486 Information Security jobs in Quincy

• Deploy, manage, and troubleshoot the vulnerability management platform to ensure reliable scanning and address coverage gaps.
• Implement and maintain network access controls and PKI infrastructure, including certificate lifecycle management to support secure system operations.
• Collaborate with IT staff to deploy digital certificates and guide secure implementation while supporting third-party risk management and compliance efforts.
• Oversee patch management and configuration for Linux and Windows environments, maintain security systems, and ensure accurate documentation of assigned systems.

• Strong foundation in cybersecurity principles, data protection, and security best practices.
• Degree in Cybersecurity, Computer Science, or a related field; relevant certifications (e.g., OSCP, CISSP, CEH) or equivalent experience.
• Proficient in troubleshooting across operating systems (Windows, Linux) and hardware (servers, laptops, workstations).
• Experienced in responding to cyber alerts and incidents; familiar with enterprise cybersecurity tools and Next-Generation Firewalls.

• Yes
• No

• Yes
• No

• Yes
• No

About the team:

The Information Security organization advances the overall state of security at Rubrik through purposeful initiatives and coordination of large security projects. Information Security builds technologies, tools, and processes to better enable teams at Rubrik to develop secure software and protect data and systems with appropriate security controls. Information Security also develops systems to monitor and respond to attacks against our systems, provides awareness education to teams on security best practices for data protection, and ensures data sharing relationships with third parties in order to securely protect Rubrik information.

About the role:

At Rubrik, our mission is to secure the world's data. Within our Information Security team, the Public Sector Compliance Team plays a critical role in unlocking strategic US government markets. We're the team that builds trust by proving our platform's integrity against the highest standards of security.

We are looking for a proactive, technically-minded problem-solver to join us. This InfoSec Senior Analyst role is a unique opportunity for a talented individual from a background in engineering, technical program management, IT, or systems analysis to pivot their career into the high-demand field of cybersecurity compliance. You will leverage your existing skills in a new context, learning the intricacies of U.S. Public Sector security controls while making a tangible impact on our products and business from day one.

Where can you make an impact?

You'll be a bridge between our technology and the stringent requirements of the U.S. government. You won't just be checking boxes; you'll be deconstructing complex technical standards, testing our product(s) against security benchmarks, and working directly with engineering to ensure our platform is hardened and compliant. This is a hands-on, mostly tactical role where your analytical abilities and technical curiosity will be paramount. Success is measured by your ability to effectively identify control gaps and collaborate with others to facilitate their remediation.

For example, you might be tasked with running security evaluation tests for our DISA STIG, collaborating with engineers on meeting FIPS 140-2 cryptographic requirements, or managing the work plan for our next third-party Common Criteria evaluation. You will develop expertise rapidly, learning from top talent and growing into a go-to resource for public sector security at Rubrik.

What you'll do :

• Drive Key Compliance Activities: Take ownership of critical work assignments for essential government certifications such as Common Criteria, DISA STIG, DoDIN APL, Section 508 accessibility, and secured personnel facility visit coordination.

• Perform Technical Analysis & Testing: Conduct hands-on security testing and evaluation (ST&E) against product security baselines or standards. You will identify gaps, document findings, and partner with internal teams to close gaps and drive remediation.

• Translate Requirements into Action: Work closely with Product Management and Engineering to translate complex compliance standards (like NIST SP 800-171 / CMMC) into clear, actionable Jira tickets and development requirements.

• Develop Essential Documentation: Author and contribute to definitive compliance artifacts, including gap analyses, test plans, security control traceability matrices (SCTM), hardening guidance, and sections of our System Security Plans.

• Become a Subject Matter Expert: Develop a deep understanding of selected Rubrik products and how to configure and operate them securely, becoming a trusted advisor on hardening best practices for federal environments.

Experience you'll need:

We encourage you to apply even if you don't meet every single requirement. We value aptitude, a relentless drive to adapt, learn, and contribute, and a commitment to excellence in all the work you perform.

• Education: Bachelor's degree or equivalent (preferably in a relevant field); supporting certifications (e.g., Security+, CISSP, CISA) a plus

• 5+ years of experience in a technical role such as Software/Systems Engineering, IT Infrastructure, Technical Program Management, Solutions Engineering, Backup Administration, or a similar field. Direct compliance experience is a plus, but not a prerequisite for a candidate with strong, transferable skills.

• Technical Aptitude: You have a proven ability to learn and understand complex technical subjects. You enjoy digging into how things work and are comfortable with concepts related to software configuration, networking, operating systems (Linux preferred), AI, and enterprise software.

