Introduction to role

Cybersecurity sits at the heart of our IT strategy. As we move towards ambitious objectives, we are looking for individuals who focus on innovation to maintain a sustainable risk position against an evolving threat landscape, who recognise that adversaries may include organised crime syndicates or state-sponsored attackers, and who understand attackers' motivations and ways of working.

In this role, you will operate within AstraZeneca's global cybersecurity organisation, collaborating with and influencing multiple functions across China, India, Mexico, Sweden, the US and the UK. Ready to help defend a global enterprise where technology directly supports life-changing medicines?

Accountabilities

In this role, you will engineer cybersecurity solutions across cloud, on-premises and third-party collaboration environments, with a predominant focus on cloud and data. You will collaborate with other teams to perform, assess and evolve IT processes that intersect our cybersecurity priorities, ensuring security is embedded into how work gets done. You will map governance and compliance frameworks and their controls to technical implementation, shifting hardening processes as far left as possible in the lifecycle. You will leverage deep understanding of threats, weaknesses and vulnerabilities around cloud and data to help other areas respond promptly and effectively to contain breaches or address areas of concern. You will also contribute to continuous improvement by analysing incidents, refining standards and influencing architectural decisions that balance risk, performance and usability.

How will you use your expertise to raise the bar?

Essential Skills/Experience

• Minimum 10 years of experience
• Bachelor's Degree
• Must have broad enterprise IT experience with significant cloud and data exposure.
• Must have in-depth understanding of security and networking protocols, cryptography, and modern authentication and authorization protocols.
• Must have experience designing, deploying, and operating secure networks, systems, application and security architectures at scale.
• Must have experience configuring and managing cloud security services in an AWS, Azure and GCP at organisation at scale.
• Must have experience researching, designing, and implementing security policies, standards, and procedures, including those in cybersecurity frameworks such as MITRE ATT&CK, NIST CSF, NIST SP.800- 53, and NIST SP.800-61, as well as implementing cloud security reference architectures.
• Should have experience working in a software development and systems administration organisation, implementing DevSecOps and process automation.
• Should have the ability to conduct post-mortem on security incidents and take post-mortem data to drive uplift in policies, procedures, standards.
• Familiarity with CSPM, CNAPP, and Cloud EDR platforms
• Expertise with Microsoft Defender, Sentinel and Splunk

Desirable Skills/Experience

• Identify and articulate architectural trade-offs.
• Embed process, governance and security into workflow and technology.
• Design and implement software tools and services using modern programming languages.
• Manage and lead projects delivering prioritised initiatives at challenging deadlines.
• Exert positive influence in a matrixed organisation to drive technology evolution.
• Drive efforts to achieve process and technology improvement at scale.

The annual base pay for this position ranges from 136,044.00 - 204,066.00 USD Annual (80% - 120%). Hourly and salaried non-exempt employees will also be paid overtime pay when working qualifying overtime hours. Base pay offered may vary depending on multiple individualised factors, including market location, job-related knowledge, skills, and experience. In addition, our positions offer a short-term incentive bonus opportunity; eligibility to participate in our equity-based long-term incentive programme (salaried roles), to receive a retirement contribution (hourly roles), and commission payment eligibility (sales roles).

Benefits offered included a qualified retirement programme [401(k) plan]; paid vacation and holidays; paid leaves; and, health benefits including medical, prescription drug, dental, and vision coverage in accordance with the terms and conditions of the applicable plans. Additional details of participation in these benefit plans will be provided if an employee receives an offer of employment. If hired, employee will be in an 'at-will position' and the Company reserves the right to modify base pay (as well as any other discretionary payment or compensation programme) at any time, including for reasons related to individual performance, Company or individual department/team performance, and market factors.

When we put unexpected teams in the same room, we unleash bold thinking with the power to inspire life-changing medicines. In-person working gives us the platform we need to connect, work at pace and challenge perceptions. That's why we work, on average, a minimum of three days per week from the office. But that doesn't mean we're not flexible. We balance the expectation of being in the office while respecting individual flexibility. Join us in our unique and ambitious world.

AstraZeneca offers an environment where cybersecurity work has real-world impact on patients' lives, not just systems and data. Here, technology experts collaborate with scientists and business teams to unlock the potential of data, analytics, AI and machine learning, constantly experimenting with new approaches while keeping critical platforms secure. There is strong investment in digital capabilities, room to explore modern tools through initiatives like hackathons, and a culture that values curiosity, coaching and continuous learning so that every day brings opportunities to grow skills and shape both personal development and the future of healthcare technology.

If this role matches your skills and ambitions, apply now and help protect the digital foundations that enable life-changing medicines!

Date Posted 17-Apr-2026 Closing Date 03-May-2026

Our mission is to build an inclusive environment where equal employment opportunities are available to all applicants and employees. In furtherance of that mission, we welcome and consider applications from all qualified candidates, regardless of their protected characteristics. If you have a disability or special need that requires accommodation, please complete the corresponding section in the application form.

XML job scraping automation by YubHub

The team fosters a collaborative environment and is building a best-in-class program to partner with the business to protect the Firm's information and computer systems.

Principal Responsibilities:

• Provide a high level of security consultancy and engineering support for Windows/Active Directory/Azure security solutions including analysis and development of Windows security solutions.
• Strong understanding of modern authentication protocols, e.g., OIDC / OAUTH 2.
• Contribute to the vision, strategy, and drive design and implementation for authentication platforms both on premises and in the cloud.
• Provide security consultancy and engineering support for SAML, OIDC and Kerberos authentication across different Identity providers, including analysis and development of SSO, PKI, and other authentication solutions.
• Able to demonstrate clear understanding of current risks and threats related to Identity Management at technical and managerial levels.
• Actively monitor new and emerging security and privacy related technologies, trends, issues, and solutions and assess their applicability to key business initiatives and strategies.
• Participate in Information Security Incident Response activities for the Firm's environment.
• Liaison with key stakeholders to create and enforce policy including Technology organization, Trading units, Legal, Internal Audit, and Compliance.
• Provide support to Security and other technical operations staff to ensure smooth turnover from Engineering to Production - and provide mentoring to junior level security professionals.
• Develop and maintain documentation of all Security products including specific tools, technologies, and processes.

Qualifications/Skills Required:

• Bachelor's degree in computer science or engineering preferred.
• 7 + years' experience working in a technical role with a minimum of 2 + years' experience focusing on information security in the financial industry (preferred).
• Excellent understanding and experience of engineering Microsoft security solutions – including desktop and server operating systems, EntraID, Active Directory, Group Policy, Desired Configuration State, DNS, Messaging.
• Ability to understand code in C#/.NET and / or Python and strong scripting experience in PowerShell.
• Experience managing IaaS, SaaS solutions and services using CI/CD pipelines. Jenkins, Terraform experience is a strong plus.
• Solid understanding of SAML, OIDC and Kerberos authentication and related technology controls and best practices.
• Experience with Office 365 security controls including usage of Azure Active Directory, Conditional Access, o365 logging APIs, Microsoft CAS, and Microsoft Authenticator.
• Understanding and experience with implementing Data Loss Prevention (DLP) solutions, policies, and technologies.
• Understanding of Azure Information Protection (AIP) and its components, including labeling, classification, and encryption.
• Ability to develop and implement strategies to ensure compliance with data protection regulations, such as GDPR or HIPAA, utilizing DLP and AIP solutions.
• Strong knowledge and experience in a variety of security technologies including: EDR, SIEM, Vulnerability Management is a plus.
• Relevant security certification (CISSP, GCIA, CISM, etc.) and/or product certifications (PingFederate, Azure, Windows, AD etc.) a plus.

The estimated base salary range for this position is $175,000 to $250,000, which is specific to New York and may change in the future. Millennium pays a total compensation package which includes a base salary, discretionary performance bonus, and a comprehensive benefits package.

XML job scraping automation by YubHub

You will design and ship high-precision detections across cloud services and enterprise SaaS, develop automation that shortens response timelines, and mature the telemetry pipelines that make it all possible. Your ability to write production-quality code is just as important as your ability to triage an alert.

Responsibilities:

• Engineer, test, and deploy detection logic across cloud and enterprise environments, treating detections as software with version control, peer review, and measurable performance.

• Build and maintain incident response automation, runbooks, and tooling that reduce containment timelines without sacrificing developer velocity.

• Mature telemetry pipelines through improved schema design, normalization, enrichment, and quality checks that reduce false positives and increase signal fidelity.

• Perform digital incident investigations to identify and contain potential security breaches.

• Conduct digital forensics and malware analysis to understand attack vectors and adversary methodologies.

• Integrate alerting with messaging and ticketing systems to enable fast, traceable response workflows.

• Partner cross-functionally with IT, security, and engineering teams to harden identity and access patterns, close logging and forensics gaps, and implement maintainable guardrails that scale with the organisation.

• Utilize threat intelligence platforms to improve hunting, detection, and response workflows.

• Clearly explain the significance and impact of incidents, providing actionable recommendations to both technical and non-technical stakeholders.

Ideal Candidate:

• 5+ years of experience in Detection Engineering, Incident Response, or Security Operations, with a strong emphasis on building and shipping security tooling and automation.

• Proficiency in at least one programming language (e.g., Python, Go) and comfort writing production-grade code , not just scripts.

• Hands-on experience designing or improving detection pipelines, SIEM content, and alerting workflows in cloud-native environments.

• Practical experience with SIEM, EDR, and SOAR tools, with a preference for candidates who have built integrations or extended these platforms programmatically.

• Strong understanding of modern cyber threats, common attack techniques, and adversary TTPs.

• Familiarity with digital forensics tools and malware analysis techniques.

• Experience with cloud-native environments (e.g., AWS, GCP, Azure) and the security telemetry those environments generate.

• Exposure to threat intelligence platforms and integrating intel into detection and investigation workflows.

• Strong communication skills, with the ability to translate complex security findings into clear business impact.

• Relevant security certifications (e.g., GCIH, GCFA, GCIA, CISSP, GDSA) are a plus.

Compensation packages at Scale for eligible roles include base salary, equity, and benefits. The range displayed on each job posting reflects the minimum and maximum target for new hire salaries for the position, determined by work location and additional factors, including job-related skills, experience, interview performance, and relevant education or training. Scale employees in eligible roles are also granted equity based compensation, subject to Board of Director approval. Your recruiter can share more about the specific salary range for your preferred location during the hiring process, and confirm whether the hired role will be eligible for equity grant. You’ll also receive benefits including, but not limited to: Comprehensive health, dental and vision coverage, retirement benefits, a learning and development stipend, and generous PTO. Additionally, this role may be eligible for additional benefits such as a commuter stipend.

XML job scraping automation by YubHub

At Cloudflare, we are on a mission to help build a better Internet. Today the company runs one of the world's largest networks that powers millions of websites and other Internet properties for customers ranging from individual bloggers to SMBs to Fortune 500 companies.

We protect and accelerate any Internet application online without adding hardware, installing software, or changing a line of code. Internet properties powered by Cloudflare all have web traffic routed through its intelligent global network, which gets smarter with every request. As a result, they see significant improvement in performance and a decrease in spam and other attacks.

Key Responsibilities

Public Sector & Compliance Governance

• Serve as the Subject Matter Expert (SME) on NIST 800-53 control families and FedRAMP requirements.
• Manage Cloudflare's continuous monitoring program, inclusive of annual assessments and significant change requests.
• Collect, validate, and organize FedRAMP evidence and artifacts to present to auditors, FedRAMP customers, and the FedRAMP PMO.
• Help guide our overall security policy and governance architecture to ensure alignment with evolving government regulations.

Audit Lifecycle Management

• Orchestrate end-to-end audit activities for standards such as PCI, SOC2, ISO, NIST, and FedRAMP.
• Coordinate with auditors to manage data center access, compliance certificate collection, and evidence defense.
• Work cross-functionally with Engineering, Legal, Product, and Operational teams to maintain management and technical controls.
• Support compliance and regulatory projects, including implementation of new legislation / regulation.

Identity & Access Management (IAM) Operations

• Execute monthly Periodic Access Reviews (PARs): Compare portal user lists against ACLs to ensure least-privilege access is maintained across all data centers.
• Manage the lifecycle of portal access: Auditing access, provisioning/deprovisioning users, and maintaining accurate documentation.
• Oversee physical access requests to data centers and ensure strict adherence to security policies.
• Drive the resolution of daily DCSC Jira tickets for portal access, physical access, audits, and site decommissioning.
• Automate and streamline access review processes where possible, utilizing standard communication templates to site managers.

Partner Relations & Reporting

• Own, influence, and orchestrate relationships within the partner Offering teams that can help drive Cloudflare offerings and strategic positioning.
• Monitor and implement changes to individual accountability regime requirements (such as UK, Ireland, Singapore and Australia).
• Maintain centralized documentation, databases, dashboards, and reporting mechanisms to track compliance health.

Requirements

• 3-6 years working in Security Compliance, Information Security, or Risk Management.
• Deep familiarity with all NIST 800-53 control families and FedRAMP requirements.
• Ability to work closely with auditors and articulate technical concepts.
• Experience in auditing of network, operating system, and application security.
• Proven experience managing an audit throughout the full audit lifecycle (from readiness to final report).
• Familiarity with additional security standards and frameworks such as ISO 27000, SOC 2, PCI DSS, ISMAP and IRAP.
• Ability to work cross-functionally with internal stakeholders and strong communications skills.
• High tolerance for ambiguity and ability to work efficiently and independently in a fast-paced, high-volume environment.
• Some travel may be required to engage with regulators and auditors.
• Certifications: CISSP, CIPP, CIPM, CIPT, CISA, or CRISC.
• A relevant professional experience working with technology partners, alliances, or third-party vendors, ideally in the following disciplines: Data center Security Compliance, Access Management, audit administration at a leading high-tech company; offering management.
• Technical skills including the ability to understand (1) product roadmaps; (2) market trends and factors; and (3) complex partner requirements.
• Strong technical proficiency with spreadsheet software (Excel/Google Sheets) including pivot tables and VLOOKUPs for data reconciliation.
• Organized & Disciplined, with a strong focus on driving outcomes.

Preferred

• Prior experience with Data Centre Security Compliance disciplines and audit programs and past history working at a hyperscaler or high-growth tech company.
• Superb organizational skills and demonstrated history managing complex processes including audit cycles, Facts gathering and analytical skills.

XML job scraping automation by YubHub

Accelerate your career by joining Okta, the World’s Identity Provider, as a member of our Cybersecurity & Privacy Legal team. We free everyone to safely use any technology , anywhere, on any device or app. Our Workforce and Customer Identity Clouds enable secure yet flexible access, authentication and automation that transforms how people move through the digital world, putting Identity at the heart of business security and growth.

As Corporate Counsel – Privacy Commercial, you will lead a small privacy commercial team responsible for advising and supporting commercial legal and sales organisations on privacy and data protection, primarily drafting and negotiating data processing addenda, information security exhibits and related commercial documents with some of the biggest names across every industry that trust Okta to help their organisations work faster, boost revenue and stay secure.

You will work on cutting-edge projects in a cloud-first, SaaS environment where you can apply your experience providing strong legal support to help Okta deliver world-class products to our thousands of global customers.

Responsibilities: Advise, draft and negotiate privacy and data protection terms associated with outbound cloud service Master Subscription Agreements, Data Processing Addenda, Information Security Exhibits and other documentation related to sales transactions, while partnering closely with Okta’s Commercial Legal team. Provide day-to-day legal support surrounding privacy and data protection-related contract requests and respond promptly and effectively to legal questions from internal clients with pragmatic and business-oriented guidance. Support the procurement team in drafting and negotiating privacy and data protection-related terms associated with vendor agreements. Support the investigation of potential privacy and security incidents, including analysing relevant legal and regulatory responsibilities, and providing guidance to internal clients on mitigation, remediation, and resolution efforts. Develop, implement and maintain standards, processes, runbooks and guidance surrounding privacy and data protection-related issues for Go-to-Market transactions, and partnering closely with members of the Legal, Security, Compliance and Engineering teams, among other key stakeholders. Build critical relationships in order to effectively provide practical and strategic advice to assist the business in meeting its objectives, while ensuring privacy and information security compliance. Advise on recommended courses of action and legal risk, with the ability to judge when to escalate identified issues as appropriate. Assist in the maintenance and review of various privacy and security programs and processes, including updates to privacy and security policies, plans, procedures, standards, certifications and customer-facing documentation. Ensure compliance with all applicable global privacy and data protection laws, such as the General Data Protection Regulation, United States’ federal and state regulations and other global legal frameworks by monitoring and staying up to speed and a thought leader on global privacy and data protection laws and frameworks. Maintain an understanding of technical controls and assist in the creation of audit and monitoring frameworks to support stable, controlled operations. Review privacy and data protection-related marketing and other external communications content for accuracy and completeness. Support the management of outside counsel and consultants and contribute to other interesting legal projects, as needed.

Requirements: 4+ years of relevant law firm and/or in-house experience, including at least 2 years working primarily on privacy and data protection-related transactional matters, preferably at a SaaS technology company. Familiarity and comfort with the culture of a fast-paced enterprise software company and knowledge of SaaS products. Experience working with highly-regulated customers, especially those in the financial services industry, preferred. Excellent written and verbal communication, presentation, drafting and negotiation skills. Sound and practical legal and business judgment, as well as the ability to think strategically and develop strong working relationships with key internal clients. Knowledge in global privacy, data protection and security frameworks, including GDPR, CCPA, CPRA, HIPAA, NIST, ISO, FedRAMP and PCI-DSS. Ability to maintain strong working relationships with a variety of internal clients and business partners from a variety of functions. A self-motivated individual with grit who takes initiative and is comfortable rolling up their sleeves. Team-oriented with a sense of humour and high emotional intelligence. Ability to organise, prioritise and manage deadlines. Strong academic background and J.D. from highly-regarded school. Certified Information Privacy Professional (Europe, U.S., Canada and/or Asia) or Certified Information Privacy Manager is a plus.

Benefits: The annual base salary range for this position for candidates located in Ireland is between €115,000-€158,000 EUR. Okta offers equity (where applicable), bonus, and comprehensive healthcare coverage and financial benefits including paid time off and parental leave in accordance with our applicable plans and policies. To learn more about our Total Rewards program, please visit: https://rewards.okta.com/irl.

The Okta Experience: Supporting Your Well-being Driving Social Impact Developing Talent and Fostering Connection + Community

We are intentional about connection. Our global community, spanning over 20 offices worldwide, is united by a drive to innovate. Your journey begins with an immersive, in-person onboarding experience designed to accelerate your impact and connect you to our mission and team from day one. Okta is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, colour, religion, sex, sexual orientation, gender identity, national origin, ancestry, marital status, age, physical or mental disability, or status as a protected veteran. We also consider for employment qualified applicants with arrest and convictions records, consistent with applicable laws. If reasonable accommodation is needed to complete any part of the job application, interview process, or onboarding please use this Form to request an accommodation. Notice for New York City Applicants & Employees: Okta may use Automated Employment Decision Tools (AEDT), as defined by New York City Local Law 144, that use artificial intelligence, machine learning, or other automated processes to assist in our recruitment and hiring process. In accordance with NYC Local Law 144, if you are an applicant or employee residing in New York City, please click here to view our full NYC AEDT Notice. Okta is committed to complying with applicable data privacy and security laws and regulations. For more information, please see our Personnel and Job Candidate Privacy Notice at https://www.okta.com/legal/personnel-policy.

XML job scraping automation by YubHub

XML job scraping automation by YubHub

You’ll play a critical role on a fast-growing team with the opportunity to make a significant impact in a short period of time. You will be responsible for product messaging, positioning, sales and partner enablement, new product launches, revenue planning, and collaboration with the demand generation team.

You will be the “voice to our customers” in the way we present our products and solutions to the world. Our ideal candidate will be creative, analytical, and extremely well organized, with a high-level of attention to detail.

Responsibilities:

• Be the voice to our customers and assist with the marketing of the AI and Endpoint Management capabilities in the Tanium AEM Platform.

• Support the product & solutions go-to-market plan that aligns with the revenue goals and develop marketing assets and overall execution plan in support of major launches.

• Analyze the market, buyers, trends, industry-specific problems, and competitors to create strategic positioning that differentiates Tanium in the Autonomous Endpoint Management market.

• Support the development of solutions-based sales plays.

• Identify target personas, understand their key business problems, and pain points, and articulate Tanium’s value proposition to drive desired outcomes.

• Work closely with product management, sales leadership, enablement, customer success, and marketing teams across all activities.

• Leverage strong content creation background to develop content, including sales tools, whitepapers, custom one-sheets, event collateral, and thought-leadership content.

• Collaborate with demand generation teams to execute targeted campaigns that drive pipeline.

