuses: Performance bonuses are awarded based on individual contributions and company-wide results, aligning recognition with impact. - 401(k) with Match: We match 3% of your contributions with immediate vesting. - Financial Protection: Company-paid life insurance up to $300K and options for additional coverage for you and your dependents. - Health Benefits: Multiple medical plans, dental, vision, FSA and HSA options to fit your needs. - Parental Leave: 15 days of fully paid leave for new parents, because family matters. - Military Differential Pay: We bridge the gap for employees on active duty, so they don’t take a financial hit while serving. - Professional Growth: Paid training and certifications, tuition reimbursement, and the tools and tech to get the job done right. - Shared Success: In the event of a company sale, our CEO has committed to returning 80% of net proceeds to employees. This ensures our team shares in the long term value they help create.

R Nessus

View details: Security Control Assessor, Junior

United States

$55K / year

Apply

3,162more opportunities are still waiting for you.Log in now and take your next shot before someone else does.