• Analytical Problem-Solver: You are skilled at breaking down large, complex problems (like a government standard) into smaller, manageable parts and creating a plan to address them. You are transparent about your approach and rationale, and seek to involve others as needed so you can solve for a problem's root cause(s) vs. chasing symptoms.

• Strong Communicator & Collaborator: You can clearly articulate technical concepts both verbally and in writing, and have experience producing technical documentation, project plans, road maps, presentations, and reports. You build solid relationships and work effectively with cross-functional teams.

• Organized & Driven: You are a proactive self-starter who can structure a work plan or road map and manage multiple project streams and assignments concurrently. You prioritize and set delivery expectations effectively, find answers, and hold yourself accountable to deliver high-quality work with minimal supervision.

• Helpful:

• Familiarity with compliance frameworks like NIST RMF, NIST SP 800-53, or FedRAMP.

• Prior exposure to government security standards (STIGs, FIPS, CMMC).

• Experience with tools like Jira, Confluence, and LucidChart/Visio.

Security and Privacy Responsibilities :

This position carries special Security and Privacy Responsibilities for protecting the U.S. Federal Government's interests:

• Know, acknowledge, and follow system-specific security policies and procedures;

• Protect data and individual privacy per requirements and regulations;

• Perform ongoing activities in compliance with service and contractual obligations;

• Participate in role-based training, completing assignments on a timely basis;

• Report security issues promptly, and aid investigation when needed;

• Support controlled changes and vulnerability remediation activities; and

• Work collaboratively with Information Security in designing, implementing, assessing or enhancing system-specific security and privacy controls.

Position Risk Designation :

This position carries duties and responsibilities involving the U.S. Federal Government's interests. The selected incumbent may be subject to one or both of the additional background checks with periodic re-screening as noted below:

Position Risk Designation: Non-Sensitive, Low Risk, Tier 1

Incumbents without access to U.S. Government data may be required to complete Standard Form 85 and undergo a Tier 1 Investigation (T1) for non-sensitive positions of Low Risk. (Baseline screening; formerly National Agency Check and Inquiries (NACI)).

Position Risk Designation: Non-Sensitive, Moderate Risk, Tier 2 (Public Trust)

Incumbents with access to U.S. Government data may be required to complete Standard Form 85P and undergo Tier 2 (T2) Investigation for non-sensitive positions designated Moderate Risk.

Position Risk Designation:Moderate Risk Law Enforcement (CJIS)

When hired for a position where access to Moderate Risk criminal justice information is required, the employee must complete a fingerprint-based national criminal history background check within 30 days after the employee's start date.

The minimum and maximum base salaries for this role are posted below; additionally, the role is eligible for bonus potential, equity and benefits. The range displayed reflects the minimum and maximum target for new hire salaries for the role based on U.S. location. Within the range, the salary offered will be determined by work location and additional factors, including job-related skills, experience, and relevant education or training.

US (SF Bay Area, DC Metro, NYC) Pay Range

$145,900-$18,800 USD

The minimum and maximum base salaries for this role are posted below; additionally, the role is eligible for bonus potential, equity and benefits. The range displayed reflects the minimum and maximum target for new hire salaries for the role based on U.S. location. Within the range, the salary offered will be determined by work location and additional factors, including job-related skills, experience, and relevant education or training.

US2 (all other US offices/remote) Pay Range

131,300- 196,900 USD

Join Us in Securing the World's Data

Rubrik (NYSE: RBRK) is on a mission to secure the world's data. With Zero Trust Data Security, we help organizations achieve business resilience against cyberattacks, malicious insiders, and operational disruptions. Rubrik Security Cloud, powered by machine learning, secures data across enterprise, cloud, and SaaS applications. We help organizations uphold data integrity, deliver data availability that withstands adverse conditions, continuously monitor data risks and threats, and restore businesses with their data when infrastructure is attacked.

Linkedin ( | X (formerly Twitter) ( | Instagram ( | Rubrik.com

Inclusion @ Rubrik

At Rubrik, we are dedicated to fostering a culture where people from all backgrounds are valued, feel they belong, and believe they can succeed. Our commitment to inclusion is at the heart of our mission to secure the world's data.

Our goal is to hire and promote the best talent, regardless of background. We continually review our hiring practices to ensure fairness and strive to create an environment where every employee has equal access to opportunities for growth and excellence. We believe in empowering everyone to bring their authentic selves to work and achieve their fullest potential.

Our inclusion strategy focuses on three core areas of our business and culture:

• Our Company: We are committed to building a merit-based organization that offers equal access to growth and success for all employees globally. Your potential is limitless here.