• Partner with sales, product etc. to facilitate feedback and drive continuous improvement of the product positioning, sales enablement tools etc.

• Conduct market research, including buyer interviews to inform marketing content and create actionable insights.

• Present to customers, partners, and sales teams.

Requirements:

• 7+ years minimum experience in product marketing, solutions marketing, or outbound product management required.

• Experience supporting go-to-market plans including messaging, content, and sales enablement.

• Basic knowledge of endpoint management and security.

• A good knowledge of generative and agentic AI and how it is used to transform business processes.

• Familiarity with ITSM, SIEM, SOAR, EDR solutions a plus.

• Experience understanding technology at a deep level and ability translate to business needs concisely is required.

• Experience developing presentations to customers, sales teams, and partners preferred.

• Solid experience in positioning work and writing marketing content for complex products and/or market dynamics.

Preferred Skills:

• Strong presentation skills are required. Must be comfortable speaking in front of various audience levels.

• You are a team player, knowing how to work well cross-functionally to rally teams around team strategy and plans.

• You can balance both the art and science of marketing – having great creative intuition and an insatiable appetite for data and insights.

• Understanding of basic branding principles: brand identity, building equity, brand voice, etc. a plus.

• You possess excellent business judgment; ability to prioritize independently, overcome blockers, create clarity, and move forward even in ambiguous circumstances.

• A profound sense of ownership and accountability is required along with the ability to influence (and inspire) and sometimes skeptical audiences.

What you’ll get:

The annual base salary range for this full-time position is $95,000 to $290,000.

This range is an estimate for what Tanium will pay a new hire. The actual annual base salary offered may be adjusted based on a variety of factors, including but not limited to, location, education, skills, training, and experience.

In addition to an annual base salary, team members will receive equity awards and a generous benefits package consisting of medical, dental and vision plan, family planning benefits, health savings account, flexible spending account, transportation savings account, 401(k) retirement savings plan with company match, life, accident and disability coverage, business travel accident insurance, employee assistance programs, disability insurance, and other well-being benefits.

XML job scraping automation by YubHub

The ideal candidate will have a Bachelor's degree in Computer Science or a related field, or equivalent experience, with 5+ years of security compliance or audit-related experience, FedRAMP and/or DISA SRG auditing (3PAO) or implementation (CSP) experience, NIST 800-53 and RMF experience, a comprehensive understanding of security controls across all domains, a general understanding of key technical security controls in cloud environments (AWS, Azure, GCP), strong written and verbal communication skills, and experience working effectively across the spectrum of individual contributors and senior leadership within an organisation.

XML job scraping automation by YubHub

You will own the renewal process from early outreach through booking, mitigate renewal risk before it becomes urgent, and identify opportunities for expansion, services, and training that deepen customer value. You will work closely with Account Executives, Customer Success Managers, and distributor and channel partners to deliver accurate, on-time renewals in a fast-moving remote environment.

This is a strong fit if you enjoy managing a high volume of work with precision, operating effectively in a remote environment, and helping customers navigate complex procurement and compliance requirements.

In your first year, you will build trust across your book of business, bring discipline to pipeline and forecasting, and create consistent renewal motions that support customer success, risk mitigation, and long-term adoption of GitLab in the US public sector.

Responsibilities:

• Own the full renewal cycle for a high-volume portfolio of US Public Sector accounts, from early engagement through quoting, negotiation, procurement, and booking.

• Manage renewal quotes, order forms, and amendments in alignment with GitLab policies and public sector procurement requirements, including FedRAMP considerations and relevant contracting vehicles.

• Maintain accurate pipeline and forecast data in Salesforce, including stages, close dates, amounts, and risk status.

• Assess adoption signals, usage trends, and customer context to identify renewal risk early. Build and track mitigation plans with account teams and customer success partners, with clear owners, timelines, and next steps.

• Coordinate customer check-ins focused on realized value, deployment health, and upcoming renewal milestones.

• Identify opportunities for expansion, cross-sell, professional services, training, and consolidation within your book of business.

• Work cross-functionally with Account Executives, Customer Success Managers, Solution Architects, Professional Services, distributors, and channel partners to move renewals and growth opportunities forward.

Requirements:

• Experience owning renewals, account management, or customer success motions for complex SaaS accounts in a customer-facing B2B environment.

• Experience working through a distributor or channel partner ecosystem, with the ability to manage the commercial and relationship complexity of partner-led transactions.

• Familiarity with the US Public Sector, including Federal, State, Local, or Education buying processes, contracting vehicles, and compliance-related requirements.

• Excellent organizational skills with the ability to manage many concurrent opportunities, stakeholders, and deadlines while maintaining accuracy.

• Proficiency using Salesforce or a similar CRM platform for pipeline management, forecasting, and activity tracking.

• Working knowledge of contract renewal processes and tools such as CPQ tools, subscription management systems, or billing platforms.

• Clear written and verbal communication skills for customers, partners, and internal stakeholders, including executive audiences.

• A self-directed and team-oriented approach, with the ability to work effectively in a fully remote, asynchronous environment.

About the team:

The US Public Sector team enables government and education organizations as they modernize how they build and deliver software. We work with customers navigating complex procurement environments while helping them adopt GitLab as the one DevSecOps platform , improving collaboration, reducing manual processes, and delivering secure software faster.

We partner closely across sales, customer success, services, and the channel ecosystem, operating asynchronously in a remote environment to support public sector missions with consistency and transparency.

A key focus is helping agencies and institutions balance security, compliance, and operational efficiency as they scale digital transformation with GitLab.

XML job scraping automation by YubHub

As a Senior Compliance Engineer at Anduril Industries, you will be responsible for driving automation, compliance, and security engineering principles into the design, integration, and operation of Anduril's internal systems. This is a technically hands-on role that requires a strong DevSecOps background with deep expertise in cloud infrastructure security, embedded systems security, and federal compliance frameworks.

Key Responsibilities

• Design, develop, and maintain Infrastructure as Code (IaC) and Policy as Code (PaC) that enforce compliance with NIST SP 800-171 and 800-53, CMMC, and other applicable frameworks, enabling developers to deploy CMMC-certified applications using pre-packaged, compliant infrastructure templates.
• Architect, build, and deploy robust, scalable security controls across Anduril's corporate, development, and production cloud environments (AWS, Azure, GCP) and on-premise environments.
• Develop and automate IaC pipelines for managing and scaling cloud deployments securely and efficiently, including automated pipelines for deploying infrastructure, applications, and updates.
• Build automation for procedural compliance controls, generating compliance and audit artifacts at scale without manual intervention.
• Develop security models that integrate Continuous Monitoring (ConMon), DISA STIG scanning, and compliance reporting into a unified, automated workflow.

Compliance Engineering & Framework Implementation

• Analyze, interpret, and operationalize federal and industry cybersecurity regulations, including NIST SP 800-171 and 800-53, CMMC, FedRAMP, and SOC 2, translating regulatory language into actionable engineering guidance and enforceable technical controls.
• Evaluate system architectures and configurations to ensure alignment with required security controls for moderate-impact information systems.
• Interface directly with infrastructure teams to verify and enforce compliance across existing on-premise and cloud stacks, identifying gaps and driving remediation.

Cross-Functional Collaboration & Enablement

• Partner with engineers, the DevSecOps Team, and the Automation Team to implement and verify security controls in both corporate and product software environments.
• Act as a force multiplier by embedding security best practices into the workflows of infrastructure, application, and product teams, particularly for environments holding mission-critical data.

Strategic & Advisory

• Develop strategies and implementation plans for compliance-related matters, advising management on risk posture, regulatory changes, and investment priorities.
• Institute best-practice procedures for compliance and risk mitigation across the organization.

Required Qualifications

• 3+ years of professional experience in Cloud Security, DevSecOps, Site Reliability Engineering (SRE), or a related security engineering role.
• Background in one or more of the following disciplines: Systems Security Engineering, Cybersecurity, Systems Engineering, Software Engineering, Computer Engineering, or Computer Science.
• Proven experience building and securing complex cloud environments at scale.
• 3+ years of hands-on experience working with compliance frameworks such as CMMC, NIST SP 800-171 and/or 800-53, and FedRAMP.

XML job scraping automation by YubHub

You'll perform penetration testing, conduct threat modeling, and provide guidance to engineering teams on secure design and best practices. This role also involves developing security tooling, researching emerging threats, and contributing to the continuous improvement of CoreWeave's overall security posture.

Some of what you'll work on:

• Perform penetration testing as well as purple and red team exercises.
• Conduct threat modeling, code reviews, and design reviews for development teams.
• Research new attack techniques and develop strategies to counter them.
• Develop and enforce security best practices and standards, maintaining internal compliance.
• Provide solutions to complex security issues, manage multiple tasks, and prioritize effectively in a fast-paced environment.
• Present technical security information to both technical and non-technical audiences.
• Maintain technical documentation, reports, and security tooling with attention to detail.
• Participate in other security-related initiatives as assigned.

Who You Are:

• 5+ years of experience in offensive information security roles.
• Proficiency in at least one programming or scripting language (e.g., Go, Python, C/C++) for automation, code reviews, and tooling.
• Hands-on penetration testing experience and familiarity with offensive security tools.
• Strong technical knowledge of Linux operating systems and containerized environments.
• Experience securing Kubernetes and understanding related security practices.
• Able to navigate ambiguity, identify root causes, and solve complex security problems.
• Excellent written and verbal communication skills with strong technical documentation abilities.
• Capable of working independently while managing multiple priorities in a fast-paced environment.
• Strong desire to continuously learn and adopt new technologies and security techniques.

Preferred:

• Experience with firmware reverse engineering, analyzing binaries, bootloaders, and embedded systems for vulnerabilities.
• Relevant certifications such as Sec+, Net+, OSCP, or equivalent.
• Experience with EDR tuning, detections-as-code, or threat hunting as part of a Blue Team.
• Deep understanding of business-wide security best practices and implementation strategies.

Wondering if you're a good fit?

We believe in investing in our people, and value candidates who can bring their own diversified experiences to our teams – even if you aren't a 100% skill or experience match.

Here are a few qualities we've found compatible with our team.

If some of this describes you, we'd love to talk.

• You love hunting vulnerabilities and proactively improving security.
• You're curious about evolving attack vectors and defense strategies.
• You're an expert in offensive security techniques and tooling, with a passion for safeguarding systems.

Why CoreWeave?

At CoreWeave, we work hard, have fun, and move fast!

We're in an exciting stage of hyper-growth that you will not want to miss out on.

We're not afraid of a little chaos, and we're constantly learning.

Our team cares deeply about how we build our product and how we work together, which is represented through our core values:

• Be Curious at Your Core
• Act Like an Owner
• Empower Employees
• Deliver Best-in-Class Client Experiences
• Achieve More Together

We support and encourage an entrepreneurial outlook and independent thinking.

We foster an environment that encourages collaboration and enables the development of innovative solutions to complex problems.

As we get set for takeoff, the organization's growth opportunities are constantly expanding.

You will be surrounded by some of the best talent in the industry, who will want to learn from you, too.

Come join us!

The base salary range for this role is $165,000 to $242,000.

The starting salary will be determined based on job-related knowledge, skills, experience, and market location.

We strive for both market alignment and internal equity when determining compensation.

In addition to base salary, our total rewards package includes a discretionary bonus, equity awards, and a comprehensive benefits program (all based on eligibility).

What We Offer

The range we've posted represents the typical compensation range for this role.

To determine actual compensation, we review the market rate for each candidate which can include a variety of factors.

These include qualifications, experience, interview performance, and location.

In addition to a competitive salary, we offer a variety of benefits to support your needs, including:

• Medical, dental, and vision insurance
• 100% paid for by CoreWeave
• Company-paid Life Insurance
• Voluntary supplemental life insurance
• Short and long-term disability insurance
• Flexible Spending Account
• Health Savings Account
• Tuition Reimbursement
• Ability to Participate in Employee Stock Purchase Program (ESPP)
• Mental Wellness Benefits through Spring Health
• Family-Forming support provided by Carrot
• Paid Parental Leave
• Flexible, full-service childcare support with Kinside
• 401(k) with a generous employer match
• Flexible PTO
• Catered lunch each day in our office and data center locations
• A casual work environment
• A work culture focused on innovative disruption

Our Workplace

While we prioritize a hybrid work environment, remote work may be considered for candidates located more than 30 miles from an office, based on role requirements for specialized skill sets.

New hires will be invited to attend onboarding at one of our hubs within their first month.

Teams also gather quarterly to support collaboration.

California Consumer Privacy Act - California applicants only

CoreWeave is an equal opportunity employer, committed to fostering an inclusive and supportive workplace.

All qualified applicants and candidates will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, veteran status, or genetic information.

As part of this commitment and consistent with the Americans with Disabilities Act (ADA), CoreWeave will ensure that qualified applicants and candidates with disabilities are provided reasonable accommodations for the hiring process, unless such accommodation would cause an undue hardship.

If reasonable accommodation is needed, please contact: careers@coreweave.com.

Export Control Compliance

This position requires access to export controlled information.

To conform to U.S. Government export regulations applicable to that information, applicant must either be (A) a U.S. person, defined as a (i) U.S. citizen or national, (ii) U.S. lawful permanent resident (green card holder), (iii) refugee under 8 U.S.C. § 1157, or (iv) asylee under 8 U.S.C. § 1158, (B) eligible to access the information under an appropriate export license, or (C) otherwise exempt from the regulations.

Applicant must also comply with all applicable laws and regulations related to the handling and transfer of export-controlled information.

By applying for this position, applicant acknowledges that they have read, understand, and will comply with these requirements.

Failure to comply with these requirements may result in termination of employment, revocation of any security clearances, or other disciplinary action.

Applicant must also agree to undergo a background investigation and obtain any necessary security clearances prior to commencing employment.

Please note that this position is subject to U.S. Government export regulations and may require applicant to sign a non-disclosure agreement (NDA) prior to commencing employment.

Applicant must also agree to comply with all applicable laws and regulations related to the handling and transfer of export-controlled information.

By applying for this position, applicant acknowledges that they have read, understand, and will comply with these requirements.

Failure to comply with these requirements may result in termination of employment, revocation of any security clearances, or other disciplinary action.

Applicant must also agree to undergo a background investigation and obtain any necessary security clearances prior to commencing employment.

Please note that this position is subject to U.S. Government export regulations and may require applicant to sign a non-disclosure agreement (NDA) prior to commencing employment.

XML job scraping automation by YubHub

This work requires a relentless drive to solve complex challenges with real-world stakes. We are looking for builders and owners who operate with speed and urgency and execute with excellence. This is an opportunity to do career-defining work. We're all in on this mission. If you are too, let's talk.

Join Okta’s Defensive Cyber Engineering team as a Staff Engineer responsible for safeguarding Okta’s environments. You’ll work closely with the Security, Business Technology Engineering and Product teams to implement and manage security solutions and ensure that core infrastructure applications are protecting our workforce, endpoints, and corporate data.

A strong desire to make tools and people work together to solve complex security problems is central to this role. This approach mandates an engineering-first approach: maximising the utility of existing security tools before strategically building or buying new solutions to address any remaining security gaps.

To execute this vision, you will combine your enterprise security expertise with your hands-on engineering skills, leveraging automation, policy-as-code, and cloud-native technologies to deliver scalable, resilient, and secure solutions. Your work will ultimately set standards for security best practices across the organisation and influence the architecture of business-critical systems.

What you bring:

• Hands on experience with enterprise security tools such as Okta, Crowdstrike and Palo Alto suite covering EDR (Endpoint Detection and Response), CASB (Cloud Access Security Broker), DLP (Data Loss Prevention), MDM (Mobile Device Management), SASE (Secure Access Service Edge), and SSPM (SaaS Secure Posture Management) capabilities.

• Strong coding and scripting skills are required for building automation and custom tooling. Python experience is preferred, but proficiency in other languages (e.g., Bash, PowerShell, Go) is a plus.

• Proven track record automating security controls and workflows using a cloud-first approach

• Experience with Terraform and other infrastructure-as-code tools to orchestrate security infrastructure

• Familiarity with CI/CD pipelines for security automation and drift management

• Strong communication skills across technical staff, support teams, executive leadership, and external vendors.

What you’ll be doing:

• Serve as a security subject matter expert (SME) for solution engineering, architecture reviews, security assessment, and vulnerability mitigation

• Lead technical efforts evaluating, designing, and implementing new enterprise security systems and feature enhancements

• Build, maintain, and enhance custom automation and cloud infrastructure using Terraform or similar tools to support team workflows and the enforcement of security controls

• Develop integrations with APIs, cloud platforms (AWS, GCP, Azure), and security infrastructure to improve detection, response, and remediation

• Collaborate with cross-functional teams to tackle global technology and security challenges

• Write and maintain scripts and automation to streamline security operations, with an emphasis on Python-based solutions

• Establish monitoring and alerting for security posture, misconfigurations, and threats across endpoints, SaaS, and cloud workloads

• Proactively identify and remediate security gaps; stay updated on emerging threats, solutions, and tooling across the industry

And extra credit if you have experience in any of the following!

• Working with advanced identity management technologies (MFA, SAML, OAuth, OIDC, WebAuthn)

• Deep understanding of Okta's ecosystem, including advanced configuration and integrations

• Experience with continuous compliance solutions (e.g., policy-as-code, automated evidence gathering)

What you can look forward to as an Full-Time Okta employee!

World-class benefits, flexibility, and growth opportunities

The chance to shape the security posture of a global leader in identity

Opportunities to make a social Impact through technology and innovation

Ready to join Okta and make security the foundation of our innovation? Apply today!

XML job scraping automation by YubHub

You will report to the Senior Manager in the OFCTO organization.

Key responsibilities include:

• Strategic Customer Engagement: Support strategic customer conversations aligning with technical and engineering leaders and stakeholders. Deliver on emerging trends, industry best practices, and identity-driven digital transformation. Assist in preparing executive-level messaging and participate in strategic discussions to align Okta's solutions with customer business outcomes.

• Technical Leadership: Provide strategic and technical guidance to Solutions Engineering teams across both the Okta and Auth0 identity platforms. Collaborate with the Global Office of Field CTO office team to deliver actionable insights from the field, validate customer needs, and identify recurring trends for the Okta Product & Engineering teams.

• Field Enablement and Collaboration: Contribute to frameworks, tools, and content to support Solutions Engineering teams in executing effectively. Partner with sales leadership to identify and address critical business opportunities and challenges. Drive cross-functional collaboration to ensure seamless execution of global initiatives.

• Market Influence: Represent Okta as a thought leader in the identity and security space. Influence industry standards and participate in relevant technical advisory boards.

• Innovation and Strategy: Partner closely with OFCTO teams as an advocate for customer-driven innovation, market trends, and GTM insights to provide input to influence product teams. Support, derive, and champion strategic initiatives that enhance Okta's differentiation and business impact.

Position Requirements:

• Identity & Directory Services Mastery: Deep Infrastructure Knowledge: Expert-level understanding of Active Directory (AD) and Azure AD (Entra ID) or similar, including Group Policy Objects (GPOs), Kerberos, and OIDC/SAML protocols.

• Multi-IdP Ecosystems: Proficiency in managing and securing diverse Identity Providers (IdPs) like Okta, Ping Identity, and Google Workspace.

• Hybrid Identity: Experience managing the complexities of identity synchronization between on-premises environments and the cloud.

• Device Identity & Access Management Mastery: Passwordless Expertise: Deep, hands-on knowledge of FIDO2/WebAuthn, Passkeys, and implementing passwordless authentication strategies using solutions like Okta FastPass.

• Endpoint & Device Context: Strong understanding of Desktop MFA, device registration, and leveraging device posture signals from MDM/UEM (e.g., Jamf, Intune, Workspace ONE) and EDR (e.g., CrowdStrike) platforms to enforce risk-based access policies.

• PKI & Certificate Management: Familiarity with certificate-based authentication and its role in establishing device trust.

• Identity Threat Detection & Response (ITDR): Threat Landscape Knowledge: A thorough understanding of modern identity attack vectors, including phishing, token theft, MFA bypass techniques, and lateral movement.

• Behavioral Analysis: Experience with User and Entity Behavior Analytics (UEBA) and the ability to interpret threat signals to detect and respond to suspicious activity.

• Security Ecosystem Integration: Proficiency in designing solutions that integrate identity platforms with SIEM (e.g., Splunk, Sentinel) and SOAR tools for automated threat response.

• Strong communication and presentation skills, with experience contributing to technical events.

Travel expectation: up to 40% for customer meetings, industry events, and internal off-sites.

This is a remote position.

