You will be responsible for securing large cloud environments, orchestrating and securing various compute clusters, and reviewing infrastructure as code. Your expertise in cloud security, infrastructure automation, and advanced security practices will be essential in maintaining and enhancing our security posture.

Key responsibilities include:

• Securing infrastructure across large cloud hosting providers (e.g., AWS, Azure, GCP).
• Implementing and maintaining robust security configurations and policies for cloud environments.
• Conducting regular security assessments and audits of infrastructure to identify vulnerabilities and areas for improvement.
• Developing and enforcing security best practices for infrastructure automation and orchestration.
• Collaborating with DeveloperExperience, IT, and product teams to integrate security into all stages of the infrastructure lifecycle.
• Reviewing and securing infrastructure as code (e.g., Terraform, CloudFormation).
• Educating and mentoring team members on infrastructure security best practices and emerging threats.

Ideally, you'd have:

• Proven experience as a Security Engineer with a focus on product security.
• Proficiency in NodeJS, TypeScript, and Kubernetes.
• Experience with orchestrating and securing GPU clusters.
• Proficiency in infrastructure as code tools such as Terraform and CloudFormation.
• Excellent communication skills, with the ability to clearly explain technical concepts and their implications to both technical and non-technical stakeholders.
• Demonstrated ability to influence security strategies and drive improvements within an organisation.
• Relevant security certifications (e.g., AWS Certified Security Specialty, Certified Cloud Security Professional) are a plus.
• Experience in a senior or lead security role is preferred.

Compensation packages at Scale for eligible roles include base salary, equity, and benefits. The range displayed on each job posting reflects the minimum and maximum target for new hire salaries for the position, determined by work location and additional factors, including job-related skills, experience, interview performance, and relevant education or training.

XML job scraping automation by YubHub

Brex is a financial platform that enables companies to spend smarter and move faster in over 200 markets. It combines global corporate cards and banking with intuitive spend management, bill pay, and travel software.

As a Senior Application Security Engineer, you will focus on finding and responding to security vulnerabilities across the Brex platform. In this role, you will perform code reviews, design reviews, penetration testing, and vulnerability management. You will develop and maintain tooling to perform static and dynamic testing of the Brex platform and tooling which supports secure developer workflows.

Application Security is part of our wider Financial Scale organization, which means you will work closely with Security Operations, GRC, Product Security, Front End Platform, IT Infrastructure teams.

We’re looking for individuals with a strong background and interest in penetration testing. You should have a demonstrated ability to find vulnerabilities in complex systems and craft exploits to demonstrate business impact.

This role is highly cross-functional and collaborative, you will have the opportunity to work with every engineering team across Brex.

Building a world-class financial service requires world-class security. Brex is pioneering the next wave of AI-driven financial services for dynamic, high-impact companies like Coinbase, Robinhood, and Anthropic.

Responsibilities

• Identifying vulnerabilities, demonstrating business impact, and articulating the risk of specific vulnerabilities to drive prioritization efforts

• Perform penetration testing and design reviews, looking for vulnerabilities and insecure designs, work with engineering and product to design secure product features

• Maintain and build internal tools to automate security efforts, perform SAST and DAST testing of the Brex platform, and support secure development practices

• Build and contribute to a culture of collaborative security excellence through technical leadership, learning sessions, and mentorship within the team and wider organization

Requirements

• 5+ years work experience in an Application Security or related role

• Ability to find vulnerabilities in complex systems, demonstrating business impact through custom attack chains

• Experience with a wide range of secure development activities including, threat modeling, developer education, and incident response

• Knowledge of Python, scripting languages, and AI/agentic workflows to automate tasks, build tools and improve productivity

• Collaborative mindset paired with strong written and verbal communication skills

Bonus points

• Proficiency with Kotlin, gRPC, GraphQL, Kubernetes

• Previous experience as a software engineer

• Consultancy experience performing web application security reviews

• Experience with securing distributed systems in AWS and cloud environments

• Experience with pentesting and securing agentic features and systems

• Contributions to the wider technical community, open source, public research, mentorship, community organizing, blogging, CVEs, presentations, etc

Experience submitting to bug bounty programs or responsible disclosure programs

Compensation

The expected salary range for this role is $192,000 - $240,000. However, the starting base pay will depend on a number of factors including the candidate’s location, skills, experience, market demands, and internal pay parity.

