Perform internal audits and vulnerability testing, ensuring security controls are monitored.
Lead security architecture governance for internal IT and projects, using Unified Architecture Framework.
Maintain compliance with security requirements and develop roadmaps to address evolving threats.
Jobgether is a platform connecting job seekers with companies. It uses AI-powered matching to ensure applications are reviewed quickly and fairly, identifying top candidates for employers.
Develop and execute tailored security strategies for each client.
Advise clients on security policies and governance structures.
Lead risk management and incident response initiatives.
Jobgether uses an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company.
Own vulnerability management, SIEM tuning and monitoring, incident response, and threat investigation.
Maintain secure baseline configurations based on industry standards.
Oversee AWS security controls and enforce cloud security guardrails.
Jobgether posts this position on behalf of a partner company. They use an AI-powered matching process to ensure applications are reviewed quickly and fairly.
Own our information security strategy and build our security roadmap.
Maintain our ISO 27001 certification, preparing for SOC 2 readiness.
Operate strategically and tactically, developing policy and reviewing cloud configurations.
ApprovalMax is redefining how finance teams manage the Money Out cycle — from purchase orders and supplier bills to employee expense management and payroll. Trusted by 18,000+ businesses worldwide, our platform empowers companies to automate financial controls, ensure compliance, and scale efficiently.
Collaborate with cross-functional teams to maintain and improve the company's comprehensive compliance program.
Manage the end-to-end audit process for SOC 2 compliance, ensuring timely and accurate completion.
Oversee the Information Security Risk Management Program, documenting identified risks, coordinating mitigation efforts.
airSlate is a global SaaS technology company that develops no-code workflow automation, electronic signature, and document management solutions. They have teammates in more than 20 countries across three continents and main hubs in the United States, Poland, Romania, Ukraine and Philippines.
Performs analysis of Alliance information security practices.
Identifies, investigates, and resolves security breaches.
Leads and performs staff training on information security.
Central California Alliance for Health (the Alliance) is an award-winning regional Medi-Cal managed care plan that provides health insurance for children, adults, seniors and people with disabilities. They currently serve more than 418,000 members with over 500 employees.
Serve as the system Security Manager / ISSO for My HealtheVet and act as the primary security point of contact for internal leadership and VA stakeholders.
Drive a risk-based security approach appropriate for a FISMA High / HVA system.
Coordinate incident response activities, including investigation support, escalation, documentation, and communication with VA security operations and CISO teams.
Oddball believes that the best products are built when companies understand and value the things they are working on. They value learning and growth and the ability to make a big impact at a small company.
Provide consistent and qualified responses to tenders and assurance questionnaires from customers.
Produce and maintain security assurance documentation required for accreditation.
Ensure compliance with relevant security standards, service management procedures, regulations, and industry best practices.
NEC Software Solutions is part of global tech giant NEC Corporation and has over 3,000 employees. They provide software to dispatch ambulances, support families, keep trains on the move, locate missing people and even test the hearing of newborn babies, working with governments, hospitals, police forces, housing providers, local authorities and more.
Own the 24‑month global security roadmap developed with an external partner; drive planning, resource allocation, cross‑region rollout, milestone tracking, and KPI delivery.
Lead the cybersecurity transformation: redesign the security operating model, establish regional capability hubs, hire and upskill teams, and integrate security into engineering and product lifecycles.
Modernize security tooling and architecture: define global architecture for IAM, cloud security, vulnerability management, SIEM/XDR, DLP, and secure SDLC integrations; manage vendor selection and lifecycle.
Black Duck Software, Inc. helps organizations build secure, high-quality software, minimizing risks while maximizing speed and productivity. With a combination of industry-leading tools, services, and expertise, Black Duck helps organizations maximize security and quality in DevSecOps and throughout the software development life cycle.
Manage information security incidents and security risks across the organisation
Own and maintain the Information Security Management System (ISMS), including creating and updating policies, procedures, and guidance
Ensure adherence to information security policies and standards
TwinStream was formed in 2019 by engineers solving complex cross-domain problems within government organisations. They provide technical excellence and exceptional service to their clients with teams working both on-site and remotely.
Lead comprehensive security audits of client security operations programs.
Analyze security monitoring and alerting to perform a gap analysis.
Conduct cyber risk assessments using industry frameworks.
They build cybersecurity software and solutions. Palo Alto Networks challenges the status quo, and they are looking for innovators who are as committed to shaping the future of cybersecurity as they are.
Coordinate compliance with standards (PCI, HIPAA, ISO 27002, SOC 1/2/3, FISMA/FedRAMP, etc.) under guidance.
Maintain evidence repositories and partner with SMEs to refresh artifacts.
Coordinate audits and certification efforts, partnering with support teams on timelines and resourcing.
Experian is a global data and technology company, powering opportunities for people and businesses around the world. As a FTSE 100 Index company listed on the London Stock Exchange (EXPN), they have a team of 22,500 people across 32 countries.
Own the end-to-end process for client and prospect security questionnaires.
Collaborate with internal stakeholders, managing timelines to ensure accurate responses.
Develop and maintain a "Trust Center" to proactively address common security questions.
Included Health is a healthcare company that delivers integrated virtual care and navigation. They aim to break down barriers to provide high-quality care for every person, offering care guidance, advocacy, and access to personalized virtual and in-person care.
Design, review and develop security architectures for systems and networks.
Conduct security assessments and communicate identified risks from vulnerability scans.
Collaborate with Product & Engineering teams ensuring security integration in projects.
Jobgether is a platform leveraging AI to match candidates with suitable job opportunities. They focus on ensuring a fair and objective candidate review process, and operate with AI powered matching and partner companies.
Design and implement resiliency across our cloud platform and CI/CD pipelines.
Embed “security as code” and help lead incident response for high-severity outages.
Partner with engineering teams to enable safe, fast delivery at scale.
Alpaca is a US-headquartered self-clearing broker-dealer and brokerage infrastructure for stocks, ETFs, options, crypto, fixed income, 24/5 trading, and more. Our global team of 230+ members spans the USA, Canada, Japan, and beyond, fostering a vibrant community.
Serve as the lead Information Assurance authority for the program.
Manage and oversee RMF lifecycle activities, including ATO maintenance.
Develop, maintain, and govern cybersecurity and information assurance policies.
Jobgether is a company that uses AI to ensure applications are reviewed quickly, objectively, and fairly. They identify the top-fitting candidates and share this shortlist with the hiring company; the final decision is managed by the internal team.
Lead security compliance aligned with federal standards.
Manage system security documentation and risk assessments.
Oversee continuous monitoring and vulnerability remediation.
Jobgether is an AI-powered matching service that connects job seekers with employers. The company ensures applications are reviewed quickly, objectively, and fairly against the role's core requirements.
Implement and enforce a formal information system security program.
Report cybersecurity-related events that impact IT authorization.
Jobgether is a company that uses an AI-powered matching process to ensure applications are reviewed quickly, objectively, and fairly. They identify top-fitting candidates and share the shortlist with the hiring company.
Advise tuning of SIEM correlation rules and use cases to identify security incidents and anomalies.
Monitor SIEM alerts, triage, and respond to security incidents in a timely manner, escalating as necessary to the appropriate team(s) for further investigation and remediation.
Perform Third Party/Supply Chain Risk Management reviews, to include security research and audit report analysis.
Defense Unicorns delivers mission value by streamlining software delivery so our customers can focus on the most important challenges. Our team is composed of innovators, software engineers, and veterans with decades of experience delivering technology programs across the federal market.