XML job scraping automation by YubHub

Design and develop cybersecurity tools for real-time embedded, embedded Linux, and Android systems. Implement an endpoint detection and response agent for use on Anduril products. Develop thorough testing and qualification procedures for security-critical components. Collaborate with cross-functional teams to identify specific security needs and implement solutions. Conduct code reviews and ensure adherence to security best practices. Stay updated on the latest security threats and technologies.

Required qualifications:

• 2+ years of software development experience in some combination of Golang, Rust, or C/C++.
• Experience with Linux observability and eBPF.
• Strong understanding of Linux security internals.
• Experience debugging and optimising performance of Linux software.
• Experience with CI/CD and test automation, including for mobile and embedded devices.
• Solid understanding of cybersecurity principles and practices.
• Ability to obtain and hold a U.S. Secret security clearance.

Preferred qualifications:

• Knowledge of security frameworks and compliance standards.
• Experience in mobile development, specifically on Android platforms.
• Experience implementing EDR tooling.
• Experience with SOC operations, forensics, and incident response practices.
• Strong problem-solving and analytical skills.
• Excellent communication and teamwork abilities.

US Salary Range $126,000-$191,000 USD

XML job scraping automation by YubHub

The company's family of systems is powered by Lattice OS, an AI-powered operating system that turns thousands of data streams into a real-time, 3D command and control centre.

As the world enters an era of strategic competition, Anduril is committed to bringing cutting-edge autonomy, AI, computer vision, sensor fusion and networking technology to the military in months, not years.

We are seeking a mission-driven Cloud Infrastructure Engineer to take a leading role in designing and implementing world-class defensive controls. This is a high-impact role with the autonomy to shape security architecture and protect the technology that is changing the future of defence.

Key Responsibilities:

• Design and Own Security Architecture: Architect, build and deploy robust, scalable security controls for our corporate, development and production cloud environments (AWS, Azure, GCP).

• Automate Everything: Develop and automate infrastructure-as-code (IaC) to manage and scale our cloud deployments securely and efficiently.

• Proactively Defend: Continuously monitor, identify and remediate security weaknesses and configuration drift across our entire cloud footprint.

• Be a Force Multiplier: Partner with infrastructure, application and product teams to embed security best practices into their workflows and secure environments holding mission-critical data.

• Enable Scale and Reliability: Engineer systems and processes that ensure our platforms are highly available, resilient and prepared for rapid growth.

• Serve as a Cloud Security Expert: Act as the go-to subject matter expert for teams across Anduril, providing guidance, mentorship and paved-road solutions for building securely in the cloud.

Requirements:

• Proven experience building and securing complex cloud environments, typically gained through 3+ years in a Cloud Security, DevOps or SRE role.

• Deep proficiency in at least one major cloud provider (AWS, Azure or GCP).

• Strong hands-on experience with Infrastructure as Code (e.g., Terraform, CloudFormation, Bicep).

• Solid programming/scripting ability in one or more languages (e.g., Python, Go, Rust).

• Firm understanding of public cloud networking principles (e.g., VPCs, subnets, routing, security groups).

• Must be a U.S. Person and eligible to obtain and maintain a U.S. Top Secret security clearance.

Preferred Qualifications:

• Experience hardening and monitoring Kubernetes clusters (EKS, GKE, AKS).

• Experience with cloud security posture management (CSPM) or threat detection tooling.

• Familiarity with CI/CD pipelines and securing the software supply chain.

• Knowledge of compliance frameworks such as FedRAMP, MRL, SOC 2 or CMMC.

• On-premises network engineering experience.

XML job scraping automation by YubHub

Your day-to-day will blend hands-on engineering (writing code, building integrations, tuning controls) with architecture and program ownership (setting standards, defining patterns, and driving adoption across teams). You will be responsible for turning high-level objectives,like “implement zero trust for workforce access” or “deploy phishing-resistant MFA at scale”,into concrete designs, automation, and measurable risk reduction.

In this role, you will:

• Engineer modern identity and access controls
• Design, implement, and operate workforce identity solutions (e.g., Okta/Entra and other IdPs) including SSO, MFA, conditional access, and lifecycle automation via SCIM.
• Develop and roll out phishing-resistant MFA for high-value accounts and critical access paths (e.g., FIDO2/WebAuthn, hardware keys, device-bound authenticators).
• Define and maintain RBAC/IAM patterns for enterprise applications (role models, groups, entitlements, JIT access, and approvals).

• Implement zero trust for workforce and enterprise access
• Design and deploy controls that combine user identity, device posture, network context, and application sensitivity to enforce least-privilege access.
• Partner with Network and Infrastructure teams to integrate mTLS, service identity, and policy-based access into internal services and admin interfaces.
• Help transition from legacy perimeter models to zero trust network access (ZTNA) patterns for employees, contractors, and third parties.

• Secure SaaS and collaboration platforms
• Evaluate, onboard, and harden SaaS applications (Google Workspace, Microsoft 365, Slack, HRIS, ticketing, and other business apps) to align with enterprise security policies.
• Implement and tune controls such as SCIM provisioning, data access policies, DLP, sharing controls, and audit logging across the SaaS estate.
• Partner with business and IT owners to ensure new SaaS applications meet baseline security standards before adoption.

• Harden endpoints and the extended workforce
• Collaborate with Endpoint/IT teams to define and enforce baseline configurations for laptops, workstations, and other managed devices via MDM and EDR.
• Design secure patterns for contractor and vendor access, including device requirements, identity separation, and time-bound access.
• Support investigations and incident response related to identity, endpoint, and SaaS domains.

• Automate and instrument everything you can
• Build automation and self-service experiences for access requests, approvals, access reviews, and break-glass workflows.
• Develop integrations between IdPs, HRIS, ticketing, and other systems to minimize manual toil and reduce identity-related error rates.
• Define and instrument metrics for enterprise security (e.g., MFA coverage, zero trust policy enforcement, joiner/mover/leaver SLA adherence, SaaS posture).

• Partner on detection, response, and governance
• Work with Security Operations and SIEM teams to ensure robust visibility into identity, device, and SaaS activity, and to build high-signal detections.
• Contribute to policies, standards, and reference architectures that encode enterprise security expectations.
• Author clear documentation and runbooks that make it easy for teams to consume and operate the controls you build.

XML job scraping automation by YubHub

In this role, you will have a deep specialization in Identity and Access Management (IAM) and FedRAMP High/Moderate environments. You will have hands-on experience supporting IAM solutions, including deep familiarity with protocols such as SAML, SSO, LDAP, and WS-Federation. You will have advanced knowledge of Active Directory, Entra ID (Azure AD), and Okta. You will be an expert in troubleshooting synchronization errors, managing complex group membership logic, and overseeing cross-platform identity lifecycle management. You will have experience supporting major SaaS applications, including Office 365, Google Workspace, Salesforce, and Workday. You will have proven ability to isolate and resolve network-layer impediments. You will be skilled in leveraging diagnostic utilities such as Wireshark, Fiddler, and DNS lookup tools to identify root causes. You will have excellent relationship management skills with the ability to remain calm, composed, and articulate during high-pressure customer situations. You will be a quick study with the ability to master new technologies rapidly in a fast-paced environment. You will have strong analytical and organizational skills; comfortable working both as a collaborative teammate and an independent contributor with minimal supervision. You will have a genuine passion for solving complex problems and advocating for customer success.

XML job scraping automation by YubHub

Design and develop cybersecurity tools for real-time embedded, embedded Linux, and Android systems. Implement an endpoint detection and response agent for use on Anduril products. Develop thorough testing and qualification procedures for security-critical components. Collaborate with cross-functional teams to identify specific security needs and implement solutions. Conduct code reviews and ensure adherence to security best practices. Stay updated on the latest security threats and technologies.

Required qualifications include 2+ years of software development experience in Golang, Rust, or C/C++, experience with Linux observability and eBPF, strong understanding of Linux security internals, and experience debugging and optimizing performance of Linux software.

Preferred qualifications include knowledge of security frameworks and compliance standards, experience in mobile development, specifically on Android platforms, experience implementing EDR tooling, and experience with SOC operations, forensics, and incident response practices.

US Salary Range $166,000-$253,000 USD

XML job scraping automation by YubHub

Design and develop cybersecurity tools for real-time embedded, embedded Linux, and Android systems. Implement an endpoint detection and response agent for use on Anduril products. Develop thorough testing and qualification procedures for security-critical components. Collaborate with cross-functional teams to identify specific security needs and implement solutions. Conduct code reviews and ensure adherence to security best practices. Stay updated on the latest security threats and technologies.

Required qualifications:

• 2+ years of software development experience in some combination of Golang, Rust, or C/C++.
• Experience with Linux observability and eBPF.
• Strong understanding of Linux security internals.
• Experience debugging and optimizing performance of Linux software.
• Experience with CI/CD and test automation, including for mobile and embedded devices.
• Solid understanding of cybersecurity principles and practices.
• Ability to obtain and hold a U.S. Secret security clearance.

Preferred qualifications:

• Knowledge of security frameworks and compliance standards.
• Experience in mobile development, specifically on Android platforms.
• Experience implementing EDR tooling.
• Experience with SOC operations, forensics, and incident response practices.
• Strong problem-solving and analytical skills.
• Excellent communication and teamwork abilities.

US Salary Range $166,000-$253,000 USD

XML job scraping automation by YubHub

Design and develop cybersecurity tools for real-time embedded, embedded Linux, and Android systems. Implement an endpoint detection and response agent for use on Anduril products. Develop thorough testing and qualification procedures for security-critical components. Collaborate with cross-functional teams to identify specific security needs and implement solutions. Conduct code reviews and ensure adherence to security best practices. Stay updated on the latest security threats and technologies.

Required qualifications include 2+ years of software development experience in some combination of Golang, Rust, or C/C++, experience with Linux observability and eBPF, strong understanding of Linux security internals, experience debugging and optimizing performance of Linux software, experience with CI/CD and test automation, including for mobile and embedded devices, solid understanding of cybersecurity principles and practices, and ability to obtain and hold a U.S. Secret security clearance validate required qualifications.

Preferred qualifications include knowledge of security frameworks and compliance standards, experience in mobile development, specifically on Android platforms, experience implementing EDR tooling, experience with SOC operations, forensics, and incident response practices, strong problem-solving and analytical skills, and excellent communication and teamwork abilities.

US Salary Range $113,000-$171,000 USD

XML job scraping automation by YubHub

About the role

We're seeking an exceptional engineer to join Anthropic's Detection Platform team to build and scale our next-generation security analytics infrastructure. In this role, you'll architect and implement data pipelines that process massive amounts of security telemetry, develop ML-powered detection systems, and create innovative solutions that leverage Claude to transform security operations.

Responsibilities:

• Build AI-powered platform responsible for all aspects of D&R capabilities from detection development to incident response
• Design and implement scalable data pipelines for ingesting and processing security telemetry across our rapidly growing infrastructure
• Architect solutions for storing and efficiently querying large volumes of security-relevant data
• Create rapid prototypes and proof-of-concepts for new security tooling and analytics capabilities
• Work closely with security and infrastructure teams to understand requirements and deliver solutions
• Mentor engineers and contribute to hiring and growth of the Security team
• Participate in on-call shifts

You may be a good fit if you:

• 7+ years of experience in software engineering with a focus on security, infrastructure and/or data pipelines
• Track record of building and maintaining internal developer tools or security platforms
• Strong understanding of data processing pipelines and experience working with large-scale logging systems

Strong candidates may also have experience with:

• Experience building security tooling from the ground up
• Background in implementing security monitoring solutions (SIEM, log aggregation, EDR)
• Background in detection engineering or security operations
• SOAR platform/automation development
• Data lake / Database architecture
• API design and internal platform creation
• Track record of applying ML/AI to security problems
• Experience scaling security operations in a high-growth environment

Logistics

• Minimum education: Bachelor’s degree or an equivalent combination of education, training, and/or experience
• Required field of study: A field relevant to the role as demonstrated through coursework, training, or professional experience
• Minimum years of experience: Years of experience required will correlate with the internal job level requirements for the position
• Location-based hybrid policy: Currently, we expect all staff to be in one of our offices at least 25% of the time. However, some roles may require more time in our offices.
• Visa sponsorship: We do sponsor visas! However, we aren't able to successfully sponsor visas for every role and every candidate. But if we make you an offer, we will make every reasonable effort to get you a visa, and we retain an immigration lawyer to help with this.

How we're different

We believe that the highest-impact AI research will be big science. At Anthropic we work as a single cohesive team on just a few large-scale research efforts. And we value impact , advancing our long-term goals of steerable, trustworthy AI , rather than work on smaller and more specific puzzles. We view AI research as an empirical science, which has as much in common with physics and biology as with traditional efforts in computer science. We're an extremely collaborative group, and we host frequent research discussions to ensure that we are pursuing the highest-impact work at any given time. As such, we greatly value communication skills.

Come work with us!

Anthropic is a public benefit corporation headquartered in San Francisco. We offer competitive compensation and benefits, optional equity donation matching, generous vacation and parental leave, flexible working hours, and a lovely office space in which to collaborate with colleagues.

XML job scraping automation by YubHub

We are looking for builders and owners who operate with speed and urgency and execute with excellence. This is an opportunity to do career-defining work. We're all in on this mission. If you are too, let's talk.

The Okta Security team’s mission is to strengthen Okta’s position as the leading Identity-as-a-Service solution by identifying and resolving risks to the employees, product, and most importantly, our customers. The Security Trust & Culture team works to enhance customer trust in Okta’s identity services . We serve as a strategic resource working closely with Okta’s go-to-market teams.

As a Staff level analyst of Customer Assurance, you will support prioritising and efficiently responding to questions about our security programme and other due diligence related requests. You will act as a critical bridge between our customers and our internal engineering teams, ensuring Okta’s security posture is communicated effectively.

Tasks will include training local Sales teams, managing complex escalations in the regional market, and driving technological changes to help Customer Assurance scale its efforts globally. This position requires a unique combination of skills including an ability to coordinate the analysis of technical issues, to communicate clearly about security-relevant topics with both internal and external customers, to collaborate with internal business units to ensure execution of time-sensitive projects, and to present to upper management or the broader organisation as required.

The ideal candidate will have experience with SaaS cloud security risk assessment and a solid understanding of the core principles of identity management. If you want to make a difference in the security programme of a global cloud provider, we want you on board.

Job Duties and Responsibilities:

Serve as the critical bridge between Okta’s customers and internal Engineering/Product Security teams. You must be able to unpack complex customer security concerns, hold in-depth technical discussions with internal engineering to align on solutions, and translate Okta’s security architecture back to the customer to resolve high-stakes inquiries.

Take end-to-end ownership of highly technical security questionnaires and due-diligence requests, Partner seamlessly with internal subject matter experts,including our specialised Federal/FedRAMP teams,to ensure accurate, timely, and high-quality responses for highly regulated customers.

Drive technological changes within Customer Assurance by identifying and implementing AI and automation strategies to streamline workflows, scale global efforts, and reduce response times.

Train and empower regional Go-To-Market and Sales teams on standard engagement protocols, ensuring they can leverage Customer Assurance resources smoothly to accelerate deals.

Collaborate with the Security Trust & Culture team and Regional CSOs to develop, publish, and maintain forward-facing security collateral, FAQs, and field communications.

Work within a global team, participating or leading global handoffs between American timezones and European or Asian, when required for large security or industry events.

Requirements:

Bachelor’s degree in Computer Science or Management Information Systems, or equivalent work experience in technology or information security fields

Minimum 3 years information security, project management, or related experience

A strong, fundamental understanding of core Security principles, architectures, and operations.

Understanding of IT and cloud methodologies, information security, privacy, identity management, risk assessments and IT regulation and compliance standards

Strong oral, written, and presentation skills

Strong written and verbal communication skills, with a proven ability to distill complex technical concepts into clear, concise responses for both technical customers and internal executive stakeholders.

Helpful Certifications / Skills:

Okta Certified Professional/Administrator

Certificate of Cloud Security Knowledge (CCSK) and/or Certificate of Cloud Auditing Knowledge (CCAK)

Certified Information Security Auditor (CISA)

Experience with generative AI tools or process automation platforms is a strong plus.

Familiarity with Federal or highly regulated compliance frameworks (e.g., FedRAMP, StateRAMP, NIST 800-53, or DoD IL4/IL5)

XML job scraping automation by YubHub

Key Responsibilities: Conduct red and purple team engagements simulating advanced threat actors across our cloud infrastructure, endpoints, and bare metal deployments. Penetration test specific, high-value deployments. Contribute to AI-assisted security testing tooling and workflows. Work cross-functionally with other security and engineering teams, particularly on AI-specific attack scenarios. Document and present findings to technical and executive audiences, translating attack narratives into actionable risk insights that inform security roadmaps.

Requirements: 5+ years of hands-on experience in red teaming and offensive security operations. Deep expertise in at least two of: macOS security, Linux Security, Cloud security (GCP/AWS/Azure), Kubernetes, CI/CD pipelines. Track record of discovering novel attack vectors and chaining vulnerabilities creatively. Experience conducting adversarial simulations against well-defended environments. Strong engineering skills (Python, Go, or similar). Ability to write clear findings that drive action, helping teams understand risk and prioritize fixes. Collaborative approach, working in close collaboration with the blue team.

Preferred Qualifications: Prior work at organizations with state actor threat models. Interest in AI safety and how security engineering contributes to responsible AI developments. Background testing AI/ML systems or agentic workflows. Familiarity with detection engineering and SIEM/EDR platforms from the defensive side. Experience with data center security or hardware-based attacks.

XML job scraping automation by YubHub

You will set the technical direction, write code and ship tooling alongside your team, and build the culture and processes that allow the team to scale.

Corporate Security at Anthropic encompasses everything that protects our people, endpoints, networks, SaaS ecosystem, and corporate data,the full surface area outside of production infrastructure.

The scope is broad and the team is deliberately small, which means you'll need deep technical skills across multiple domains, strong judgment about where to invest, and a bias toward automation and engineering-driven solutions over manual process.

You'll report into Security leadership and partner closely with IT, Infrastructure Security, Detection & Response, and GRC teams.

This role is high-visibility and high-autonomy: you'll be expected to define the roadmap, make architectural decisions, and represent Corporate Security across the company.

Responsibilities:

Technical Leadership & Hands-on Engineering

• Own the security architecture, tooling, and controls for Anthropic's corporate environment end-to-end, including endpoint fleets (macOS, Windows, ChromeOS), campus and office networks, SaaS applications, mobile devices

• Design, build, and ship security automation, integrations, and internal tooling,including leveraging Claude and LLMs to accelerate security workflows

• Define and enforce security baselines, hardening standards, and configuration policies across all corporate platforms

• Define what it means to operate safely in an environment where AI agents act more like humans than actual humans

• Evaluate, select, deploy, and operate corporate security tools (EDR/XDR, MDM, ZTNA, CASB/SSPM, email security, DLP, browser security, etc.)

• Drive vulnerability management for corporate assets, including patch orchestration, risk-based prioritization, and exception management

• Lead security reviews of new SaaS adoptions, corporate infrastructure changes, and IT projects

People Leadership & Team Building

• Manage, mentor, and grow a purposefully lean team of Security Engineers; set clear expectations, run effective 1:1s, and create an environment where engineers do the best work of their careers

• Hire and build the team as scope expands,own the hiring bar and pipeline for Corporate Security Engineering roles

• Balance your own IC contributions with the team’s needs; know when to go deep on a problem yourself and when to delegate and coach

• Foster a culture of operational excellence, blameless incident review, and continuous improvement

Strategy & Cross-Functional Partnership

• Define and own the Corporate Security roadmap, aligning investments to Anthropic’s risk profile and growth trajectory

• Partner with IT Operations to ensure security is embedded in endpoint provisioning, network design, and SaaS lifecycle management

• Collaborate with Detection & Response on telemetry coverage, detection engineering, and incident handling for corporate-sourced events

• Partner with Infrastructure and Security Engineering teams to ensure security standards are consistent across all of Anthropic

• Communicate security posture, risks, and investment needs to Security leadership and cross-functional stakeholders clearly and persuasively

Requirements

• 8+ years of Security Engineering experience in a corporate/enterprise security domain (endpoint security, network security, SaaS security, identity, or a combination)

• 2+ years of experience managing or tech-leading a team of engineers, with a demonstrated track record of developing talent and shipping results through others

• Are a strong engineer who still writes code regularly,you can prototype a tool, write a detection, build an integration, or debug a complex configuration issue

• Have deep experience with macOS fleet security (this is our primary platform) and solid working knowledge of Windows and ChromeOS security

• Have hands-on experience deploying and operating EDR/XDR, MDM, ZTNA/zero trust, and identity security solutions at scale

• Understand modern SaaS security challenges: shadow IT, OAuth token sprawl, data exfiltration paths, SaaS-to-SaaS integrations, and SSPM/CASB tooling

• Can work independently with high autonomy, manage ambiguity, and make sound risk-based prioritization decisions in a fast-paced environment

• Have excellent communication skills and can translate complex security topics into clear recommendations for technical and non-technical audiences

Strong Candidates May Have

• Securing corporate environments at high-growth AI, cloud, or developer-tools companies

• Maturing a Corporate Security function from early stage, including defining scope, selecting the initial toolset, and hiring the founding team

• Advanced macOS security (system extensions, endpoint security framework, MDM profile engineering, Declarative Device Management)

• Network security architecture for hybrid/multi-office environments, including SD-WAN, ZTNA, DNS security, and network segmentation

• Browser security and isolation technologies (e.g., Island, Talon/Palo Alto, Chrome Enterprise)

• Proficiency in Python, Go, or similar languages for building security tooling and automation

• Experience leveraging LLMs/AI to augment security operations, build investigative tooling, or automate policy enforcement

• Familiarity with IaC (Terraform), CI/CD pipelines, and DevSecOps practices as they apply to corporate infrastructure management

• Mobile security for iOS/Android in a BYOD and corporate-managed device environment

• Data Loss Prevention (DLP) program design and implementation across endpoints, email, SaaS, and cloud storage

Logistics

• Minimum education: Bachelor’s degree or an equivalent combination of education, training, and/or experience

• Required field of study: A field relevant to the role as demonstrated through coursework, training, or professional experience

• Minimum years of experience: Years of experience required will correlate with the internal job level requirements for the position

• Location-based hybrid policy: Currently, we expect all staff to be in one of our offices at least 25% of the time. However, some roles may require more time in our offices.