XML job scraping automation by YubHub

Our team is responsible for functions across corporate security, detection & response and infrastructure security domains; and we perform systems engineering and automation to support those functions. Security Operations is part of our wider Trust & IT organization which means you will have the opportunity to work closely with Application Security, Corporate Engineering, GRC and IT and to improve security configurations, drive positive employee behaviors and generally work to prevent events from becoming incidents.

You will also help build and maintain our team’s open source project Substation and have the opportunity to contribute to the Brex Tech Blog. You’ll be part of a team that actively contributes to the wider security community and has a commitment to mentorship and engineering excellence.

We’re looking for individuals with a strong background and interest in detecting, responding to, and resolving security incidents and security challenges. You should be comfortable dealing with lots of moving pieces, changing priorities, and new technologies, while having a keen eye for detail. Most importantly, you should be enthusiastic about working with a variety of backgrounds, roles, and people across Brex.

Building a world-class financial service requires world-class security.

XML job scraping automation by YubHub

In this role, you will design and implement AI-powered security tools, proactively address vulnerabilities, and champion secure engineering practices across the organisation.

Ideal candidates are passionate about impactful innovation, excel at writing clean, efficient code, and thrive in fast-paced environments to support xAI's mission of creating a trusted and secure global digital platform.

Responsibilities:

• Design and build AI-driven security tooling and agents using Grok to identify, analyse, and mitigate vulnerabilities in the platform infrastructure and customer-facing application(s)

• Proactively identify security problems to solve and own the design and implementation end-to-end

• Collaborate and be a security champion while driving technical decisions across the organisation

Basic Qualifications:

• 3+ years of experience in fast-paced, high-impact environments, ideally at startups or tech-driven companies.

• Expertise in Python, Rust, or Go, with strong problem-solving skills and a focus on clean, efficient code.

• Certifications like CISA, CRISC, CGEIT, Security+, CASP+, or similar preferred.

• Proven experience building tools or systems from scratch, with a focus on scalable solutions.

• Proficiency in designing scalable backend architectures to support secure systems.

• Familiarity with security testing frameworks (e.g., Burp Suite, OWASP ZAP, SAST/DAST).

• Experience with Docker and Kubernetes for deploying and securing containerized applications.

• Knowledge of software supply chain tools, including SBOM management and dependency scanning.

Preferred Skills and Experience:

• Experience developing AI-driven security tools or integrating AI into security workflows.

• Familiarity with Kubernetes-based environments and securing cloud-native infrastructure.

• Proven ability to drive technical decisions and influence security practices across teams.

• A passion for challenging the status quo and building transformative security solutions.

• Strong collaboration skills, with experience working in dynamic, cross-functional teams.

• A sense of humour and adaptability to thrive in a fast-paced, mission-driven environment.

ITAR Requirements:

To conform to U.S. Government export regulations, applicant must be a (i) U.S. citizen or national, (ii) U.S. lawful, permanent resident (aka green card holder), (iii) Refugee under 8 U.S.C. § 1157, or (iv) Asylee under 8 U.S.C. § 1158, or be eligible to obtain the required authorisations from the U.S. Department of State. Learn more about the ITAR here.

Compensation and Benefits:

$180,000 - $440,000 USD

Base salary is just one part of our total rewards package at xAI, which also includes equity, comprehensive medical, vision, and dental coverage, access to a 401(k) retirement plan, short & long-term disability insurance, life insurance, and various other discounts and perks.

XML job scraping automation by YubHub

As a Composite Technician, you will cut, lay-up, fabricate, cure and assemble various types of composite products and assemblies, including bonded and mechanically fastened assemblies. You will exercise a basic knowledge of the physical properties of materials such as thermosets, thermoplastics and composites and their forming and processing characteristics, and of the physical and bonding characteristics of materials and adhesives used.

Key responsibilities include:

• Cutting, laying up, fabricating, curing and assembling composite products and assemblies
• Locating critical reference points and assuring coordination of parts and subassemblies to exacting tolerances
• Building laminated assemblies by determining proper placement and laying up composite plies and adhesives onto tools or molds
• Preparing parts for bagging, including placement of bleeders, thermocouples, probes and vacuum connections
• Setting up assemblies and parts in various types of processing and curing equipment

Required qualifications include:

• A U.S. Person due to required access to U.S. export controlled information or facilities
• Eligibility to obtain and maintain an active U.S. Secret security clearance
• High School graduate or equivalent

Preferred qualifications include:

• 1-3 years of Composite Fabrication or equivalent experience
• Experience collaborating cross functionally
• Polished communication and presentation skills
• A bias towards action
• Excellent customer service skills
• Ability to prioritize tasks efficiently

Salary range: $60,000 - $78,000 USD

XML job scraping automation by YubHub

Identity is the key to unlocking the potential of AI. As an AEM DevSecOps Engineer at Okta, you will oversee and automate our AEM infrastructure with a primary focus on security, reliability, and automated compliance.

Key Responsibilities:

• Identity & Access Management: Configure and manage Auth0 integrations for AEM, including token validation, OIDC/SAML configurations, and custom login modules to ensure secure user authentication.

• Headless Security: Oversee the security of AEM Headless deployments, including protecting GraphQL endpoints, managing CORS policies, and ensuring secure communication for decoupled front-end frameworks (React/Angular).

• Edge & CDN Protection: Manage and configure CDN (e.g., Cloudflare, Akamai, or Adobe-managed CDN) to optimize performance and implement DDoS mitigation strategies.

• Traffic Filtering: Implement and maintain Traffic Filter Rules and Web Application Firewall (WAF) configurations at the CDN level to block malicious spikes and sophisticated application-layer attacks.

• Automated Security Scanning: Integrate security tools (SAST/DAST) and secrets detection into CI/CD pipelines (Jenkins, GitLab) to identify vulnerabilities early in the development cycle.

• Environment Hardening: Install and manage AEM author, publish, and dispatcher instances with a focus on Dispatcher security hardening, SSL certificate automation, and ModSecurity configurations.

• Observability & Incident Response: Monitor system performance and security logs using tools like Splunk or New Relic to proactively address threats and performance bottlenecks.

• Compliance Auditing: Regularly audit the platform and its integrations (Adobe Analytics, Target) to ensure alignment with corporate security policies and industry standards.

Required Skills & Experience:

• Experience: 5+ years in administering and securing AEM environments.

• Identity Services: Proven experience integrating Auth0 or similar Identity Providers (IdP) for enterprise-scale authentication.

• Architectural Knowledge: Strong understanding of Headless CMS security best practices, including API key management and JWT authentication.

• Network Security: Expertise in managing CDNs and implementing DDoS mitigation and WAF rules.

• Technical Stack: Proficiency in Apache Sling, JCR, OSGi, and web servers like Nginx or Apache.

• Automation: Hands-on experience with scripting (Python) and CI/CD tools (Jenkins, CircleCI) to automate security and deployment workflows.

• Cloud Experience: Experience with cloud-based AEM implementations, such as AEM as a Cloud Service (AEMaaCS) or AWS/Azure.

• Diagnostic Skills: Proficiency in analyzing log files, thread dumps, and heap dumps to resolve security incidents or performance outages.

The Okta Experience

• Supporting Your Well-Being

• Driving Social Impact

• Developing Talent and Fostering Connection + Community

We are intentional about connection. Our global community, spanning over 20 offices worldwide, is united by a drive to innovate. Your journey begins with an immersive, in-person onboarding experience designed to accelerate your impact and connect you to our mission and team from day one.

XML job scraping automation by YubHub

Identity is the key to unlocking the potential of AI. Okta secures AI by building the trusted, neutral infrastructure that enables organisations to safely embrace this new era. This work requires a relentless drive to solve complex challenges with real-world stakes. We are looking for builders and owners who operate with speed and urgency and execute with excellence.

This is an opportunity to do career-defining work. We're all in on this mission. If you are too, let's talk.

Responsibilities

Reporting to the Senior Manager, Product Marketing, this role is a critical lead in Okta’s security journey. We are looking for a Staff Product Marketing Manager who will help tell Okta’s security story in a compelling, cohesive, and relevant way. Your goal is to elevate Okta’s foundational access technologies from a utility to a strategic security imperative, evangelising the need for identity-centric security in an AI-driven threat landscape.