• Visa sponsorship: We do sponsor visas! However, we aren't able to successfully sponsor visas for every role and every candidate. But if we make you an offer, we will make every reasonable effort to get you a visa, and we retain an immigration lawyer to help with this.

XML job scraping automation by YubHub

The responsibilities listed below represent the core functions of this role:

• Strategic Audit Leadership: Lead end-to-end FedRAMP and DoD audits, serving as the primary point of contact for external 3PAOs and government agencies.
• Continuous Monitoring Strategy: Oversee and evolve the continuous monitoring (ConMon) program. Design sophisticated reporting mechanisms for vulnerability management and risk posture for executive leadership.
• Engineering Advisory: Act as a senior consultant to Engineering and Product teams, translating complex NIST 800-53 requirements into actionable technical specifications for cloud-native environments.
• Impact Assessment & Risk Management: Lead the assessment of high-impact changes to federal systems. Ensure that system evolutions maintain a rigorous security posture without sacrificing innovation.
• Cross-Functional Alignment: Drive synchronization between GRC, Security, Marketing, Sales, Engineering, and Product to ensure federal requirements are integrated into the broader corporate roadmap.
• Programmatic Gap Analysis: Proactively identify and lead initiatives to close gaps between current capabilities and future regulatory requirements (e.g., emerging NIST standards, new DoD mandates, or IL6 requirements).
• Evidence Automation & FedRAMP 20x Readiness: Drive the build-out and support of automated evidence collection and control validation. Lead the transition toward "FedRAMP 2.0" standards (including OSCAL integration), defining and monitoring Key Security Indicators (KSIs) to provide real-time compliance visibility.

Minimum Required Knowledge, Skills, and Abilities:

• Education: Bachelor’s degree in Computer Science, MIS, Cybersecurity, or a related technical field.
• Experience: 7+ years of experience in security compliance, with at least 4-5 years specifically focused on the FedRAMP/NIST 800-53 framework.
• Automation & Compliance Engineering: Demonstrated experience with automation tools or scripting (e.g., Python, Go, or SQL) for automated evidence collection. Familiarity with API-based control validation and OSCAL-based tooling (e.g., Trestle, LULA, or similar GRC automation frameworks).
• Technical Depth: Deep understanding of cloud-native infrastructure (IaaS, PaaS, SaaS) and how infrastructure components (networking, OS, databases) support a distributed cloud application.
• Framework Mastery: Expert-level knowledge of NIST SP 800-53, FedRAMP High/Moderate, and DoD SRG (IL4, IL5, and familiarity with IL6).
• Operational Knowledge: Proven experience with access management, CI/CD pipelines, disaster recovery, and encryption/key management in a cloud context.
• Analytical Leadership: Ability to analyze complex "edge-case" security scenarios and provide remediation paths that align with both business goals and regulatory requirements.
• Communication: Exceptional presentation skills with the ability to explain technical compliance risks to non-technical executive stakeholders.

Preferred Certifications & Skills:

• Advanced Certifications: CISSP (highly preferred), CISA, or CCSK.
• Cloud Expertise: AWS Certified Solutions Architect or Cloud Practitioner.
• Tooling: Expert-level proficiency with JIRA, ServiceNow, and Okta.
• Technical Background: Prior experience in a DevOps, Security Engineering, or Systems Administration role is a significant plus.

Additional requirements:

• This position requires the ability to access federal environments and/or have access to protected federal data. As a condition of employment for this position, the successful candidate must be able to submit documentation establishing U.S. Person status (e.g. a U.S. Citizen, National, Lawful Permanent Resident, Refugee, or Asylee. 22 CFR 120.15) upon hire.

XML job scraping automation by YubHub

In this role, you will have the opportunity to shape our security capabilities from the ground up alongside our world-class research and security teams. You will lead cybersecurity Incident Response efforts covering diverse domains from external attacks to insider threats involving all layers of Anthropic's technology stack.

Key responsibilities include:

• Developing and deploying novel tooling that may leverage Large Language Models to enhance detection, investigation, and response capabilities
• Creating and optimizing detections, playbooks, and workflows to quickly identify and respond to potential incidents
• Reviewing Incident Response metrics and procedures and driving continuous improvement
• Working cross-functionally with other security and engineering teams

Note: This position will require participation in an on-call rotation.

To be successful in this role, you will need:

• 3+ years of software engineering experience, with security experience a plus
• 5+ years of detection engineering, incident response, or threat hunting experience
• A solid understanding of cloud environments and operations
• Experience working with engineering teams in a SaaS environment
• Exceptional communication and collaboration skills
• An ability to lead projects with little guidance
• The ability to pick up new languages and technologies quickly
• Experience handling security incidents and investigating anomalies as part of a team
• Knowledge of EDR, SIEM, SOAR, or related security tools

Strong candidates may also have experience with:

• Performing security operations or investigations involving large-scale Kubernetes environments
• A high level of proficiency in Python and query languages such as SQL
• Analyzing attack behavior and prototyping high-quality detections
• Threat intelligence, malware analysis, infrastructure as code, detection engineering, or forensics
• Contributing to a high-growth startup environment

If you're interested in this role, please submit an application, even if you don't believe you meet every single qualification. We encourage diversity and inclusion in our hiring process.

XML job scraping automation by YubHub

Identity is the key to unlocking the potential of AI. Okta secures AI by building the trusted, neutral infrastructure that enables organisations to safely embrace this new era.

This work requires a relentless drive to solve complex challenges with real-world stakes. We are looking for builders and owners who operate with speed and urgency and execute with excellence. This is an opportunity to do career-defining work. We're all in on this mission. If you are too, let's talk.

As a Senior Corporate Counsel – Cybersecurity, you will lead the cybersecurity legal team, helping build a scalable global cybersecurity practice. You will apply your experience when providing legal guidance on cybersecurity and privacy issues and drafting and negotiating information security exhibits, data processing addenda and related commercial documents with some of the biggest names across every industry that trust Okta to help their organisations work faster, boost revenue, and stay secure.

Responsibilities:

• Lead a team of talented, high-performing cybersecurity legal professionals and serve as a point of escalation to provide cybersecurity legal expertise and guidance to executives, cross-functional leaders and other stakeholders throughout the organisation.

• Advise, draft and negotiate cybersecurity and privacy terms associated with outbound cloud service Master Subscription Agreements, Information Security Exhibits, Data Processing Addendums and other documentation related to sales transactions, while partnering closely with Okta’s Commercial Legal team.

• Provide day-to-day legal support surrounding cybersecurity and privacy-related contract requests and respond promptly and effectively to legal requests from internal clients with pragmatic and business-oriented guidance.

• Provide advice and guidance to Okta Security, Engineering, Product, executives, and other stakeholders on compliance with applicable security and privacy laws and regulations, such as the General Data Protection Regulation, United States’ federal and state regulations, security/privacy by design, frameworks and industry certifications.

• Support the investigation of potential security and privacy incidents, including analysing relevant legal and regulatory responsibilities, and providing guidance to internal clients on mitigation, remediation and resolution efforts.

• Develop, implement and maintain standards, processes, runbooks and guidance surrounding cybersecurity and privacy-related issues for Go-to-Market transactions, and partnering closely with members of the Legal, Security, Compliance and Engineering teams, among other key stakeholders.

• Build critical relationships in order to effectively provide practical and strategic advice to assist the business in meeting its objectives, while ensuring information security and privacy compliance. Advise on recommended courses of action and legal risk, with the ability to judge when to escalate identified issues as appropriate.

• Assist in the maintenance and review of various security and privacy programs and processes, including updates to security and privacy policies, plans, procedures, standards, certifications and customer-facing security and privacy documentation.

• Support the procurement team in drafting and negotiating cybersecurity and privacy terms associated with vendor agreements.

• Maintain an understanding of technical controls and assist in the creation of audit and monitoring frameworks to support stable, controlled operations.

• Review cybersecurity and privacy-related marketing and other external communications content for accuracy and completeness.

• Support the management of outside counsel and consultants, and contribute to other interesting legal projects, as needed.

Required Skills and Experience:

• 8+ years of relevant law firm and/or in-house experience, including at least 2 years working primarily on cybersecurity and privacy-related transactional matters, preferably at a SaaS technology company.

• Familiarity and comfort with the culture of a fast-paced enterprise software company and knowledge of SaaS products.

• Experience working with highly-regulated customers, especially those in the financial services industry, preferred.

• Excellent written and verbal communication, presentation, drafting and negotiation skills.

• Sound and practical legal and business judgment, as well as the ability to think strategically and develop strong working relationships with key internal clients.

• Knowledge in global security, privacy and data protection frameworks, including NIST, ISO, FedRAMP, PCI-DSS, GDPR, CCPA, CPRA and HIPAA.

• Ability to maintain strong working relationships with a variety of internal clients and business partners from a variety of functions.

• A self-motivated individual with grit who takes initiative and is comfortable rolling up their sleeves. Team-oriented with a sense of humour and high emotional intelligence. Ability to organise, prioritise, and manage deadlines.

• Strong academic background and J.D. from highly-regarded school, active bar admission.

The annual base salary range for this position for candidates located in California (excluding San Francisco Bay Area), Colorado, Illinois, New York, and Washington is between $212,000-$292,000 USD

XML job scraping automation by YubHub

At Cloudflare, we are on a mission to help build a better Internet. Today the company runs one of the world’s largest networks that powers millions of websites and other Internet properties for customers ranging from individual bloggers to SMBs to Fortune 500 companies.

We protect and accelerate any Internet application online without adding hardware, installing software, or changing a line of code. Internet properties powered by Cloudflare all have web traffic routed through its intelligent global network, which gets smarter with every request. As a result, they see significant improvement in performance and a decrease in spam and other attacks.

Available Location:

Available locations: Denver, CO

What you'll do as a Senior Solutions Engineer, Majors Accounts

The Solution Engineering organization is responsible for the technical sale of the Cloudflare solution portfolio, ensuring maximal business value, fit-for-purpose solution design and adoption roadmap for our customers. Reporting to the Solution Engineering Manager, the Majors Accounts Solutions Engineer is a Senior level role.

You are a customer-facing technologist within the Cloudflare Solutions Engineering team. You have strong experience in large account pre-sales management as well as excellent verbal and written communications skills suited for executive-level engagement. You are comfortable speaking about the Cloudflare vision and mission with C-level customer executives.

Your role will be to build passionate champions within the technology ranks at your accounts, drive sales for identified opportunities, and leverage your relationships with these technical champions to build a revenue pipeline where no opportunities yet exist. You will work within a high-profile pursuit team dedicated to certain strategic accounts, working closely with the majors account executives attached to these accounts.

Responsibilities

• Build and maintain long-term technical relationships with the technical buyers (executives, managers, and individual contributors) at your assigned accounts, becoming a trusted advisor to those stakeholders.
• Deeply understand the business-critical issues that your accounts are facing, and provide meaningful solution designs to facilitate technical validation of Cloudflare as a part of the customer’s infrastructure, including the coordination of Cloudflare colleagues throughout the sales and procurement cycle.
• Identify and drive technical conversations in every possible line of business within the accounts, engaging key technical buyers with the purpose of uncovering new areas of potential revenue & showing value to all possible parts of your accounts.
• Empower customers in their security and network transformation journeys, helping them to define strategies and architect necessary security controls aligned with Cloudflare product suites.
• Be the voice of the customer internally at Cloudflare, engaging with and influencing Cloudflare’s Product and Engineering teams to meet your customers’ needs.
• Represent and evangelize Cloudflare externally at Developer, Community, Technology, Cybersecurity, and other industry events with thought leadership and expertise.

Desirable Skills, Knowledge, and Experience

• Polished communication and executive presentation skills with the ability to drive a discussion with a broad range of stakeholders (from the web developer to the CISO).
• Relationship building: a proven track record of building deep technical relationships with engineers and senior executives in large and strategic accounts. Experience in managing various stakeholder relationships to build consensus on security solutions/projects.
• Experience managing technical sales within large accounts.
• Developing champion-style relationships
• Driving technical wins
• Assisting with technical validation
• A deep understanding of core industry components of Cloudflare solutions (and a desire to learn more):

Internet security technologies including DDoS and DDoS mitigation, Firewalls, TLS, VPN, DLP Networking technologies including TCP, UDP, DNS, IPv4 + IPv6, BGP routing, GRE, SD-WAN, MPLS, Global Traffic Management HTTP technologies including reverse proxy (e.g., WAF and CDN), forward proxy (secure web gateway), serverless application development Zero-trust network access (ZTNA & SASE) concepts including identity management and authentication Cloud computing technologies such as AWS, GCP, Azure, and others Some scripting or programming experience with one or more of JavaScript, Python, Golang, BASH Understanding of, or experience with, regulatory requirements such as FedRAMP, GDPR, PCI DSS, HIPAA, SOC-2, ISO/IEC.

Compensation

Compensation may be adjusted depending on work location.

For Denver, Colorado-based hires: Estimated annual salary of $208,000 - $254,000. This role is eligible to earn incentive compensation under Cloudflare’s Sales Compensation Plan. The estimated annual salary range includes the on-target incentive compensation that may be attained in this role under the Sales Compensation Plan.

Equity

This role is eligible to participate in Cloudflare’s equity plan.

Benefits

Cloudflare offers a complete package of benefits and programs to support you and your family. Our benefits programs can help you pay health care expenses, support caregiving, build capital for the future, and make life a little easier and fun!

The below is a description of our benefits for employees in the United States, and benefits may vary for employees based outside the U.S.

Health & Welfare Benefits Medical/Rx Insurance Dental Insurance Vision Insurance Flexible Spending Accounts Commuter Spending Accounts Fertility & Family Forming Benefits On-demand mental health support and Employee Assistance Program Global Travel Medical Insurance

Financial Benefits Short and Long Term Disability Insurance Life & Accident Insurance 401(k) Retirement Savings Plan Employee Stock Participation Plan

Time Off Flexible paid time off covering vacation and sick leave Leave programs, including parental, pregnancy health, medical, and bereavement leave

What Makes Cloudflare Special?

We’re not just a highly ambitious, large-scale technology company. We’re a highly ambitious, large-scale technology company with a soul. Fundamental to our mission to help build a better Internet is protecting the free and open Internet.

Project Galileo: Since 2014, we've equipped more than 2,400 journalism and civil society organizations in 111 countries with powerful tools to defend themselves against attacks that would otherwise censor their work, technology already used by Cloudflare’s enterprise customers,at no cost.

Athenian Project: In 2017, we created the Athenian Project to ensure that state and local governments have the highest level of protection and reliability for free, so that their constituents have access to election information and voter registration. Since the project’s inception, we’ve protected over 20 million registered voters and helped to safeguard the integrity of elections in several states.

XML job scraping automation by YubHub

Location: United States

Department: Security

Job Description:

This role can be based remotely anywhere in the United States. The Product Security Team's mission is to left-shift SDLC (Security Development Lifecycle) processes for all code written in Databricks (for customer use or supporting customers internally) to reduce the likelihood of introducing new vulnerabilities in production and minimize the count and effect of externally identified vulnerabilities on Databricks Services.

You will be an individual contributor on the product security team at Databricks, managing SDLC functions for features and products within Databricks. This would include, but is not limited to, security design reviews, threat models, manual code reviews, exploit writing, and exploit chain creation. You will also support IR and VRP programs when there is a vulnerability report or a product security incident.

You will work with a global team, spread across various locations in the US and EMEA.

The impact you will have:

• Full SDLC support for new product features being developed in ENG and non-ENG teams. This would include threat modeling, design review, manual code review, exploit writing, etc.

• Work with other security teams to provide support for incident response and vulnerability response as and when needed.

• Work with the results of SAST tools to help evaluate and identify false positives and file defects for real issues.

• Work on DAST tools and related automation for auto-assessment and defect filing.

• Maintain the automation framework and add new features as needed to support different security compliances that Databricks may want to get into – FedRamp, PCI, HIPAA, etc.

• Prioritize security from a risk management perspective, rather than an absolute textbook version.

• Help develop and implement security processes to improve the overall productivity of the product security organization and the SDLC process in general

What we look for:

• 3-10 years' experience with the threat modeling process and ability to find design problems based on a block diagram of data flow.

• Solid understanding on at least two of the following domains: web security, cloud security, systems security, and applied cryptography.

• Proficient with one or more of programming languages (Python/Java/Scala/JavaScript) and ability to read code to identify security defects.

• Strong skills on scripting and automation on exploits.

• Fuzzing skills are good to have.

• Exploit writing skills are a positive and greatly required.

Pay Range Transparency:

Databricks is committed to fair and equitable compensation practices. The pay range(s) for this role is listed below and represents the expected base salary range for non-commissionable roles or on-target earnings for commissionable roles. Actual compensation packages are based on several factors that are unique to each candidate, including but not limited to job-related skills, depth of experience, relevant certifications and training, and specific work location. Based on the factors above, Databricks anticipated utilizing the full width of the range. The total compensation package for this position may also include eligibility for annual performance bonus, equity, and the benefits listed above.

For more information regarding which range your location is in visit our page here.

Zone 1 Pay Range: $190,000 - $261,250 USD

Zone 2 Pay Range: $171,000 - $235,200 USD

Zone 3 Pay Range: $161,500 - $222,100 USD

Zone 4 Pay Range: $152,000 - $209,000 USD

XML job scraping automation by YubHub

You will also design and deploy robust supporting security tools for managing and assessing security state, integrate with third-party applications, and interact with cloud APIs (AWS, Azure, GCP, Terraform). Additionally, you will plan and lead end-to-end projects supporting data collection and integration with vulnerability and threat detection efforts.

To succeed in this role, you will need 8+ years of software engineering experience, with 4+ years specifically in security-related engineering. You should have experience with Python, Git/GitHub, and CI/CD automation, and Terraform. Expertise in securing at least one major cloud environment (AWS, Azure, GCP) is also required. Experience with software security and systems that handle sensitive data, as well as data correlation engine, is preferred.

As a leader on our team, you will be expected to mentor peers, drive strategic initiatives, and influence the organization's security direction. You should have excellent communication skills, with the ability to collaborate effectively across teams and present complex ideas clearly to stakeholders at all levels.

XML job scraping automation by YubHub

As a member of our security team, you will work alongside security, infrastructure, and engineering partners to monitor security signals, investigate issues, improve operational processes, and strengthen our overall security posture.

In this role, you will have the opportunity to learn from experienced security professionals, develop your skills in security operations, and contribute to the growth and success of our organization.

We are looking for a curious, detail-oriented individual with a foundational understanding of security operations concepts, familiarity with basic networking, operating systems, and cloud concepts, and comfort working in terminal and web-based tools.

If you are a problem solver, customer-oriented, versatile, resilient, and eager to learn, we'd love to hear from you.

XML job scraping automation by YubHub

This is a hands-on security engineering role; not a GRC or project management role. You'll identify the frameworks that apply, architect the vessel's security to satisfy them, and drive authorization to completion. Where standards don't yet exist, you'll define them.