The ideal candidate will be a unique blend of technologist and business strategist,someone who can dive deep into technical architecture while crafting portfolio-level value propositions that resonate with both CISOs and practitioners. Beyond strategy and content, you must be a self-motivated, execution-oriented individual who stays focused on delivering outcomes in a fast-paced environment.

Key Responsibilities

• Identity Security GTM Strategy: Build and execute the go-to-market strategy for Okta’s foundational access and authentication platform. You will define how core authentication, adaptive policy, and recovery flows serve as the first line of defence against modern identity-based attacks.

• Technical Evangelism & Demos: Move beyond high-level messaging to create 'show-not-tell' technical content. You will be responsible for building and delivering product demonstrations, technical reference architectures, and briefs that prove Okta’s security value to technical buyers.

• Security Storytelling: Own the messaging, positioning, and competitive differentiation for our core access technologies. You must take 'under-the-hood' technology and turn it into a simple, urgent, and business-focused story that highlights resilience and risk mitigation.

• AI-Driven Identity Leadership: Define the strategy for securing the new wave of AI. This includes establishing Okta's point of view on managing AI agents as identities and ensuring the access layer is hardened for an automated, high-velocity threat landscape.

• Cross-Functional Activation: Partner with Product Management, Engineering, and Sales to build technical buyer-focused assets,including technical comparisons, FAQs, and field enablement materials,specifically designed for the Global 2000.

• Analyst & Industry Presence: Represent Okta at security events to raise our profile and establish a unique POV. Engage with analysts to ensure Okta’s foundational security capabilities are recognised as the core of a modern security posture.

What You'll Bring to the Role

• Domain Expertise: 8+ years of experience as a product marketer or product manager in cybersecurity or identity management (IAM, AD, or Entra ID). You know who the players are, where the gaps lie, and how to win.

• Hands-on Technical Proficiency: A technologist at heart. You must have a track record of supporting technical evaluations, and you must be comfortable configuring and demoing the product to technical buyers.

• Execution-Oriented Storytelling: Proven ability to take 'under-the-hood' technology and turn it into an emotional and urgent business story. You know how to rise above the noise and create a sense of urgency.

• Strategic Integration: An understanding of how foundational identity signals (like MFA and policy) feed into broader security outcomes like threat detection and incident response.

• Stakeholder Management: Experience managing senior stakeholders with differing priorities and a high sense of urgency to drive end-to-end GTM initiatives.

Extra Credit if You Have

• CS Degree or a strong technical background in systems architecture or engineering.

• Deep experience with modern identity protocols and securing hybrid environments (Cloud and On-Premises).

• Experience in the AI space, specifically regarding the security implications of LLMs and agentic workflows.

#LI-Hybrid

(P24306_3344542)

XML job scraping automation by YubHub

About the Team: Anduril employs a variety of networks and networking infrastructures to support global operations. Information Systems Security Managers are in charge of directly supporting business lines that wish to deploy Anduril products in classified environments.

About the Job: As an Information Systems Security Manager, you will be responsible for providing expertise in documenting security controls to reduce the administrative cost of deploying Anduril's products into operational environments. You will partner with program and security teams to coordinate security artifacts in support of classified deployments. You will apply technology standards from the commercial space in classified, air-gapped environments.

Responsibilities:

• Provide expertise in documenting security controls to reduce the administrative cost of deploying Anduril's products into operational environments.
• Partner with program and security teams to coordinate security artifacts in support of classified deployments.
• Apply technology standards from the commercial space in classified, air-gapped environments.
• Collaborate with Information System Owners to understand key stakeholders' needs and provide complex technical solutions to meet contractual obligations.
• Tailor NIST 800-53 controls to determine applicability to the network environment and oversee the implementation of Continuous Monitoring for respective programs.
• Define, document, and conduct security scanning on Anduril's products and accredited information systems.
• Scope, shape, and orchestrate the development of features to ensure products meet compliance goals.

Required Qualifications:

• Design, develop, and implement secure systems and networks per NIST RMF, JSIG, and other industry standards.
• Integrate security best practices into Anduril's Software Development Lifecycle (SDLC) and infrastructure design, collaborating with internal IT and engineering teams.
• Conduct security risk assessments, vulnerability assessments, and audits to identify and mitigate threats.
• Recommend and implement security solutions, such as IDS/IPS, encryption protocols, and secure communications technologies.
• Develop and enforce access controls, encryption strategies, and other technical measures to safeguard systems.
• Maintain and update System Security Plans (SSPs), POA&Ms, and other accreditation documentation.

Preferred Qualifications:

• Experience with application security paradigms such as Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA).
• Proven experience in securing micro-services architecture, including implementing best practices and compliance with DoD cybersecurity standards.
• Experience with cybersecurity in unmanned and ground control system within DoD environments.
• Experience with containerization and kubernetes along with the best practices for securing them.
• Experience with Cloud Service Providers (CSPs) and the various tools they offer for implementing security and compliance best practices.

Salary: The salary range for this role is $146,000-$194,000 USD.

Benefits: Anduril offers top-tier benefits for full-time employees, including comprehensive medical, dental, and vision plans at little to no cost to you. Anduril also offers income protection, generous time off, family planning and parenting support, mental health resources, professional development, commuter benefits, relocation assistance, and a retirement savings plan.

Protecting Yourself from Recruitment Scams: Anduril is committed to maintaining the integrity of our Talent acquisition process and the security of our candidates. We've observed a rise in sophisticated phishing and fraudulent schemes where individuals impersonate Anduril representatives, luring job seekers with false interviews or job offers. These scammers often attempt to extract payment or sensitive personal information.

To ensure your safety and help you navigate your job search with confidence, please keep the following critical points in mind:

• No Financial Requests: Anduril will never solicit payment or demand personal financial details (such as banking information, credit card numbers, or social security numbers) at any stage of our hiring process. Our legitimate recruitment is entirely free for candidates.
• Please always verify communications:
• Direct from Anduril: If you receive an email from one of our recruiters, it will only come from an @anduril.com address.
• Via Agency Partner: If contacted by a recruiting agency for an Anduril role, their email will clearly identify their agency. If you suspect any suspicious activity, please verify the agency's authenticity by reaching out to contact@anduril.com.
• Exercise Caution with Unsolicited Outreach: If you receive any communication that appears suspicious, contains grammatical errors, or makes unusual requests, do not respond or engage with the sender.

XML job scraping automation by YubHub

You are technical, a strong operator, and strategic thinker, looking to build, improve, and scale reliable security processes whenever possible. Your leadership of the information security program at Waymark will include all facets of cybersecurity, and the associated user experience of our remote teams, and community-based care workers. You will be responsible for security policy and implementation and operation of technical and administrative safeguards to support those policies. You will use your experience to inform sound judgement to achieve the appropriate management of security risks in a manner consistent with the company’s values. You will use your in-depth knowledge of security in a modern cloud based organization, to identify and address risks to the company, through a combination of hands-on technical contributions and directing and overseeing staff with security responsibilities. You will interact with the broader executive leadership team to communicate evolving needs, matching the security strategy to the size and stage of growth of the company and the information we safeguard.

This is a remote friendly position that can be located anywhere in the United States.

Key Responsibilities & Duties

• Oversee the internal cybersecurity program, road map, and strategy, which includes developing and implementing procedures and policies designed to protect Waymark communications, systems, and assets from internal and external threats and that safeguards health information.
• Oversee and manage Waymark’s MSSP and outsourced IT vendor, including responsibility for security and IT budgets, and IT tools used by Waymark.
• Partner with Product, Engineering, Legal, and Compliance leadership to determine risks and deploy risk management processes, supporting Waymark’s secure software development lifecycle and ensuring that our internally developed products and services meet the expectations of our patients, customers and regulators
• Own, define and oversee the necessary security operational functions such as Identity Management, Vulnerability Management, Incident Response, Security Awareness, and Vendor Risk Management
• Serve as Waymark’s HIPAA Security Officer, ensuring compliance with the HIPAA Security Rule, working closely with the legal team to document, review, maintain, and implement standards, policies, and procedures within security disciplines.
• Lead the strategy, implementation, and maintenance of industry-standard security certifications, including SOC2 Type II.
• Conduct research, analysis, and correlation across a wide variety of source data to identify and prevent compromise of our networks, host systems, and data.
• Track and report on network security to the Waymark executive leadership team

XML job scraping automation by YubHub

The ideal candidate will have experience in airframe fabrication and assembly.