Key Responsibilities:

• Own the security posture for one or more vessel programs from architecture through fielding, serving as the responsible security engineer for the product
• Drive threat modeling across vessel subsystems including embedded compute, communications, navigation, propulsion controls, sensor fusion, and C2 interfaces and define security architectures, trust boundaries, and segmentation strategies based on findings
• Identify and mitigate security risks unique to autonomous maritime platforms, including GPS/GNSS spoofing, RF interference, sensor manipulation, supply chain compromise, and physical access threats
• Own the end-to-end authorization lifecycle for vessel programs, from initial security planning through ATO or equivalent customer authorization milestones
• Navigate DoD cybersecurity authorization frameworks including RMF, CSRMC, and service-specific requirements across Navy, Coast Guard, Marine Corps, and joint programs
• Prepare and maintain authorization artifacts, security documentation, and evidence packages that satisfy Authorizing Officials and program offices
• Identify and map applicable compliance frameworks for each vessel and customer segment including NIST SP 800-53, NIST SP 800-171, CMMC 2.0, FedRAMP, IEC 62443, IMO MASS Code, and IACS UR E26/E27 and proactively define Saronic's compliance posture where standards are still emerging
• Engage directly with government program offices, Authorizing Officials, DOT&E evaluators, and classification societies as a credible technical representative of Saronic's security posture
• Support cybersecurity testing and evaluation efforts, including preparation for operational test events, red team assessments, and cooperative vulnerability assessments
• Partner with supply chain and manufacturing teams to address hardware provenance, firmware integrity, and anti-tamper requirements for production vessels
• Work with Legal and Contracts to ensure security and compliance requirements are accurately reflected in customer agreements, proposals, and contract deliverables

Required Qualifications:

• 6+ years of hands-on experience in product security, systems security engineering, authorization engineering, or a closely related security engineering role for defense or high-assurance platforms
• Strong understanding of DoD cybersecurity authorization processes (RMF, ATO/IATT, CSRMC, continuous ATO) with experience contributing to or driving systems through authorization
• Working knowledge of NIST SP 800-53, NIST SP 800-171, and CMMC 2.0 and their application to weapons systems, autonomous platforms, or similarly complex defense products
• Experience with threat modeling, security architecture, or risk assessment for cyber-physical systems, embedded systems, or operational technology environments
• Strong technical foundation, able to read architecture diagrams, evaluate security controls at a systems level, and hold credible technical conversations with hardware, software, and cloud engineers
• Ability to clearly communicate with both technical and non-technical stakeholders, including production of security documentation and authorization artifacts
• Ownership mindset with the ability to operate in ambiguity, define the path forward, and move work to completion across teams
• Ability to obtain and maintain a security clearance

Preferred Qualifications:

• Experience as a product security lead, systems security engineer, or authorization lead for a defense platform or program of record
• Direct experience engaging with government Authorizing Officials, program offices, or DOT&E as a technical security representative
• Experience in defense technology startups, DARPA programs, or organizations that move at speed within the defense acquisition system
• Familiarity with maritime-specific frameworks including IMO MASS Code, IACS UR E26/E27, IEC 62443, or classification society autonomous vessel rules
• Understanding of autonomous systems security challenges including communications security, electronic warfare hardening, GPS/GNSS resilience, and AI/ML system security
• Experience with ITAR/EAR compliance, supply chain security, or manufacturing security for defense products
• Familiarity with the defense acquisition lifecycle and how authorization milestones integrate into program schedules

Additional Information:

• Benefits: Medical Insurance, Dental and Vision Insurance, Time Off, Parental Leave, Competitive Salary, Retirement Plan, Stock Options, Life and Disability Insurance, Pet Insurance
• This role requires access to export-controlled information or items that require “U.S. Person” status.

XML job scraping automation by YubHub

This role is heavily weighted toward detection engineering. You should think in terms of adversary behaviour and telemetry coverage, not just alert triage. You'll own detections end-to-end: from identifying gaps in coverage, through designing and testing detection logic, to tuning and validating in production.

Key Responsibilities:

• Design, build, test, and tune high-fidelity detection rules and analytic queries across endpoint, cloud, network, identity, and DLP telemetry sources

• Develop and maintain detection content using detection-as-code practices including version-controlled logic, automated testing, and CI/CD deployment

• Map detection coverage to MITRE ATT&CK, identify gaps, and prioritise new detection development based on threat intelligence and business risk

• Engineer correlation rules, behavioural analytics, and anomaly-based detections that minimise false positives while surfacing real adversary tradecraft

• Own the detection lifecycle from initial development through production tuning, performance monitoring, and retirement

• Build and operate pipelines to ingest, normalise, enrich, and manage security telemetry at scale across diverse data sources, using Terraform and infrastructure-as-code practices to deploy and maintain logging and detection infrastructure

• Design and maintain log collection, parsing, and enrichment configurations that ensure the right telemetry is available at the right fidelity for detection and investigation

• Evaluate and onboard new telemetry sources as Saronic's infrastructure and threat landscape evolve

• Monitor pipeline health, data quality, and ingestion reliability to ensure detections operate on complete and accurate data

• Develop and manage automated response playbooks in SOAR platforms to accelerate containment and reduce analyst toil

• Build automation that enriches alerts with contextual data, reducing investigation time and improving analyst decision-making

• Support incident response efforts and translate lessons learned into improved detections and playbooks

• Partner with SOC analysts, Cloud Security, Product Security, and IT teams to close visibility and detection gaps across environments

• Collaborate with threat intelligence to ensure detection engineering is informed by current adversary TTPs relevant to defence, maritime, and autonomous systems

Required Qualifications:

• 3+ years of hands-on experience in detection engineering, security operations, security automation, or a closely related security engineering role

• Demonstrated experience designing, testing, and tuning detection rules and analytic queries across production security telemetry (endpoint, cloud, network, identity, or DLP)

• Hands-on experience with SIEM platforms and proficiency with query languages such as SPL, KQL, or equivalent

• Experience building and operating security data pipelines, including log ingestion, normalisation, enrichment, and data quality management

• Understanding of data engineering concepts including ETL pipelines, data modelling, schema design, and indexing as applied to security telemetry

• Hands-on coding experience in Python, PowerShell, Go, or Rust for security automation, detection tooling, or pipeline development, and familiarity with Terraform for managing detection and logging infrastructure as code

• Understanding of MITRE ATT&CK framework and its application to detection coverage and gap analysis

• Ability to obtain and maintain a security clearance

Preferred Qualifications:

• Experience in defence, aerospace, robotics, autonomy, or other high-assurance environments

• Experience with EDR platforms including custom detection rule creation and telemetry analysis

• Experience with cloud-native detection in AWS and Microsoft 365/Azure

• Experience using Terraform to deploy and manage security monitoring infrastructure, log pipeline components, or cloud-native security service configurations

• Hands-on experience with incident response, threat hunting, or adversary emulation

• Exposure to embedded Linux, operational technology, or ICS telemetry and detection

• Familiarity with NIST SP 800-171, NIST SP 800-53, or CMMC and their logging and monitoring requirements

• Relevant certifications such as GCIH, GCIA, GCDA, GSOM, OSDA, or OSCP

Additional Information:

• Benefits: Medical Insurance, Dental and Vision Insurance, Time Off, Parental Leave, Competitive Salary, Retirement Plan, Stock Options, Life and Disability Insurance, Pet Insurance

• This role requires access to export-controlled information or items that require 'U.S. Person' status.

XML job scraping automation by YubHub

Key Responsibilities

• Own the security architecture for Saronic's AWS environments, including multi-account strategy, network segmentation, identity architecture, and data protection across commercial AWS and AWS GovCloud

• Design and maintain secure-by-default Terraform modules and IaC standards that teams adopt as the standard path, enforcing least privilege, secure defaults, and compliance requirements

• Implement preventive controls (SCPs, permission boundaries, policy-as-code) and detective controls (Config rules, CloudTrail analysis, GuardDuty) as a unified, layered security model

• Design and enforce IAM patterns across AWS accounts, services, and workloads including least-privilege policies, permission boundaries, cross-account access, federation, and service-to-service authentication

• Implement and govern secrets management using tools such as AWS Secrets Manager or Vault, integrated into CI/CD and runtime environments

• Partner with DevOps and Platform Engineering to embed security into CI/CD pipelines, infrastructure provisioning, and deployment workflows

• Build automated compliance validation into infrastructure pipelines and replace manual security gates with automated guardrails wherever possible

• Create self-service security tooling and patterns that allow teams to operate with speed and autonomy while maintaining compliance

• Integrate logging, monitoring, and alerting across cloud infrastructure to validate control effectiveness and detect misconfigurations or threats

• Build and tune cloud-native detections using CloudTrail, GuardDuty, Config, and SIEM integrations

• Support incident response for cloud security events, drive root-cause analysis, and translate findings into improved guardrails and controls

Required Qualifications:

• 6+ years of hands-on experience in cloud security engineering, infrastructure security, DevSecOps, or a closely related security engineering role

• Expert-level proficiency with Terraform, including module design, state management, policy-as-code, and managing complex multi-environment configurations

• Deep expertise in AWS security services and architecture, including IAM, Organizations, SCPs, Control Tower, CloudTrail, Config, GuardDuty, Security Hub, KMS, and VPC security

• Demonstrated experience building security guardrails and reusable infrastructure patterns that engineering teams adopt without friction

• Strong experience with CI/CD pipeline security, IaC review processes, and automated compliance validation

• Experience operating in AWS GovCloud or FedRAMP-regulated cloud environments

• Strong proficiency in Python, Go, Rust, or equivalent languages for building security automation and tooling

• Ability to obtain and maintain a security clearance

Preferred Qualifications:

• Experience in defence, aerospace, robotics, autonomy, or other high-assurance environments

• Experience designing multi-account AWS landing zones and organisational security architectures from the ground up

• Hands-on experience with Kubernetes security, container security, and service mesh security in cloud-native environments

• Familiarity with NIST SP 800-171, NIST SP 800-53, FedRAMP, or Cloud Computing SRG Impact Levels

• Experience with infrastructure drift detection, automated remediation, and continuous compliance monitoring

• Relevant certifications such as AWS Security Specialty, AWS Solutions Architect Professional, HashiCorp Terraform Associate/Engineer, CCSP, or CISSP

Additional Information

Benefits: Medical Insurance: Comprehensive health insurance plans covering a range of services. Saronic pays 100% of the premium for employees and 80% for dependents. Dental and Vision Insurance: Coverage for routine dental check-ups, orthodontics, and vision care. Saronic pays 100% of the premium under the basic plan for employees and 80% for dependents. Time Off: Generous PTO and Holidays. Parental Leave: Paid maternity and paternity leave to support new parents. Competitive Salary: Industry-standard salaries with opportunities for performance-based bonuses. Retirement Plan: 401(k) plan. Stock Options: Equity options to give employees a stake in the company’s success. Life and Disability Insurance: Basic life insurance and short- and long-term disability coverage. Pet Insurance: Discounted pet insurance options including 24/7 Telehealth helpline. Additional Perks: Free lunch benefit and unlimited free drinks and snacks in the office

This role requires access to export-controlled information or items that require “U.S. Person” status. As defined by U.S. law, individuals who are any one of the following are considered to be a “U.S. Person”: (1) U.S. citizens, (2) legal permanent residents (a.k.a. green card holders), and (3) certain protected classes of asylees and refugees, as defined in 8 U.S.C. 1324b(a)(3).

XML job scraping automation by YubHub

Key responsibilities include:

• Leading and growing the team: Manage the SOC team, shape the roadmap, delegate effectively, and mentor engineers.

• Driving operations: Define vulnerability management processes and coordinate stakeholders for timely remediation. Design, implement, and operate SIEM/SOAR infrastructure (ingestion, normalization, correlation, alerting, playbooks). Specify logging requirements across our main stacks and centralize telemetry in the SIEM. Develop and tune correlation rules and detections; manage CTI intake and operationalize intel. Run continuous improvement to reduce false positives and raise signal quality. Establish crisp procedures for alert triage, escalation, and incident handling & investigation. Lead incident communications with stakeholders and ensure thorough documentation.

• Engineering and enablement: Contribute to security tooling, automation, and integrations that speed up detection/response. Produce guidance and documentation for product/infra teams; contribute to compliance in the SOC perimeter.

• Exercises and assurance: Coordinate red/blue exercises, post-mortems, and targeted audits to validate coverage and resilience.

The ideal candidate will have 8+ years of experience leading SOC/CSIRT functions, with proven leadership. Hands-on experience with SIEM (e.g., Elastic Security, Sekoia, Splunk) and SOAR platforms is required. Strong experience in vulnerability management (e.g., DefectDojo, Dependency-Track) and remediation workflows is also necessary. Solid grasp of the cyber kill chain / attack lifecycle, detection engineering, and log source coverage is essential. Excellent problem-solving and communication skills are required, as well as the ability to operate in a fast-paced startup environment.

XML job scraping automation by YubHub

You will close high-value deals, run pilots, and drive adoption of InstantPay by helping customers reduce settlement time and FX costs while ensuring regulatory and operational safety.

This role is based out of São Paulo, Brazil, and is a full-time position where it is required to come into our office at complexo JK Iguatemi (2-3 days/week).

Job Responsibilities:

• Acquire high-quality new clients through efficient outbound strategies (Hunting) + cross-sell & upsell existing clients by providing top-notch consultative sales.

• Identify business opportunities targeting mid- to large-sized businesses, enterprises, and later-stage venture-backed startups; consistently meet and exceed sales targets and deliver revenue growth as an individual contributor.

• Full sales cycle ownership for Jeeves InstantPay and adjacent stablecoin solutions: prospecting, discovery, product demos, proposal, negotiation, pilots, implementation and expansion.

• Target and close mid-market and enterprise customers (exporters/importers, e-commerce sellers, IT/outsourcing firms, logistics providers, SaaS companies and multinationals) across your assigned region.

• Sell value at the CFO/Head of Treasury level , demonstrate FX economics (up to ~80% FX cost savings vs traditional banking), settlement time improvements, and operational benefits.

• Manage and grow a pipeline: create territory planning, account strategies, and forecast accurately to hit quota.

• Lead pilots and coordinate cross-functional delivery: work with Product, Engineering, Compliance, Customer Success, and partner stablecoin/custody providers to ensure smooth onboarding and secure settlement rails.

• Be the voice of the customer , provide timely, detailed feedback to Product and Engineering to evolve InstantPay’s features and integrations (cards, credit, spend management, APIs).

• Work with Partnerships & Legal to manage relationships with regulated stablecoin issuers, custody providers and infrastructure partners (e.g., G+D and other regulated providers).

• Develop and own go-to-market plays (pricing, packaging, vertical motions) and collaborate with Marketing to drive demand and case studies.

Requirements:

• 6+ years of B2B sales experience with a proven track record of closing mid-market and enterprise deals; prior quota-bearing AE role preferred.

• Direct experience selling stablecoin, crypto payments, blockchain or crypto infrastructure, OR deep experience in cross-border payments, FX and treasury products with a demonstrable appetite for crypto innovation.

• Strong understanding of regulated stablecoin models, custody, rails and counterparty risk , and practical experience working through KYC/KYB and compliance requirements for payments/treasury products.

• Fluent in English. Jeeves is global and requires strong cross-regional communication.

• Experience selling to senior finance leaders (CFOs, Heads of Treasury) and managing complex, multi-stakeholder enterprise procurement processes.

• Excellent consultative selling skills , build financial models, present ROI and negotiate commercial contracts.

• Network of B2B relationships in targeted verticals (exporters/importers, e-commerce, logistics, SaaS).

• Comfort operating in a high-velocity startup environment , proactive, resilient and metrics-driven.

• Experience using CRMs (Salesforce, HubSpot, Pipedrive or equivalent).

What will set you up for success:

• Proactiveness: We’re a small team with a lean mindset. We’re making decisions fast and need to adapt quickly to new information. You thrive with independence and a “get things done” attitude.

• Results Focused: We’re constantly reviewing information, metrics, and KPIs. You should be excited by achieving numbers... and if they don’t exist, you’re telling us what they are and how to hit them.

• Excellent Communication: we’re energized by the challenge of grabbing someone’s attention, relating to them, and driving professional value in every interaction. You will contribute to this energy.

XML job scraping automation by YubHub

This role is a full-time remote position. As an Account Executive, you will acquire high-quality new clients through efficient outbound strategies (Hunting) + cross-sell & upsell existing clients by providing top-notch consultative sales. You will identify business opportunities targeting mid- to large-sized businesses, enterprises, and later-stage venture-backed startups; consistently meet and exceed sales targets and deliver revenue growth as an individual contributor.

Your responsibilities will include full sales cycle ownership for Jeeves InstantPay and adjacent stablecoin solutions: prospecting, discovery, product demos, proposal, negotiation, pilots, implementation and expansion. You will target and close mid-market and enterprise customers (exporters/importers, e-commerce sellers, IT/outsourcing firms, logistics providers, SaaS companies and multinationals) across your assigned region.

You will sell value at the CFO/Head of Treasury level , demonstrate FX economics (up to ~80% FX cost savings vs traditional banking), settlement time improvements, and operational benefits. You will manage and grow a pipeline: create territory planning, account strategies, and forecast accurately to hit quota.

You will lead pilots and coordinate cross-functional delivery: work with Product, Engineering, Compliance, Customer Success, and partner stablecoin/custody providers to ensure smooth onboarding and secure settlement rails. You will be the voice of the customer , provide timely, detailed feedback to Product and Engineering to evolve InstantPay’s features and integrations (cards, credit, spend management, APIs).

You will work with Partnerships & Legal to manage relationships with regulated stablecoin issuers, custody providers and infrastructure partners (e.g., G+D and other regulated providers). You will develop and own go-to-market plays (pricing, packaging, vertical motions) and collaborate with Marketing to drive demand and case studies.

Requirements:

• 6+ years of B2B sales experience with a proven track record of closing mid-market and enterprise deals; prior quota-bearing AE role preferred.
• Direct experience selling stablecoin, crypto payments, blockchain or crypto infrastructure, OR deep experience in cross-border payments, FX and treasury products with a demonstrable appetite for crypto innovation.
• Strong understanding of regulated stablecoin models, custody, rails and counterparty risk , and practical experience working through KYC/KYB and compliance requirements for payments/treasury products.
• Fluent in English and Spanish (Portuguese ability a plus). Jeeves is global and requires strong cross-regional communication.
• Experience selling to senior finance leaders (CFOs, Heads of Treasury) and managing complex, multi-stakeholder enterprise procurement processes.
• Excellent consultative selling skills , build financial models, present ROI and negotiate commercial contracts.
• Network of B2B relationships in targeted verticals (exporters/importers, e-commerce, logistics, SaaS).
• Comfort operating in a high-velocity startup environment , proactive, resilient and metrics-driven.
• Experience using CRMs (Salesforce, HubSpot, Pipedrive or equivalent).

Proactiveness: We’re a small team with a lean mindset. We’re making decisions fast and need to adapt quickly to new information. You thrive with independence and a “get things done” attitude.

Results Focused: We’re constantly reviewing information, metrics, and KPIs. You should be excited by achieving numbers... and if they don’t exist, you’re telling us what they are and how to hit them.

Excellent Communication: we’re energized by the challenge of grabbing someone’s attention, relating to them, and driving professional value in every interaction. You will contribute to this energy.

XML job scraping automation by YubHub

You will close high-value deals, run pilots, and drive adoption of InstantPay by helping customers reduce settlement time and FX costs while ensuring regulatory and operational safety.

Responsibilities

• Acquire high-quality new clients through efficient outbound strategies (Hunting) + cross-sell & upsell existing clients by providing top-notch consultative sales.
• Identify business opportunities targeting mid- to large-sized businesses, enterprises, and later-stage venture-backed startups; consistently meet and exceed sales targets and deliver revenue growth as an individual contributor.
• Full sales cycle ownership for Jeeves InstantPay and adjacent stablecoin solutions: prospecting, discovery, product demos, proposal, negotiation, pilots, implementation and expansion.
• Target and close mid-market and enterprise customers (exporters/importers, e-commerce sellers, IT/outsourcing firms, logistics providers, SaaS companies and multinationals) across your assigned region.
• Sell value at the CFO/Head of Treasury level , demonstrate FX economics (up to ~80% FX cost savings vs traditional banking), settlement time improvements, and operational benefits.
• Manage and grow a pipeline: create territory planning, account strategies, and forecast accurately to hit quota.
• Lead pilots and coordinate cross-functional delivery: work with Product, Engineering, Compliance, Customer Success, and partner stablecoin/custody providers to ensure smooth onboarding and secure settlement rails.
• Be the voice of the customer , provide timely, detailed feedback to Product and Engineering to evolve InstantPay’s features and integrations (cards, credit, spend management, APIs).
• Work with Partnerships & Legal to manage relationships with regulated stablecoin issuers, custody providers and infrastructure partners (e.g., G+D and other regulated providers).
• Develop and own go-to-market plays (pricing, packaging, vertical motions) and collaborate with Marketing to drive demand and case studies.