Responsibilities:

• Design and optimise assembly tools, fixtures, and jigs to support high-precision structural integration.
• Define and document work instructions, standard operating procedures (SOPs), and process flow for production.
• Collaborate with design, quality, and production teams to ensure manufacturability and compliance with specifications.
• Utilise CAD software (CATIA, NX, SolidWorks, etc.) for tool and fixture design and analysis.
• Perform root cause analysis and corrective actions (RCCA) for manufacturing issues to improve efficiency and reduce defects.
• Ensure compliance with aerospace industry standards (AS9100, NADCAP, MIL-STD, etc.) and company policies.

Requirements:

• Bachelor's or Master's degree in Mechanical Engineering, Aerospace Engineering, Manufacturing Engineering, or a related field.
• 5+ years of experience in aircraft manufacturing, assembly, or tooling design.
• Expertise in aircraft structure assembly with knowledge of fastening, drilling, and tolerance stack-up.
• Proficiency in CAD software (CATIA V5, Siemens NX, or equivalent) for tooling and assembly process design.
• Familiarity with GD&T, metrology techniques, and precision alignment methodologies.
• Experience working with automated assembly systems and advanced manufacturing technologies.
• Knowledge of DFM/DFA (Design for Manufacturability & Assembly) principles.
• Strong problem-solving skills and ability to work in a fast-paced, high-security environment.

Preferences:

• Prior experience in military aircraft programs (F-35, B-21, F/A-18, F-22, etc.).
• Understanding the fabrication, trimming, drilling, fastening, and bonding of composite and metallic aircraft components.
• Understanding of composite materials, layup processes, curing, and bonding techniques.

XML job scraping automation by YubHub

This hands-on role is critical to our manufacturing process and directly impacts product reliability and performance.

Key Responsibilities:

• Prepare molds and tooling for composite layup and infusion
• Perform precise hand layups using dry fiber materials
• Set up and execute vacuum-assisted resin infusion processes
• Mix and handle resins, hardeners, and other composite materials in accordance with safety protocols
• Trim, demold, and finish small composite components to required tolerances
• Maintain a clean, organized, and safety-compliant workspace
• Interpret technical drawings, layup schedules, and process documentation using a tablet
• Collaborate closely with engineering and quality teams to iterate on part design and manufacturability
• Document work performed and identify process improvements or quality issues

Requirements:

• 2+ years of hands-on experience with composites manufacturing, particularly resin infusion at a high rate boat building factory
• Strong attention to detail, manual dexterity, and a quality-first mindset
• Experience with vacuum bagging, mold prep, and curing processes
• Ability to work with minimal supervision in a fast-paced, iterative environment
• Familiarity with vinyl ester and polyester resins, carbon fiber, dry fiberglass
• Comfortable using trimming tools, grinders, and measurement instruments
• Able to read technical drawings and follow standard operating procedures
• U.S. Person (citizen or permanent resident) required due to DoD contract work

Benefits:

• Medical Insurance: Comprehensive health insurance plans covering a range of services
• Saronic pays 100% of the premium for employees and 80% for dependents
• Dental and Vision Insurance: Coverage for routine dental check-ups, orthodontics, and vision care
• Saronic pays 99% of the premium for employees and 80% for dependents
• Time Off: Generous PTO and Holidays
• Parental Leave: Paid maternity and paternity leave to support new parents
• Competitive Salary: Industry-standard salaries with opportunities for performance-based bonuses
• Retirement Plan: 401(k) plan
• Stock Options: Equity options to give employees a stake in the company’s success
• Life and Disability Insurance: Basic life insurance and short- and long-term disability coverage
• Additional Perks: Free lunch benefit and unlimited free drinks and snacks in the office

XML job scraping automation by YubHub

As a Security Engineer, you will be the technical authority on how Saronic builds, ships, and runs secure software. You will lead secure code review, SAST, DAST, and fuzzing efforts, and define secure coding standards for Rust development including memory safety practices, safe FFI boundaries, and secure error handling.

You will conduct threat modeling for software systems and translate findings into actionable security requirements integrated into design reviews and sprint planning. You will drive vulnerability management for software dependencies, including tracking, prioritization, and remediation of vulnerabilities in third-party crates and libraries.

You will secure and harden NixOS configurations for vessel platforms and development infrastructure, leveraging Nix's reproducibility and declarative model for security enforcement. You will design system hardening profiles in NixOS including kernel hardening, service isolation, mandatory access controls, and minimal attack surface configurations.

You will define and enforce package management and dependency policies within the Nix ecosystem, ensuring build closures are auditable, reproducible, and free from unauthorized or vulnerable packages. You will architect secure system update and rollback mechanisms using NixOS capabilities, ensuring fleet-wide consistency and integrity.

You will design and implement security controls across the CI/CD pipeline including source integrity, build isolation, artifact signing, and deployment verification with build environments that are ephemeral, isolated, and hardened.

You will build and maintain software supply chain security practices aligned to SLSA framework principles, including provenance tracking, hermetic builds, signed attestations, and SBOM generation.

You will integrate security scanning (SAST, SCA, container scanning, secrets detection) into CI/CD pipelines as automated guardrails, and create self-service pipeline templates that enable teams to ship without bottlenecks.

You will design secure deployment patterns for vessel software updates, including secure delivery, integrity verification, and rollback capabilities.

You will implement runtime application security controls including logging, monitoring, and anomaly detection for deployed services.

You will define software and systems security standards, patterns, and reference architectures that engineering teams adopt as the default secure path.

XML job scraping automation by YubHub

Mistral AI is a technology company that develops and provides AI-powered solutions and platforms for enterprise use. Our technology is designed to integrate seamlessly into daily working life.

Role Summary

As a CyberSecurity Team Lead, you will be responsible for architecting and enforcing the security posture of our entire technical stack, from on-premise foundations to cloud-native deployments. You will oversee the identification, prioritization, and remediation of vulnerabilities across both On-Prem and Cloud infrastructures as well as internal applications.

Responsibilities

• Oversee the identification, prioritization, and remediation of vulnerabilities across both On-Prem and Cloud infrastructures as well as internal applications.
• Select, deploy, and maintain the tools needed for visibility and protection, including CNAPP, CSPM, SAST/DAST, secret scanning, and SBOM/CVE tracking.
• Integrate security controls and automated gates directly into CI/CD pipelines to catch vulnerabilities before deployment (Shift Left).
• Partner with engineering teams to interpret findings and 'ease the fix,' providing patches, code snippets, or architectural advice to resolve issues quickly.
• Define and maintain rigorous security guidelines and best practices for developers and system administrators.
• Design and lead security awareness programs and technical training tailored for developers and admins to reduce human risk.
• Track and define key security metrics (MTTR, coverage, vulnerability density) to visualize posture and progress to leadership.

Requirements

• 6+ years of experience in Information Security, with a specific focus on Application Security, Cloud Security, or DevSecOps.
• Strong scripting skills (Python, Go, or Bash) to automate security tasks and integrate tools.
• Deep understanding of CI/CD ecosystems and container orchestration (Kubernetes/Docker).
• Hands-on experience with modern security tooling (e.g., Wiz, Snyk, SonarQube, Prisma, or similar enterprise tools).
• Collaborative mindset: you view developers as partners, not adversaries, and focus on enabling them to code securely.
• Clear communication, autonomous, and capable of translating technical security risks into actionable engineering tasks.

Benefits

• Competitive salary
• Comprehensive health insurance
• Flexible working hours
• Professional development opportunities

Note: The company may offer additional benefits not listed here.

XML job scraping automation by YubHub

The successful candidate will design, build, and maintain high-scale automation workflows and AI-assisted capabilities that proactively mature Greenlight's security posture. They will also architect and implement security guardrails for internal AI usage, ensuring LLM integrations and automated agents operate within company risk tolerances.

Key responsibilities include:

• Developing custom integrations across the security and business systems stack (SaaS, FinTech tools, and internal APIs) to eliminate manual silos.
• Building and configuring automated tooling for real-time monitoring of data security, privacy, and vulnerability management.
• Partnering with IT, Engineering, and Business Owners to identify operational bottlenecks and deploy AI-powered solutions that enhance both security and efficiency.
• Collaborating with DevOps to bake automated security controls into the CI/CD pipeline and cloud environments.
• Creating high-quality designs, workflow diagrams, and playbooks to ensure automated systems are maintainable and transparent.