Requirements

• 6+ years of B2B sales experience with a proven track record of closing mid-market and enterprise deals; prior quota-bearing AE role preferred.
• Direct experience selling stablecoin, crypto payments, blockchain or crypto infrastructure, OR deep experience in cross-border payments, FX and treasury products with a demonstrable appetite for crypto innovation.
• Strong understanding of regulated stablecoin models, custody, rails and counterparty risk , and practical experience working through KYC/KYB and compliance requirements for payments/treasury products.
• Fluent in English and Spanish or Portuguese a plus. Jeeves is global and requires strong cross-regional communication.
• Experience selling to senior finance leaders (CFOs, Heads of Treasury) and managing complex, multi-stakeholder enterprise procurement processes.
• Excellent consultative selling skills , build financial models, present ROI and negotiate commercial contracts.
• Network of B2B relationships in targeted verticals (exporters/importers, e-commerce, logistics, SaaS).
• Comfort operating in a high-velocity startup environment , proactive, resilient and metrics-driven.
• Experience using CRMs (Salesforce, HubSpot, Pipedrive or equivalent).

What will set you up for success

• Proactiveness: We’re a small team with a lean mindset. We’re making decisions fast and need to adapt quickly to new information. You thrive with independence and a “get things done” attitude.
• Results Focused: We’re constantly reviewing information, metrics, and KPIs. You should be excited by achieving numbers... and if they don’t exist, you’re telling us what they are and how to hit them.
• Excellent Communication: we’re energized by the challenge of grabbing someone’s attention, relating to them, and driving professional value in every interaction. You will contribute to this energy.

XML job scraping automation by YubHub

As an Account Executive, you will close high-value deals, run pilots, and drive adoption of InstantPay by helping customers reduce settlement time and FX costs while ensuring regulatory and operational safety. You will acquire high-quality new clients through efficient outbound strategies and cross-sell & upsell existing clients by providing top-notch consultative sales.

Key responsibilities include:

• Acquiring high-quality new clients through efficient outbound strategies and cross-sell & upsell existing clients
• Identifying business opportunities targeting mid- to large-sized businesses, enterprises, and later-stage venture-backed startups
• Full sales cycle ownership for Jeeves InstantPay and adjacent stablecoin solutions
• Targeting and closing mid-market and enterprise customers across your assigned region
• Selling value at the CFO/Head of Treasury level , demonstrating FX economics, settlement time improvements, and operational benefits
• Managing and growing a pipeline: creating territory planning, account strategies, and forecasting accurately to hit quota
• Leading pilots and coordinating cross-functional delivery: working with Product, Engineering, Compliance, Customer Success, and partner stablecoin/custody providers to ensure smooth onboarding and secure settlement rails

Requirements:

• 6+ years of B2B sales experience with a proven track record of closing mid-market and enterprise deals
• Direct experience selling stablecoin, crypto payments, blockchain or crypto infrastructure, OR deep experience in cross-border payments, FX and treasury products with a demonstrable appetite for crypto innovation
• Strong understanding of regulated stablecoin models, custody, rails and counterparty risk , and practical experience working through KYC/KYB and compliance requirements for payments/treasury products
• Fluent in English and Spanish or Portuguese a plus
• Experience selling to senior finance leaders (CFOs, Heads of Treasury) and managing complex, multi-stakeholder enterprise procurement processes
• Excellent consultative selling skills , building financial models, presenting ROI and negotiating commercial contracts
• Network of B2B relationships in targeted verticals (exporters/importers, e-commerce, logistics, SaaS)
• Comfort operating in a high-velocity startup environment , proactive, resilient and metrics-driven
• Experience using CRMs (Salesforce, HubSpot, Pipedrive or equivalent)

What will set you up for success:

• Proactiveness: We’re a small team with a lean mindset. We’re making decisions fast and need to adapt quickly to new information.
• Results Focused: We’re constantly reviewing information, metrics, and KPIs. You should be excited by achieving numbers... and if they don’t exist, you’re telling us what they are and how to hit them.
• Excellent Communication: we’re energized by the challenge of grabbing someone’s attention, relating to them, and driving professional value in every interaction.

XML job scraping automation by YubHub

Your primary goal will be to acquire high-quality new clients through efficient outbound strategies and cross-sell/upsell existing clients by providing top-notch consultative sales. You will identify business opportunities targeting mid- to large-sized businesses, enterprises, and later-stage venture-backed startups; consistently meet and exceed sales targets and deliver revenue growth as an individual contributor.

Key responsibilities include managing full sales cycles, providing timely and detailed feedback to management, product, and engineering teams, collaborating with marketing and customer success, and building an effortless and value-driven client experience.

Requirements include 6+ years' experience in B2B SaaS sales or business development, fluency in English, and a proven track record of consistently meeting or exceeding sales targets.

XML job scraping automation by YubHub

As a Senior Security Engineer, you will be a hands-on practitioner responsible for detecting, investigating, and responding to security threats across our cloud-native platform. You'll play a critical role in our day-to-day security operations triaging alerts, leading incident investigations, managing vulnerabilities, and continuously improving our detection capabilities.

This role is ideal for someone with strong security analyst fundamentals who is eager to grow their engineering skills and contribute to building and improving security tooling over time. You will collaborate closely with engineering, infrastructure, and product teams to ensure security is woven into everything we build.

Responsibilities

• Serve as a frontline responder for security incidents , triage alerts, lead investigations, coordinate cross-functional response efforts, and drive post-incident reviews and remediation
• Monitor and tune security tooling and detection rules to identify threats across our cloud infrastructure and applications; reduce false positives and improve signal quality
• Perform proactive threat hunting to identify attack patterns, anomalous behavior, and gaps in detection coverage
• Support and maintain security controls across our AWS environment, including monitoring for misconfigurations, access issues, and infrastructure risks
• Contribute to building and improving security automation, scripts, and internal tooling to reduce manual overhead and enhance operational efficiency; grow into deeper engineering contributions over time
• Own the enterprise vulnerability management program, establishing risk-based prioritization frameworks and driving organization-wide remediation strategies
• Spearhead AI/ML integration and automation initiatives to transform security operations, reduce manual overhead, and enhance detection capabilities
• Assist with and contribute to AI-driven security initiatives and automation efforts within the team
• Support ongoing security compliance, audit, and certification programs (e.g., PCI, SOC2)
• Work closely with engineering, infrastructure, and product teams to provide security guidance and support security-by-design practices
• Participate in team knowledge sharing, document runbooks and playbooks, and contribute to continuous improvement of SecOps processes
• Participate in on-call rotation and serve as a first responder to security event escalations

Requirements

• 6+ years of experience in security operations, incident response, or a security analyst role, preferably in cloud-centric environments
• Strong hands-on experience with incident response and investigation alert triage, forensic analysis, root cause determination, and remediation
• Solid understanding of common attack vectors, threat intelligence fundamentals, and attacker tactics, techniques, and procedures (TTPs)
• Working knowledge of cloud security fundamentals (AWS) IAM, VPC, CloudTrail, GuardDuty, Security Hub, or equivalent services
• Familiarity with TCP/IP protocols, network analysis, and common network/security tooling (SIEM, EDR, IDS/IPS)
• Demonstrated ability to identify exploits, vulnerabilities, and misconfigurations and drive remediation in cloud and server environments
• Growth mindset genuine interest in developing engineering skills (scripting, automation, tooling) and growing beyond a pure analyst role
• Ability to participate in an on-call rotation and respond to security event escalations
• Team player comfortable collaborating across India and US teams (primarily PST timezone)

Nice to Have

• Experience with scripting languages (Python, PowerShell, etc.)
• Experience with public cloud security (AWS, Azure, GCP)
• Red/Blue team experience
• Security certifications (e.g., CISSP, Security+, CEH, GIAC)

XML job scraping automation by YubHub

Your day-to-day will involve implementing Agentic AI and LLM-powered workflows using tools like Tines, AWS Agentcore, AWS Bedrock, Claude Code, etc. You will deploy systems with Infrastructure as Code (IaC) (i.e. Terraform) and build and maintain automation workflows across key enterprise platforms (i.e. Atlassian, Okta, Google Workspace, Slack, Zoom, knowledge management systems), cybersecurity systems (i.e. SIEM, GRC platforms, Data Security Platforms, etc.), and cloud environments (AWS, GCP).

You will build AI-driven chatbots or intelligent agents that automate tasks, support conversational workflows, and integrate with enterprise applications. You will partner with IT, Security, GRC, Procurement, and business teams to automate operational tasks and processes to reduce toil, improve efficiency and enable business.

You will develop integrations using REST APIs, JSON, webhooks, and scripting languages (JavaScript, Python). You will follow established automation and AI standards for quality, security, and governance; provide improvements where appropriate.

You will troubleshoot, maintain, and optimize existing workflows to improve stability and performance. You will document designs, workflows, configurations, and operational procedures.

You will participate in code reviews, technical discussions, and team-based learning to uplift engineering quality and consistency.

You will work with various tooling in Security, IT, and Production Engineering.

This role requires 10+ years of experience in automation engineering, systems integration, or workflow development. You should have experience with automation platforms such as Tines, Retool, Superblocks, n8n, etc. You should also have hands-on experience with Terraform and containerization technologies.

You should have experience developing LLM-powered automations, conversational interfaces, or Agentic AI assistants. You should have knowledge of Git and modern version control practices.

You should have strong skills in REST APIs, JSON, webhooks, JavaScript, and Python. You should also have familiarity with identity systems (Okta, SCIM) and RBAC concepts.

You should have familiarity with cloud environments such as Google Cloud Platform (GCP) and Amazon Web Services (AWS).

You should be able to break down problems, collaborate cross-functionally, and deliver solutions with moderate guidance.

You should have strong communication skills and the ability to translate functional requirements into technical outputs.

Preferred experience includes familiarity with data platform and database technologies (e.g., Snowflake, PostgreSQL, Cassandra, DynamoDB).

Work perks at Greenlight include medical, dental, vision, and HSA match, paid life insurance, AD&D, and disability benefits, traditional 401k with company match, unlimited PTO, paid company holidays and pop-up bonus holidays, professional development stipends, mental health resources, 1:1 financial planners, fertility healthcare, 100% paid parental and caregiving leave, plus cleaning service and meals during your leave, flexible WFH, both remote and in-office opportunities, fully stocked kitchen, catered lunches, and occasional in-office happy hours, employee resource groups.

XML job scraping automation by YubHub

The role reports to the Director of Clinical Operations, Dennis McHugh. This role will be a Remote role with occasional travel, as required, to our Brisbane, California headquarters.

Responsibilities:

• Ensure compliance with standard protocol and regulatory and ICH GCP obligations in assigned aspects of clinical site monitoring, such as site initiation, routine monitoring, maintenance of study files, study close out, and retrieval of study materials.
• Complete on-site and remote monitoring activities in compliance with the Clinical Monitoring Plan, including source document verification for accuracy and integrity, as required.
• Write and submit reports of investigational site findings and update applicable tracking systems, as required; escalate observed deficiencies and issues as appropriate.

Requirements:

• Minimum Bachelor’s degree in a life science-related field, a registered nurse (RN) certification, or equivalent.
• 3+ years’ experience in a clinical trials research environment required, with specific in vitro diagnostics study experience.
• General knowledge of regulatory requirements & GCP.
• Ability to multi-task, deal with shifting priorities, and proactively solve problems/manage risks.
• Strong interpersonal, collaborative, and time management abilities.
• Excellent organizational skills; accurate and detail-oriented.
• High proficiency in Veeva Vault and Medrio.
• Strong spoken and written communication skills.

XML job scraping automation by YubHub

As a seasoned cybersecurity professional, you will architect and implement scalable, resilient automation frameworks that seamlessly integrate SIEM, SOAR, EDR/XDR, cloud security, identity, vulnerability management, and threat intelligence platforms.

You will design and deploy AI/LLM-enabled workflows to enhance alert triage, enrichment, investigation summarization, decision support, and response actions.

You will collaborate closely with internal stakeholders and external teams to align security outcomes with business priorities.

You will foster a culture of engineering excellence and continuous improvement within SecOps.

Key responsibilities include:

• Owning and defining the end-to-end automation and orchestration strategy for Security Operations
• Architecting and implementing scalable, resilient automation frameworks
• Designing and deploying AI/LLM-enabled workflows
• Collaborating with internal stakeholders and external teams
• Fostering a culture of engineering excellence and continuous improvement

Requirements include:

• 10+ years of experience in cybersecurity
• Expertise in designing and deploying large-scale security automation and orchestration in enterprise environments
• Hands-on experience with SOAR platforms, SIEMs, EDR/XDR, and security telemetry pipelines
• Proven ability to apply AI/ML, including LLM-based agentic technologies, to security workflows
• Advanced scripting and automation skills
• Strong data analytics skills
• Solid systems architecture skills
• Excellent written and verbal communication skills

As a member of the Synopsys Cybersecurity team, you will work alongside experts in SOC, IR, Threat Intelligence, Detection Engineering, and more, collaborating to build resilient, scalable, and innovative security solutions.

Synopsys offers a comprehensive range of health, wellness, and financial benefits to cater to your needs. Our total rewards include both monetary and non-monetary offerings.

XML job scraping automation by YubHub

We are looking for a SOC (Security Operations Center) Team Lead to build and lead our SOC function end-to-end. You will own vulnerability management, alerting and detection engineering, incident response, and the security tooling/infrastructure that enable these missions. You’ll define processes, collaborate closely with Product, Infra and IT, and continuously improve detection quality and response time.

Key responsibilities

• Lead & grow the team: Manage the SOC team, shape the roadmap, delegate effectively, and mentor engineers.

• Drive operations: - Define vulnerability management processes and coordinate stakeholders for timely remediation. - Design, implement, and operate SIEM/SOAR infrastructure (ingestion, normalization, correlation, alerting, playbooks). - Specify logging requirements across our main stacks and centralize telemetry in the SIEM. - Develop and tune correlation rules and detections; manage CTI intake and operationalize intel. - Run continuous improvement to reduce false positives and raise signal quality. - Establish crisp procedures for alert triage, escalation, and incident handling & investigation. - Lead incident communications with stakeholders and ensure thorough documentation.

• Engineering & enablement: - Contribute to security tooling, automation, and integrations that speed up detection/response. - Produce guidance and documentation for product/infra teams; contribute to compliance in the SOC perimeter.

• Exercises & assurance: - Coordinate red/blue exercises, post-mortems, and targeted audits to validate coverage and resilience.

Requirements

• 8+ years of experience leading SOC/CSIRT functions, with proven leadership.

• Hands-on with SIEM (e.g., Elastic Security, Sekoia, Splunk) and SOAR platforms.

• Strong experience in vulnerability management (e.g., DefectDojo, Dependency-Track) and remediation workflows.

• Solid grasp of the cyber kill chain / attack lifecycle, detection engineering, and log source coverage.

• Excellent problem-solving and communication skills; able to operate in a fast-paced startup environment.

• Builder mindset: pragmatic, automation-oriented, comfortable with ambiguity and ownership.

Nice to have

• Bring scripting/automation skills (e.g., Python, Bash) for data pipelines/playbooks.

• Know modern infra/app stacks (Linux, containers, Kubernetes, cloud), EDR/IDS/IPS.

• Have exposure to compliance frameworks (ISO 27001, SOC 2) and security audits/pen-tests.

• Have run purple team exercises and measurable detection-coverage programs.

• Are comfortable partnering with Product/Platform teams and influencing roadmaps.

XML job scraping automation by YubHub

We're seeking confident, persuasive, and results-driven Sales Closers to work directly for our clients. You will manage pre-qualified leads provided by our clients and be responsible for closing offers on their behalf. This is a remote, commission-based opportunity ideal for professionals with strong communication skills and experience closing high-ticket offers.

Key Responsibilities

• Conduct discovery and sales calls with pre-qualified leads provided by our clients.
• Manage a diverse portfolio of client accounts to maximize call volume and deal flow.
• Maintain a high closing rate through consultative selling and strategic follow-ups.
• Participate in podcast or broadcast-style calls to support brand visibility and lead engagement when needed.
• Collaborate closely with client account managers to ensure smooth onboarding and client satisfaction.
• Track all sales activity and performance data using CRM tools.

Qualifications

• 2+ years of experience in B2B sales, account management, or business development, ideally with high-ticket offers or SaaS solutions.
• Proven track record of closing high-value deals and exceeding sales targets.
• Excellent English communication skills (spoken and written).
• Comfortable working flexible hours to align with US time zones.
• Self-motivated, detail-oriented, and capable of managing multiple accounts simultaneously.
• Proficient with modern sales, CRM, and automation tools, including: LinkedIn Sales Navigator, HubSpot, Pipedrive Calendly, Slack and Zoom

Benefits

• High earning potential – Commission based role
• Multiple client assignments to diversify your pipeline and boost earnings.
• Remote work flexibility – work remotely with a strong internet connection and laptop.
• Exposure to international clients and AI-driven business systems.

XML job scraping automation by YubHub

We're seeking confident, persuasive, and results-driven Sales Closers to work directly for our clients. You will manage pre-qualified leads provided by our clients and be responsible for closing offers on their behalf. This is a remote, commission-based opportunity ideal for professionals with strong communication skills and experience closing high-ticket offers.

Key Responsibilities

• Conduct discovery and sales calls with pre-qualified leads provided by our clients.
• Manage a diverse portfolio of client accounts to maximize call volume and deal flow.
• Maintain a high closing rate through consultative selling and strategic follow-ups.
• Participate in podcast or broadcast-style calls to support brand visibility and lead engagement when needed.
• Collaborate closely with client account managers to ensure smooth onboarding and client satisfaction.
• Track all sales activity and performance data using CRM tools.

Qualifications

• 2+ years of experience in B2B sales, account management, or business development, ideally with high-ticket offers or SaaS solutions.
• Proven track record of closing high-value deals and exceeding sales targets.
• Excellent English communication skills (spoken and written).
• Comfortable working flexible hours to align with US time zones.
• Self-motivated, detail-oriented, and capable of managing multiple accounts simultaneously.
• Proficient with modern sales, CRM, and automation tools, including: LinkedIn Sales Navigator, HubSpot, Pipedrive Calendly, Slack and Zoom

Benefits

• High earning potential – Commission based role
• Multiple client assignments to diversify your pipeline and boost earnings.
• Remote work flexibility – work remotely with a strong internet connection and laptop.
• Exposure to international clients and AI-driven business systems.

XML job scraping automation by YubHub

Key Responsibilities

• Conduct discovery and sales calls with pre-qualified leads provided by our clients.
• Manage a diverse portfolio of client accounts to maximize call volume and deal flow.
• Maintain a high closing rate through consultative selling and strategic follow-ups.
• Participate in podcast or broadcast-style calls to support brand visibility and lead engagement when needed.
• Collaborate closely with client account managers to ensure smooth onboarding and client satisfaction.
• Track all sales activity and performance data using CRM tools.

Qualifications

• 2+ years of experience in B2B sales, account management, or business development, ideally with high-ticket offers or SaaS solutions.
• Proven track record of closing high-value deals and exceeding sales targets.
• Excellent English communication skills (spoken and written).
• Comfortable working flexible hours to align with US time zones.
• Self-motivated, detail-oriented, and capable of managing multiple accounts simultaneously.
• Proficient with modern sales, CRM, and automation tools, including: LinkedIn Sales Navigator, HubSpot, Pipedrive Calendly, Slack and Zoom)

Benefits

• High earning potential – Commission based role
• Multiple client assignments to diversify your pipeline and boost earnings.
• Remote work flexibility – work remotely with a strong internet connection and laptop.
• Exposure to international clients and AI-driven business systems.

XML job scraping automation by YubHub

We're seeking confident, persuasive, and results-driven Sales Closers to work directly for our clients. You will manage pre-qualified leads provided by our clients and be responsible for closing offers on their behalf. This is a remote, commission-based opportunity ideal for professionals with strong communication skills and experience closing high-ticket offers.

Key Responsibilities

• Conduct discovery and sales calls with pre-qualified leads provided by our clients.
• Manage a diverse portfolio of client accounts to maximize call volume and deal flow.
• Maintain a high closing rate through consultative selling and strategic follow-ups.
• Participate in podcast or broadcast-style calls to support brand visibility and lead engagement when needed.
• Collaborate closely with client account managers to ensure smooth onboarding and client satisfaction.
• Track all sales activity and performance data using CRM tools.

Qualifications

• 2+ years of experience in B2B sales, account management, or business development, ideally with high-ticket offers or SaaS solutions.
• Proven track record of closing high-value deals and exceeding sales targets.
• Excellent English communication skills (spoken and written).
• Comfortable working flexible hours to align with US time zones.
• Self-motivated, detail-oriented, and capable of managing multiple accounts simultaneously.
• Proficient with modern sales, CRM, and automation tools, including: LinkedIn Sales Navigator, HubSpot, Pipedrive Calendly, Slack and Zoom

Benefits

• High earning potential – Commission based role
• Multiple client assignments to diversify your pipeline and boost earnings.
• Remote work flexibility – work remotely with a strong internet connection and laptop.
• Exposure to international clients and AI-driven business systems.

XML job scraping automation by YubHub

What we're all about

At Quantexa, we're a team of innovators and problem solvers who are passionate about creating real change for our clients and their industries. We're driven by a desire to do things better than the last time, and we're always looking for talented individuals to join our team.

The opportunity

We're seeking a highly skilled Cyber Security Engineer to join our Security Operations team. As a Cyber Security Engineer, you will play a key part in protecting Quantexa's systems and data from cyber threats. You will be responsible for the day-to-day operation, optimisation, and monitoring of core security platforms, with a particular focus on Zscaler, Cloud monitoring through Wiz, and Endpoint Detection and Response through CrowdStrike.

Responsibilities

Wiz (Cloud Security Posture Management)

• Monitor and triage Wiz findings daily, validating alerts and determining operational impact.
• Perform tuning and threat hunting within Wiz and other tooling.
• Identify misconfigurations, excessive permissions, and exposed assets, escalating where required.
• Track remediation progress with engineering owners and ensure closure of high-priority issues.

Zscaler (Web Security Tunnel 2.0)

• Review and triage Zscaler alerts and policy violations, following documented response procedures.
• Investigate suspicious traffic, access attempts, and user activity to determine legitimacy and risk.
• Support enforcement actions by validating policy alignment and working with IT and Cloud teams to remediate issues.
• Monitor coverage and configuration across users and locations, identifying gaps or misconfigurations.
• Support policy tuning by analysing false positives and recommending rule or policy adjustments.
• Contribute to playbook development, operational maturity, and ongoing service readiness.

CrowdStrike (Endpoint Detection and Response)

• Review and triage endpoint detections, applying documented response steps.
• Execute containment actions, including network isolation and sensor troubleshooting.
• Validate full sensor coverage across the estate and address gaps in coordination with IT.
• Support tuning activities by analysing false positives and proposing rule refinements.
• Contribute to playbook improvements and operational readiness tasks.

Security Operations

• Conduct initial investigation of security incidents, collect evidence, and escalate based on severity with a keen eye on the quality of the output.
• Perform daily review of alerts across our SIEM, Wiz, CrowdStrike, and other platforms.
• Validate vulnerabilities and configuration weaknesses raised by scanning tools.
• Ability to interpret and operationalise threat intelligence, understand how it informs detection, prioritisation, and response activities, and clearly communicate technical threat intelligence to non-technical stakeholders.
• Support cloud security controls, identity hygiene checks, and network policy reviews.
• Contribute to the ongoing maturity and documentation of operational processes.

Collaboration and Ways of Working

• Act as a trusted operational partner to the Cyber Security Manager and the wider Information Security team, providing proactive support and consistent engagement.
• Partner closely with DevOps, IT, and Engineering teams to drive timely and effective remediation actions.
• Deliver clear and concise updates on incidents and operational activities proactively, without the need for prompting.
• Actively participate in team stand ups, contributing constructively to continuous improvement and operational maturity.
• Support senior engineers with platform enhancements, integrations, and controlled change activities.

What you'll bring

• Demonstrated hands-on experience with security operations, incident triage, or vulnerability management.
• Familiarity with EDR platforms (ideally CrowdStrike) and security telemetry analysis.
• Knowledge of cloud environments, particularly Azure including Entra and Conditional Access, and a good understanding of cloud security concepts.
• Ability to understand alert context, assess impact, and follow structured response processes.
• Strong attention to detail, disciplined documentation, and good communication skills.

Benefits

• Competitive salary
• Company bonus
• Hybrid workplace & free access to global WeWork locations & events
• Pension Scheme with a company contribution of 6% (if you contribute 4% or more)
• 25 days annual leave
• Flexible working hours
• Professional development opportunities
• Access to a range of employee benefits, including health insurance, gym membership, and more

XML job scraping automation by YubHub

XML job scraping automation by YubHub

We're seeking confident, persuasive, and results-driven Sales Closers to work directly for our clients. You will manage pre-qualified leads provided by our clients and be responsible for closing offers on their behalf. This is a remote, commission-based opportunity ideal for professionals with strong communication skills and experience closing high-ticket offers.

Key Responsibilities

• Conduct discovery and sales calls with pre-qualified leads provided by our clients.
• Manage a diverse portfolio of client accounts to maximize call volume and deal flow.
• Maintain a high closing rate through consultative selling and strategic follow-ups.
• Participate in podcast or broadcast-style calls to support brand visibility and lead engagement when needed.
• Collaborate closely with client account managers to ensure smooth onboarding and client satisfaction.
• Track all sales activity and performance data using CRM tools.

Qualifications

• 2+ years of experience in B2B sales, account management, or business development, ideally with high-ticket offers or SaaS solutions.
• Proven track record of closing high-value deals and exceeding sales targets.
• Excellent English communication skills (spoken and written).
• Comfortable working flexible hours to align with US time zones.
• Self-motivated, detail-oriented, and capable of managing multiple accounts simultaneously.
• Proficient with modern sales, CRM, and automation tools, including: LinkedIn Sales Navigator, HubSpot, Pipedrive Calendly, Slack and Zoom

Benefits

• High earning potential – Commission based role
• Multiple client assignments to diversify your pipeline and boost earnings.
• Remote work flexibility – work remotely with a strong internet connection and laptop.
• Exposure to international clients and AI-driven business systems.

XML job scraping automation by YubHub

The base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. If the role is non-exempt, overtime pay will be provided consistent with applicable laws. In addition to the salary range listed above, total compensation also includes generous equity, performance-related bonus(es) for eligible employees, and the following benefits.

• Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts

• Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)

• 401(k) retirement plan with employer match

• Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)

• Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees

• 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick or safe time (1 hour per 30 hours worked, or more, as required by applicable state or local law)

• Mental health and wellness support

• Employer-paid basic life and disability coverage

• Annual learning and development stipend to fuel your professional growth

• Daily meals in our offices, and meal delivery credits as eligible

• Relocation support for eligible employees

• Additional taxable fringe benefits, such as charitable donation matching and wellness stipends, may also be provided.

About the Team

OpenAI’s Platform and Infrastructure Engineering organization advances the mission of deploying artificial general intelligence (AGI) for the benefit of all by delivering secure, scalable, and resilient technology solutions. Our team builds and maintains robust infrastructure that safeguards OpenAI’s data and systems while ensuring employees are well-equipped and seamlessly connected. By prioritizing security, reliability, and user-centric solutions, we empower OpenAI employees to drive impactful AI research, corporate operations, and product innovation.

About the Role

As a Client Platform Engineer at OpenAI, you will play a pivotal role in securing, enhancing, and maintaining our endpoint management infrastructure across macOS, Windows, iOS, and Android devices. Your focus will be on building scalable, automated solutions that ensure seamless deployments, advanced security configurations, and efficient operational workflows. You will collaborate closely with IT, Security, and Engineering teams to implement modern endpoint management practices using automation, Infrastructure-as-Code (IaC), and monitoring strategies. This role offers an opportunity to work with cutting-edge tools and contribute to building a security-first, automation-driven endpoint ecosystem.

In this role, you will:

• Design, build, implement, and maintain scalable and performant endpoint management infrastructure to facilitate best-in-class security of the OpenAI fleet comprised of macOS, Windows, iOS, and Android endpoints.

• Deliver critical endpoint management efficiencies and capabilities through bespoke software development and implementation of both industry-standard open source tooling and first-party software solutions.

• Employ modern Infrastructure-as-Code (IaC) methodologies, develop GitOps-driven solutions to deliver consensus-based fleet management capabilities at scale.

• Build and maintain CI/CD pipelines for fleet management infrastructure, deploying to progressively tested environments across multiple clouds (Azure, AWS, GCP).

• Drive initiatives to adopt emerging CPE technologies, industry best practices, and optimize processes for scalability and operational efficiency.

• Partner with cross-functional teams to ensure seamless endpoint user experiences while maintaining strict security standards and continually increasing the bar.

You may be a fit for this role if you have:

• Proficiency in a modern programming language (Python, Golang, Ruby, etc.)

• Extensive hands-on experience with Jamf PRO and Microsoft Intune to ensure comprehensive secure fleet management as well as experience with similar cloud identity providers.

• Demonstrated success and experience with open source endpoint management tooling for configuration management, mobile device management, application management, and telemetry such as Salt, Puppet, Munki, Nano/MicroMDM, osquery, Autopkg, WinGet, etc.

• History of developing and delivering secure, reliable, scalable, and technology solutions.

• Deep knowledge and experience managing corporate infrastructure at scale with Infrastructure-as-Code (IaC) practices & GitOps workflows (Terraform, Ansible, Chef, etc.)

• Experience integrating and operating fleet management infrastructure with CI/CD pipelines and DevOps workflows.

• Proven track record of deploying and operating fleet management infrastructure in public cloud environments (Azure, AWS, GCP).

• A self-starter with strong analytical and problem-solving skills.

You might thrive in this role if you have:

• Deep experience with open-source fleet management tools and frameworks.

• Experience with containerization technologies such as Docker and Kubernetes.

• Familiarity with compliance frameworks such as SOC 2, ISO 27001, FedRAMP, and NIST.

• Strong soft skills, including stakeholder communication and cross-functional collaboration.

• Relevant professional certifications such as CISSP, CISA, CISM, CCSP.

• A security thought leader with contributions to CPE open-source projects or technical communities.

About OpenAI

OpenAI is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity. We push the boundaries of the capabilities of AI systems and seek to safely deploy them to the world through our products. AI is an extremely powerful tool that must be created with safety and human needs at its core, and to achieve our mission, we must encompass and value the many different perspectives, voices, and experiences that form the full spectrum of humanity.

We are an equal opportunity employer, and we do not discriminate on the basis of

XML job scraping automation by YubHub

At Anthropic, we are pioneering new frontiers in AI that have the potential to greatly benefit society. However, developing advanced AI also comes with risks if not properly safeguarded. That's why we are seeking an exceptional Detection and Response engineer that will be on the frontlines to build solutions to monitor for threats, rapidly investigate incidents, and coordinate response efforts with other teams. In this role, you will have the opportunity to shape our security capabilities from the ground up alongside our world-class research and security teams.

Responsibilities:

• Lead cybersecurity Incident Response efforts covering diverse domains from external attacks to insider threats involving all layers of Anthropic’s technology stack
• Develop and deploy novel tooling that may leverage Large Language Models to enhance detection, investigation, and response capabilities
• Create and optimise detections, playbooks, and workflows to quickly identify and respond to potential incidents
• Review Incident Response metrics and procedures and drive continuous improvement
• Work cross functionally with other security and engineering teams

You may be a good fit if you:

• 3+ years of software engineering experience, with security experience a plus and/or
• 5+ years of detection engineering, incident response, or threat hunting experience
• A solid understanding of cloud environments and operations
• Experience working with engineering teams in a SaaS environment
• Exceptional communication and collaboration skills
• An ability to lead projects with little guidance
• The ability to pick up new languages and technologies quickly
• Experience handling security incidents and investigating anomalies as part of a team
• Knowledge of EDR, SIEM, SOAR, or related security tools

Strong candidates may also have experience with:

• Experience performing security operations or investigations involving large-scale Kubernetes environments
• A high level of proficiency in Python and query languages such as SQL
• Experience analysing attack behaviour and prototyping high-quality detections
• Experience with threat intelligence, malware analysis, infrastructure as code, detection engineering, or forensics
• Experience contributing to a high growth startup environment

Deadline to apply:

None. Applications will be reviewed on a rolling basis.

Logistics

• Education requirements: We require at least a Bachelor's degree in a related field or equivalent experience.
• Location-based hybrid policy: Currently, we expect all staff to be in one of our offices at least 25% of the time. However, some roles may require more time in our offices.
• Visa sponsorship: We do sponsor visas! However, we aren't able to successfully sponsor visas for every role and every candidate. But if we make you an offer, we will make every reasonable effort to get you a visa, and we retain an immigration lawyer to help with this.

We encourage you to apply even if you do not believe you meet every single qualification. Not all strong candidates will meet every single qualification as listed. Research shows that people who identify as being from underrepresented groups are more prone to experiencing imposter syndrome and doubting the strength of their candidacy, so we urge you not to exclude yourself prematurely and to submit an application if you're interested in this work.

Your safety matters to us. To protect yourself from potential scams, remember that Anthropic recruiters only contact you from @anthropic.com email addresses. In some cases, we may partner with vetted recruiting agencies who will identify themselves as working on behalf of Anthropic. Be cautious of emails from other domains. Legitimate Anthropic recruiters will never ask for money, fees, or banking information before your first day. If you're ever unsure about a communication, don't click any links—visit anthropic.com/careers directly for confirmed position openings.

How we're different

We believe that the highest-impact AI research will be big science. At Anthropic we work as a single cohesive team on just a few large-scale research efforts. And we value impact — advancing our long-term goals of steerable, trustworthy AI — rather than work on smaller and more specific puzzles. We view AI research as an empirical science, which has as much in common with physics and biology as with traditional efforts in computer science. We're an extremely collaborative group, and we host frequent research discussions to ensure that we are pursuing the highest-impact work at any given time. As such, we greatly value communication skills.

XML job scraping automation by YubHub

Anthropic's mission is to create reliable, interpretable, and steerable AI systems. We want AI to be safe and beneficial for our users and for society as a whole. Our team is a quickly growing group of committed researchers, engineers, policy experts, and business leaders working together to build beneficial AI systems.

About the Team

The Security Engineering team's mission is to safeguard our AI systems and maintain the trust of our users and society at large. Whether we're developing critical security infrastructure, building secure development practices, or partnering with our research and product teams, we are committed to operating as a world-class security organisation and keeping the safety and trust of our users at the forefront of everything we do.

What You'll Do:

• Conduct red and purple team engagements simulating advanced threat actors across our cloud infrastructure, endpoints and bare metal deployments.
• Penetration test specific, high value deployments.
• Contribute to AI-assisted security testing tooling and workflows.
• Work cross functionally with other security and engineering teams, particularly on AI-specific attack scenarios.
• Document and present findings to technical and executive audiences, translating attack narratives into actionable risk insights that inform security roadmaps.

Who You Are:

• 5+ years of hands-on experience in red teaming and offensive security operations.
• Deep expertise in at least two of: macOS security, Linux Security, Cloud security (GCP/AWS/Azure), Kubernetes, CI/CD pipelines.
• Track record of discovering novel attack vectors and chaining vulnerabilities creatively.
• Experience conducting adversarial simulations against well-defended environments.
• Strong engineering skills (Python, Go, or similar).
• Ability to write clear findings that drive action, helping teams understand risk and prioritise fixes.
• Collaborative approach, working in close collaboration with the blue team.

Strong candidates may also have experience with:

• Prior work at organisations with state actor threat models.
• Interest in AI safety and how security engineering contributes to responsible AI developments.
• Background testing AI/ML systems or agentic workflows.
• Familiarity with detection engineering and SIEM/EDR platforms from the defensive side.
• Experience with data centre security or hardware-based attacks.

Logistics

• Education requirements: We require at least a Bachelor's degree in a related field or equivalent experience.
• Location-based hybrid policy: Currently, we expect all staff to be in one of our offices at least 25% of the time. However, some roles may require more time in our offices.
• Visa sponsorship: We do sponsor visas! However, we aren't able to successfully sponsor visas for every role and every candidate. But if we make you an offer, we will make every reasonable effort to get you a visa, and we retain an immigration lawyer to help with this.

We encourage you to apply even if you do not believe you meet every single qualification. Not all strong candidates will meet every single qualification as listed. Research shows that people who identify as being from underrepresented groups are more prone to experiencing imposter syndrome and doubting the strength of their candidacy, so we urge you not to exclude yourself prematurely and to submit an application if you're interested in this work.

Your safety matters to us. To protect yourself from potential scams, remember that Anthropic recruiters only contact you from @anthropic.com email addresses. In some cases, we may partner with vetted recruiting agencies who will identify themselves as working on behalf of Anthropic. Be cautious of emails from other domains. Legitimate Anthropic recruiters will never ask for money, fees, or banking information before your first day. If you're ever unsure about a communication, don't click any links—visit anthropic.com/careers directly for confirmed position openings.

How we're different

We believe that the highest-impact AI research will be big science. At Anthropic we work as a single cohesive team on just a few large-scale research efforts. And we value impact — advancing our long-term goals of steerable, trustworthy AI — rather than work on smaller and more specific puzzles. We view AI research as an empirical science, which has as much in common with physics and biology as with traditional efforts in computer science. We're an extremely collaborative group, and we host frequent research discussions to ensure that we are pursuing the highest-impact work at any given time. As such, we greatly value communication skills.

The easiest way to understand our research directions is to read our recent research. This research continues many of the directions our team worked on prior to Anthropic, including: GPT-3, Circuit-Based Interpretability, Multimodal Neurons, Scaling Laws, AI & Compute, Concrete Problems in AI Safety, and Learning from Human Preferences.

Come work with us!

Anthropic is a public benefit corporation headquartered in San Francisco. We offer competitive compensation and benefits, optional relocation assistance, and a comprehensive benefits package that includes medical, dental, and vision insurance, 401(k) matching, and paid time off.

XML job scraping automation by YubHub

We’re looking for a Security Engineering Lead to own and drive Anthropic’s Corporate Security programme. This is a player-coach Tech Lead Manager (TLM) role: you’ll be both the most senior technical individual contributor on corporate security and the people leader for a lean, high-impact team of Security Engineers.

Corporate Security at Anthropic encompasses everything that protects our people, endpoints, networks, SaaS ecosystem, and corporate data—the full surface area outside of production infrastructure. The scope is broad and the team is deliberately small, which means you’ll need deep technical skills across multiple domains, strong judgment about where to invest, and a bias toward automation and engineering-driven solutions over manual process.

You’ll report into Security leadership and partner closely with IT, Infrastructure Security, Detection & Response, and GRC teams. This role is high-visibility and high-autonomy: you’ll be expected to define the roadmap, make architectural decisions, and represent Corporate Security across the company.

Responsibilities:

Technical Leadership & Hands-on Engineering

• Own the security architecture, tooling, and controls for Anthropic’s corporate environment end-to-end, including endpoint fleets (macOS, Windows, ChromeOS), campus and office networks, SaaS applications, mobile devices
• Design, build, and ship security automation, integrations, and internal tooling—including leveraging Claude and LLMs to accelerate security workflows
• Define and enforce security baselines, hardening standards, and configuration policies across all corporate platforms
• Define what it means to operate safely in an environment where AI agents act more like humans than actual humans
• Evaluate, select, deploy, and operate corporate security tools (EDR/XDR, MDM, ZTNA, CASB/SSPM, email security, DLP, browser security, etc.)
• Drive vulnerability management for corporate assets, including patch orchestration, risk-based prioritization, and exception management
• Lead security reviews of new SaaS adoptions, corporate infrastructure changes, and IT projects

People Leadership & Team Building

• Manage, mentor, and grow a purposefully lean team of Security Engineers; set clear expectations, run effective 1:1s, and create an environment where engineers do the best work of their careers
• Hire and build the team as scope expands—own the hiring bar and pipeline for Corporate Security Engineering roles
• Balance your own IC contributions with the team’s needs; know when to go deep on a problem yourself and when to delegate and coach
• Foster a culture of operational excellence, blameless incident review, and continuous improvement

Strategy & Cross-Functional Partnership

• Define and own the Corporate Security roadmap, aligning investments to Anthropic’s risk profile and growth trajectory
• Partner with IT Operations to ensure security is embedded in endpoint provisioning, network design, and SaaS lifecycle management
• Collaborate with Detection & Response on telemetry coverage, detection engineering, and incident handling for corporate-sourced events
• Partner with Infrastructure and Security Engineering teams to ensure security standards are consistent across all of Anthropic
• Communicate security posture, risks, and investment needs to Security leadership and cross-functional stakeholders clearly and persuasively

You may be a good fit if you:

• Have 8+ years of Security Engineering experience in a corporate/enterprise security domain (endpoint security, network security, SaaS security, identity, or a combination)
• Have 2+ years of experience managing or tech-leading a team of engineers, with a demonstrated track record of developing talent and shipping results through others
• Are a strong engineer who still writes code regularly—you can prototype a tool, write a detection, build an integration, or debug a complex configuration issue
• Have deep experience with macOS fleet security (this is our primary platform) and solid working knowledge of Windows and ChromeOS security
• Have hands-on experience deploying and operating EDR/XDR, MDM, ZTNA/zero trust, and identity security solutions at scale
• Understand modern SaaS security challenges: shadow IT, OAuth token sprawl, data exfiltration paths, SaaS-to-SaaS integrations, and SSPM/CASB tooling
• Can work independently with high autonomy, manage ambiguity, and make sound risk-based prioritization decisions in a fast-paced environment
• Have excellent communication skills and can translate complex security topics into clear recommendations for technical and non-technical audiences

Strong candidates may have:

• Securing corporate environments at high-growth AI, cloud, or developer-tools companies
• Maturing a Corporate Security function from early stage, including defining scope, selecting the initial toolset, and hiring the founding team
• Advanced macOS security (system extensions, endpoint security framework, MDM profile engineering, Declarative Device Management)
• Network security architecture for hybrid/multi-office environments, including SD-WAN, ZTNA, DNS security, and network segmentation
• Browser security and isolation technologies (e.g., Island, Talon/Palo Alto, Chrome Enterprise)
• Proficiency in Python, Go, or similar languages for building sec

XML job scraping automation by YubHub

We're seeking an exceptional engineer to join Anthropic's Detection Platform team to build and scale our next-generation security analytics infrastructure. In this role, you'll architect and implement data pipelines that process massive amounts of security telemetry, develop ML-powered detection systems, and create innovative solutions that leverage Claude to transform security operations.