Requirements include:

• 4+ years of professional experience in Cybersecurity, DevOps, or Software Engineering.
• Strong proficiency in Python (preferred) or Go for building custom security tools and API-heavy integrations.
• Solid understanding of cloud security principles (AWS/GCP), containerization (Docker/K8s), and securing distributed systems.
• Deep familiarity with the OWASP Top 10 (including LLM-specific risks) and CI/CD security best practices.
• Hands-on experience with CI/CD platforms (GitHub Actions, GitLab CI) and no-code/low-code automation platforms (e.g., Tines, Torq, or Tray.io).
• Proven experience using AI-assisted tools (Copilot, Cursor, etc.) to accelerate development and a curiosity for deploying AI-driven security solutions.

Nice to have:

• Experience with Infrastructure-as-code (IaC)
• Direct experience implementing security controls within both AWS and GCP.
• Security certifications such as CISSP, Security+, or specialized GIAC certifications.

XML job scraping automation by YubHub

Responsibilities:

• Win new business and drive revenue for Anthropic within the enterprise sector across Switzerland. Navigate complex enterprise organisations to reach key decision-makers, educate them about our services, and help them succeed with Anthropic. You'll own the full sales cycle, from first outbound to close
• Design and execute innovative sales strategies tailored to enterprise procurement cycles and budgeting processes to meet and exceed revenue quotas. Analyse enterprise market landscapes, trends, and dynamics to translate high-level plans into targeted sales activities and campaigns
• Spearhead market expansion by identifying new use cases within enterprise departments, innovation centres, and operational offices. Collaborate cross-functionally to differentiate our offerings for enterprise applications
• Navigate complex enterprise stakeholder ecosystems including executives, administrators, IT departments, and procurement offices to build consensus across Swiss business culture and practices
• Inform product roadmaps and features by gathering feedback from enterprise users and conveying market needs from the Swiss enterprise landscape. Provide insights that strengthen our value proposition for enterprise customers
• Continuously refine the enterprise sales methodology by incorporating learnings into playbooks, templates, and best practices. Identify process improvements that optimise sales productivity and consistency

You may be a good fit if you have:

• Native German speaker with excellent written and verbal communication skills in German and English
• 5+ years of B2B sales experience in enterprise technology, preferably in SaaS or emerging technologies
• Specialised sales industries experience: Telco, Manufacturing, Retail, Energy and Utilities
• A track record of managing complex sales cycles within large enterprise organisations and securing strategic deals by understanding both technical requirements and business use cases
• Demonstrated ability to navigate enterprise bureaucracies and procurement processes, building consensus among diverse stakeholders including executives, administrators, and IT departments
• Extensive experience negotiating complex agreements within enterprise procurement frameworks and policies
• Proven experience exceeding revenue targets in the enterprise sector by effectively managing an evolving pipeline and sales process
• Excellent communication skills and the ability to present confidently to various enterprise audiences, from technical teams and business analysts to senior executives
• Deep understanding of enterprise buying cycles, decision-making processes, and key pain points, particularly within the Swiss market
• A strategic, analytical approach to assessing the enterprise market combined with creative, tactical execution to capture opportunities
• A passion for and/or experience with advanced AI systems and their applications in enterprise environments. You feel strongly about ensuring frontier AI systems are developed safely and ethically for business use

What We Offer:

• Competitive base salary and commission structure
• Equity participation in Anthropic's growth
• Comprehensive benefits package
• Opportunity to shape the AI industry in Switzerland and EMEA
• Professional development and career growth opportunities

Location: Zurich (hybrid working available)

Education requirements: We require at least a Bachelor's degree in a related field or equivalent experience. Location-based hybrid policy: Currently, we expect all staff to be in one of our offices at least 25% of the time. However, some roles may require more time in our offices.

Visa sponsorship: We do sponsor visas! However, we aren't able to successfully sponsor visas for every role and every candidate. But if we make you an offer, we will make every reasonable effort to get you a visa, and we retain an immigration lawyer to help with this.

We encourage you to apply even if you do not believe you meet every single qualification. Not all strong candidates will meet every single qualification as listed. Research shows that people who identify as being from underrepresented groups are more prone to experiencing imposter syndrome and doubting the strength of their candidacy, so we urge you not to exclude yourself prematurely and to submit an application if you're interested in this work.

XML job scraping automation by YubHub