Responsibilities

• Build an AI-powered platform responsible for all aspects of detection and response capabilities, from detection development to incident response
• Design and implement scalable data pipelines for ingesting and processing security telemetry across our rapidly growing infrastructure
• Architect solutions for storing and efficiently querying large volumes of security-relevant data
• Create rapid prototypes and proof-of-concepts for new security tooling and analytics capabilities
• Work closely with security and infrastructure teams to understand requirements and deliver solutions
• Mentor engineers and contribute to hiring and growth of the Security team
• Participate in on-call rotations

You may be a good fit if you

• 7+ years of experience in software engineering with a focus on security, infrastructure, or data pipelines
• Track record of building and maintaining internal developer tools or security platforms
• Strong understanding of data processing pipelines and experience working with large-scale logging systems
• Experience with test-driven software development or CI/CD (a plus for direct experience with detection-as-code workflows)
• Experience with infrastructure-as-code (Terraform, CloudFormation)
• Experience with query optimization for large datasets
• Experience building stable and scalable services on cloud infrastructure and serverless architectures
• Ability to write maintainable and secure code in Python
• Experience working with security teams and translating requirements into technical solutions
• Ability to lead technical projects with minimal guidance
• Track record of driving engineering excellence through high standards, constructive code reviews, and mentorship
• Ability to lead cross-functional security initiatives and navigate complex organizational dynamics
• Strong communication skills with the ability to translate technical concepts effectively across all organizational levels
• Demonstrated success in bringing clarity and ownership to ambiguous technical problems
• Strong systems thinking with ability to identify and mitigate risks in complex environments

Strong candidates may also have experience with

• Experience building security tooling from the ground up
• Background in implementing security monitoring solutions (SIEM, log aggregation, EDR)
• Background in detection engineering or security operations
• Experience with SOAR platform or automation development
• Experience with data lake or database architecture
• Experience with API design and internal platform creation
• Track record of applying ML/AI to security problems
• Experience scaling security operations in a high-growth environment

Logistics

Education requirements: We require at least a Bachelor's degree in a related field or equivalent experience. Location-based hybrid policy: Currently, we expect all staff to be in one of our offices at least 25% of the time. However, some roles may require more time in our offices.

Visa sponsorship: We do sponsor visas! However, we aren't able to successfully sponsor visas for every role and every candidate. But if we make you an offer, we will make every reasonable effort to get you a visa, and we retain an immigration lawyer to help with this.

We encourage you to apply even if you do not believe you meet every single qualification. Not all strong candidates will meet every single qualification as listed. Research shows that people who identify as being from underrepresented groups are more prone to experiencing imposter syndrome and doubting the strength of their candidacy, so we urge you not to exclude yourself prematurely and to submit an application if you're interested in this work.

Your safety matters to us. To protect yourself from potential scams, remember that Anthropic recruiters only contact you from @anthropic.com email addresses. In some cases, we may partner with vetted recruiting agencies who will identify themselves as working on behalf of Anthropic. Be cautious of emails from other domains. Legitimate Anthropic recruiters will never ask for money, fees, or banking information before your first day. If you're ever unsure about a communication, don't click any links—visit anthropic.com/careers directly for confirmed position openings.

How we're different

We believe that the highest-impact AI research will be big science. At Anthropic we work as a single cohesive team on just a few large-scale research efforts. And we value impact — advancing our long-term goals of steerable, trustworthy AI — rather than work on smaller and more specific puzzles. We view AI research as an empirical science, which has as much in common with physics and biology as with traditional efforts in computer science. We're an extremely collaborative group, and we host frequent research discussions.

XML job scraping automation by YubHub

We are seeking a GRC Automation Lead to join our GRC organisation and build the technical foundation for how we scale our risk and compliance programs. In this role, you will lead the team that designs and implements automated workflows, data pipelines, and integrations that transform manual compliance processes into scalable engineering systems.

This is a greenfield opportunity to establish the team, architecture, and integrations that will define how we approach governance, risk, and compliance at Anthropic. The core challenge is a data problem: compliance information lives across dozens of systems—cloud infrastructure, identity providers, HR platforms, ticketing tools, code repositories—and your job is to design systems that bring it together, normalise it, and make it actionable.

At Anthropic, you'll also have a unique advantage: the ability to design AI-powered workflows where Claude acts as an extension of your team, handling tasks that would traditionally require additional headcount or manual effort. You'll need ingenuity to identify where agentic AI can accelerate evidence collection, interpret unstructured data, triage compliance gaps, and augment human judgment in risk assessments.

Working closely with Security, IT, and Engineering teams, you'll translate compliance and regulatory requirements into solutions that support audit programs including SOC 2, ISO, HIPAA, and FedRAMP, building systems that combine traditional automation with AI capabilities to achieve scale that wouldn't otherwise be possible.

Responsibilities:

• Lead the team that establishes foundational GRC processes and architecture. Design and build automated workflows for risk management and compliance, creating scalable systems that enable continuous monitoring as Anthropic grows.

• Build data pipelines that aggregate risk, control, and asset information from across our technology stack. This means solving hard data integration problems: mapping disparate schemas, handling inconsistent data quality, and creating unified views of compliance posture through dashboards and reporting tools.

• Inform GRC platform strategy and implementation: in partnership with other programs, evaluate, select, and deploy tooling that meets our compliance requirements.

• Translate written policies and compliance requirements into policy-as-code—working with Engineering and Security teams to express requirements as enforceable rules, automated checks, and continuous validation rather than static documents.

• Establish feedback loops between policy and implementation: surface where technical controls diverge from written requirements, identify where policies need to evolve based on infrastructure realities, and ensure that compliance requirements are expressed in terms engineers can act on.

• Design and deploy agentic AI workflows that extend team capacity, using Claude to automate evidence analysis, monitor control effectiveness, draft audit responses, interpret policy documents, and handle other tasks that require reasoning over unstructured information.

• Design and maintain integrations connecting GRC tooling with cloud infrastructure, identity management systems, HRIS platforms, ticketing systems, version control, and CI/CD pipelines—working with engineers to implement integrations that enable automated evidence collection and continuous compliance validation.

• Build and lead the GRC Automation function as we scale: hiring team members, establishing practices, and defining the technical roadmap for governance and compliance automation at Anthropic.

You may be a good fit if you:

• Have 3-4+ years of experience managing technical individual contributors or systems-focused teams, with a proven track record of building or scaling small teams (2-5 people) in security, compliance, automation, or operations functions.

• Are a systems thinker first. You understand how complex environments work: how data flows between systems, where integration points exist, what breaks when systems don't talk to each other. Your strength is designing the right architecture and environment for security monitoring, not necessarily implementing it yourself.

• Have 5+ years of experience designing automated workflows, data pipelines, or system integrations, whether through traditional development, low-code platforms, GRC tools, or process automation. We care about your ability to solve integration problems, not your programming language proficiency.

• Proficiency to write production level code in at least one programming language (e.g., Python, Rust, Go)

• Have a relentless focus on data integration: you understand how to pull data from multiple sources, normalise it, join it meaningfully, and surface insights. You're comfortable reasoning about messy, inconsistent data and designing systems that handle edge cases gracefully.

• Understand APIs and integration patterns conceptually: REST APIs, webhooks, authentication flows, polling vs. push architectures, and can evaluate systems based on how well they expose data and support automation, even if you're not writing the integration code yourself.

• Can work independently with minimal guidance, taking ownership of complex problems from design through implementation while managing ambiguity inherent in early-stage programs.

• Have strong analytical and problem-solving skills, with the ability to break down complex problems into manageable parts and develop creative solutions.

• Are able to communicate complex technical ideas to both technical and non-technical stakeholders, with a strong focus on collaboration and teamwork.

• Are passionate about staying up-to-date with industry trends and emerging technologies, with a willingness to learn and adapt to new tools and techniques.

XML job scraping automation by YubHub

We are seeking an IT Administrator - Endpoint Management to own the enterprise endpoint strategy with primary responsibility for administering Replit’s MDM platforms, enforcing secure baseline configurations aligned to CIS Level 1 benchmarks and ensuring all corporate endpoints (primarily macOS) are properly patched, compliant, and securely configured.

What You'll Do

• Own and administer enterprise endpoint management platforms with primary responsibility for Iru/Kandji configuration, policy design, and lifecycle management

• Establish and enforce enterprise endpoint standards aligned to CIS Level 1 benchmarks

• Design, implement, and maintain secure baseline configurations for macOS endpoints ensuring systems are hardened and secure by default

• Ensure all endpoints remain compliant with patching policies, minimum OS requirements, and approved software versions through automated enforcement

• Administer and maintain an internal approved application catalog including packaging, version control, testing and secure deployment

• Ensure endpoint detection and response (EDR) tooling is properly deployed, configured and monitored (SentinalOne preferred)

• Implement and enforce appropriate data loss prevention (DLP) measures across endpoints to protect corporate data and intellectual property

• Develop compliance dashboards and reporting to track endpoint posture, remediation timelines and risk exposure

• Partner closely with Security Operations (SecOps) to investigate, contain, and remediate endpoint-related security incidents

• Participate in incident response activities including forensic coordination, containment actions and post-incident remediation

• Contribute to internal and external audits, ensuring endpoint controls meet SOC 2 and ISO 27001 requirements; prepare evidence and support auditor walkthroughs

• Own licensing strategy across administered platforms, ensuring appropriate license assignment, cost optimization, feature alignment, renewal management and utilization reporting

• Continuously evaluate new endpoint features, security capabilities, and OS updates

• Create and maintain technical documentation, configuration standards and operational runbooks

Required Skills & Experience

• 6+ years of experience in endpoint administration, device management, and enterprise IT operations in a cloud-first environment

• Hands-on expertise administering Iru/Kandji or comparable Apple-focused MDM solutions

• Understanding of MDM solutions for Microsoft Windows and Linux (Jump Cloud preferred)

• Strong understanding of CIS Level 1 controls and endpoint hardening principles

• Experience deploying and administering EDR solutions and coordinating with security teams on alert triage and remediation

• Experience managing OS patching strategies, update enforcement policies and compliance reporting

• Familiarity with DLP technologies and endpoint-based data protection controls

• Experience participating in compliance programs aligned to SOC 2 and ISO 27001 frameworks supporting audit evidence collection and control validation processes

• Strong troubleshooting skills with the ability to diagnose complex endpoint configuration and policy conflicts

• Clear documentation and communication skills with the ability to articulate technical risk and remediation strategies

Bonus Qualifications

• Active Replit user and passionate about making software creation more accessible

• Been part of a rapid growth SaaS startup

Full-Time Employee Benefits Include

• Competitive Salary & Equity

• 401(k) Program with a 4% match

• Health, Dental, Vision and Life Insurance

• Short Term and Long Term Disability

• Paid Parental, Medical, Caregiver Leave

• Commuter Benefits

• Monthly Wellness Stipend

• Autonomous Work Environment

• In Office Set-Up Reimbursement

• Flexible Time Off (FTO) + Holidays

• Quarterly Team Gatherings

• In Office Amenities

Want to learn more about what we are up to?

• Meet the Replit Agent

• Replit: Make an app for that

• Replit Blog

• Amjad TED Talk

Interviewing + Culture at Replit

• Operating Principles

• Reasons not to work at Replit

Compensation Range

$95K - $175K

XML job scraping automation by YubHub

Location

San Francisco

Employment Type

Full time

Department

Security

Compensation

• San Francisco $347K – $490K • Offers Equity

The base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. If the role is non-exempt, overtime pay will be provided consistent with applicable laws. In addition to the salary range listed above, total compensation also includes generous equity, performance-related bonus(es) for eligible employees, and the following benefits.

• Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts

• Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)

• 401(k) retirement plan with employer match

• Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)

• Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees

• 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick or safe time (1 hour per 30 hours worked, or more, as required by applicable state or local law)

• Mental health and wellness support

• Employer-paid basic life and disability coverage

• Annual learning and development stipend to fuel your professional growth

• Daily meals in our offices, and meal delivery credits as eligible

• Relocation support for eligible employees

• Additional taxable fringe benefits, such as charitable donation matching and wellness stipends, may also be provided.

More details about our benefits are available to candidates during the hiring process.

This role is at-will and OpenAI reserves the right to modify base pay and other compensation components at any time based on individual performance, team or company results, or market conditions.

About the Team

OpenAI’s Security organization exists to enable safe, responsible innovation at scale. As our systems, infrastructure, and research footprint grow, we invest deeply in world-class security capabilities that protect our people, products, and users without slowing progress.

This organization safeguards OpenAI’s environments by building advanced detection systems, driving real-time response capabilities, scaling telemetry and logging infrastructure, and delivering actionable threat intelligence to stay ahead of adversaries.

About the Role

We are seeking a Global Detection and Response Lead to own and scale OpenAI’s cybersecurity detection and response operations. In this role, you will set the strategy and drive execution for security monitoring, incident response, recovery, and post-incident improvements across our global infrastructure.

You will be a hands-on leader with deep technical credibility and strong operational instincts. You will build and mentor high-performing teams, partner closely with Infrastructure, Research, Product Security, Enterprise Security, IT, and Engineering, and ensure that detection and response capabilities are embedded by design into the systems that power OpenAI.

This is a strategic and practical leadership role requiring deep technical credibility, operational rigor, and the ability to build high-performing teams in a fast-moving environment.

In this role, you will:

• Oversee global detection and response operations, including continuous monitoring, triage, investigation, containment, and remediation of security events across a diverse set of networks and infrastructure.

• Lead, mentor, and directly manage several small teams of senior engineers across observability, detection and response, and threat intelligence. Hire and scale these functions deliberately and proportionately as OpenAI’s compute footprint and platform ambitions grow.

• Ensure world-class operational rigor and readiness through management of incident playbooks, on-call and escalation paths, tabletop exercises, and continuous improvement of response quality and speed.

• Improve detection quality and coverage by partnering with engineering teams to ensure critical telemetry is available, reliable, and actionable across cloud, corporate, and production environments.

• Deeply partner across all of OpenAI to evaluate and respond to emergent security concerns in a frontier AI lab environment, such as detection and response strategies for agents operating across infrastructure at scale.

• Build a world-class security program capable of withstanding tier-1 adversaries by maximally embracing our own models to solve frontier security problems.

You might thrive in this role if you:

• Have 10+ years in cybersecurity with deep expertise in detection engineering, incident response, and security operations.

• Have an active U.S. Government security clearance (Top Secret) or willingness and eligibility to obtain one.

• Are mission-oriented, have unimpeachable integrity, and are passionate and motivated to detect and respond to adversaries in a highly complex, fast-paced environment.

• Have deep experience building and leading detection and response, instrumentation/observability, and threat intelligence teams across a global footprint, including airgapped and sovereign environments.

• Have stellar leadership skills, and a demonstrated history of driving durable, and continuous improvements to programs, processes, and people.

• Have exceptional written and verbal communication skills, can remain calm under pressure, and can effectively run command of security incidents involving numerous stakeholders across a diverse gamut of teams, expertise, and seniority.

• Have deep expertise in modern observability stacks (e.g., SIEM, data lakes, EDR, cloud telemetry, logging) and detection primi

XML job scraping automation by YubHub

About the Team

Security is at the foundation of OpenAI’s mission to ensure that artificial general intelligence benefits all of humanity.

The Security team protects OpenAI’s technology, people, and products. We are technical in what we build but are operational in how we do our work, and are committed to supporting all products and research at OpenAI. Our Security team tenets include: prioritizing for impact, enabling researchers, preparing for future transformative technologies, and engaging a robust security culture.

About the Role

We are seeking a senior Global Security Investigator with a technical background to lead complex, long-running security investigations involving a full spectrum of threats – whether originating from internal employees, external threat actors, or supply chain partners. This role is about seeing the full chessboard and independently driving complex, multi-month cases across cyber, physical, and human domains.

In this role you will:

• Independently conduct comprehensive security investigations from initial detection to resolution, including cases involving insiders, external actors, and supply chain and third-party risks.

• Lead proactive, data-driven threat-hunting efforts that weave together disparate signals to surface undetected insider or external threats before they escalate into incidents.

• Perform comprehensive technical analysis of complex hardware, software, and supplier supply chains to identify, enumerate, and mitigate risks.

• Partner closely with cross-functional teams, including Human Resources, Legal, Security, and IT, and external stakeholders or law enforcement when necessary.

• Collaborate with technical counterparts to enhance detections, resolve telemetry gaps, and implement new capabilities to identify security issues involving cyber, physical, and human domains.

• Collect, preserve, and analyze evidence from a variety of sources, including log data, digital forensics, subject interviews, access records, threat intelligence, and open-source intelligence (OSINT), to support investigative findings.

• Continuously improve investigative procedures and security controls based on investigations and lessons learned.

You might thrive in this role if you have:

• Bachelor’s degree in Criminal Justice, Cybersecurity, or a related field (or equivalent experience) and 8+ years of investigative experience in counterintelligence, insider risk, forensic investigations, cybersecurity, supply chain security, or related domains.

• Unimpeachable integrity, sound judgment, and the ability to handle confidential matters with discretion.

• An active US security clearance, or willingness and eligibility to obtain one.

• Deep specialization in geopolitical threat domains, with hands-on experience identifying, assessing, and mitigating adversarial risks through tailored countermeasures.

• Expert knowledge of common security tooling, including EDR, DLP, UEBA, SIEM, SOAR and other related platforms.

• Demonstrated ability to independently write complex queries, automate data workflows, and analyze structured datasets.

• Excellent written and verbal communication skills, including the ability to distill complex findings into clear, actionable reports and explain technical issues to non-technical stakeholders.

• Exceptional collaboration skills with the ability to work across diverse teams (HR, Legal, IT, etc.) to lead projects and investigations with minimal guidance.

Compensation

• San Francisco, Seattle or New York: $288K – $500K • Offers Equity

• Zone B: $230.4K – $500K • Offers Equity

The base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. If the role is non-exempt, overtime pay will be provided consistent with applicable laws. In addition to the salary range listed above, total compensation also includes generous equity, performance-related bonus for eligible employees and benefits.

Benefits

• Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts

• Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)

• 401(k) retirement plan with employer match

• Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)

• Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees

• 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick and safe time (1 hour per 30 hours worked)

• Mental health and wellness support

• Employer-paid basic life and disability coverage

• Annual learning and development stipend to fuel your professional growth

• Daily meals in our offices, and meal delivery credits as eligible

• Relocation support for eligible employees

• Additional taxable fringe benefits, such as charitable donation matching and wellness stipends, may also be provided.

More details about our benefits are available to candidates during the hiring process.

XML job scraping automation by YubHub

What you'll do

• Konzeption, Implementierung und Optimierung von SOC-Architekturen mit Fokus auf SIEM-, XDR- und Detection-Engineering-Projekten
• Entwicklung und Implementierung von Detection-Logiken, Use Cases und Monitoring-Strategien inklusive Log-Source-Onboarding und Tool-Integration

What you need

• Abgeschlossenes Studium oder vergleichbare Ausbildung sowie mindestens 4–5 Jahre Erfahrung im Bereich Cyber Security mit Fokus SOC, SIEM oder Detection Engineering
• Leidenschaft für gängigen Security-Technologien (z. B. SIEM, XDR, EDR, Vulnerability-Management-Tools) sowie gutes Verständnis von Incident-Response-Prozessen

XML job scraping automation by YubHub