• Our Culture: We strive to create an inclusive atmosphere where individuals from all backgrounds feel a strong sense of belonging, can thrive, and do their best work. Your contributions help us innovate and break boundaries.

• Our Communities: We are dedicated to expanding our engagement with the communities we operate in, creating opportunities for underrepresented talent and driving greater innovation for our clients. Your impact extends beyond Rubrik, contributing to safer and stronger communities.

Equal Opportunity Employer/Veterans/Disabled

Rubrik is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.

Rubrik provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, Rubrik complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. Please contact us at if you require a reasonable accommodation to apply for a job or to perform your job. Examples of reasonable accommodation include making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.

EEO IS THE LAW (

NOTIFICATION OF EMPLOYEE RIGHTS UNDER FEDERAL LABOR LAWS

Elastic, the Search AI Company, enables everyone to find the answers they need in real time, using all their data, at scale - unleashing the potential of businesses and people. The Elastic Search AI Platform, used by more than 50% of the Fortune 500, brings together the precision of search and the intelligence of AI to enable everyone to accelerate the results that matter. By taking advantage of all structured and unstructured data - securing and protecting private information more effectively - Elastic's complete, cloud-based solutions for search, security, and observability help organizations deliver on the promise of AI.

Kibana is the UI and frontend for everything we do at Elastic. It is the application platform that powers our Elastic Observability, Security, and Search Solutions. It provides building blocks and user experiences that delight our users, accelerate development, and optimize our operations. Deployed both in the cloud and on-premises, it is one of the largest open-source projects, used to answer millions of complex questions with large data sets at scale.

If you are a JavaScript developer looking for new and hard backend challenges, you will want to hear more about this role. We are looking for a top Engineer who wants to build Kibana Security platform features and services, while supporting our US government customers with strict security controls.

If this sounds like you, then let's talk. Here are some specifics:

• You will contribute to the development of our hosted and on-premise offerings
• You'll be part of a close knit team of great engineers who mentor, support, and challenge each other
• You will write code that underpins Kibana success and the Search, Observability and Security solutions, while collaborating with other Operations, Engineering, and Documentation teams
• Assist in delivering a scalable cloud offering working across everything from a few Elasticsearch clusters and Kibana instances to many thousands
• Work on a codebase that consists of UX, APIs, and services both on the client and server side
• Provide support for customers, with a focus on those in our FedRAMP environment

• At least 3 years of web application development experience
• Knowledgeable with some combination of JavaScript, TypeScript and Node.js, and willing to learn those that are missing
• Ability to work with a worldwide team in a distributed work environment
• Passionate about JavaScript or web development in general
• Knowledgeable about web application security, single-sign-on technologies, and role-based access control
• Prior experience building and operating Department of Defense (DoD) Impact Level 4 or above cloud service environments, and/or
• Eligible to work in Department of Defense (DoD) Impact Level 4 or above cloud service environments

Compensation for this role is in the form of base salary.This role does not have a variable compensation component.

The typical starting salary range for new hires in this role is listed below.In select locations (including Seattle WA, Los Angeles CA, the San Francisco Bay Area CA, and the New York City Metro Area), an alternate range may apply as specified below.

These ranges represent the lowest to highest salary we reasonably and in good faith believe we would pay for this role at the time of this posting.We may ultimately pay more or less than the posted range, and the ranges may be modified in the future.

An employee's position within the salary range will be based on several factors including, but not limited to, relevant education, qualifications, certifications, experience, skills, geographic location, performance, and business or organizational needs.

Elastic believes that employees should have the opportunity to share in the value that we create together for our shareholders. Therefore, in addition to cash compensation, this role is currently eligible to participate in Elastic's stock program.Our total rewards package also includes a company-matched 401k with dollar-for-dollar matching up to 6% of eligible earnings, along with a range of other benefits offered with a holistic emphasis on employee well-being.

The typical starting salary range for this role is:

$110,900-$75,500 USD

The typical starting salary range for this role in the select locations listed above is:

133,200- 210,700 USD

As a distributed company, diversity drives our identity. Whether you're looking to launch a new career or grow an existing one, Elastic is the type of company where you can balance great work with great life. Your age is only a number. It doesn't matter if you're just out of college or your children are; we need you for what you can do.

We strive to have parity of benefits across regions and while regulations differ from place to place, we believe taking care of our people is the right thing to do.

• Competitive pay based on the work you do here and not your previous salary
• Health coverage for you and your family in many locations
• Ability to craft your calendar with flexible locations and schedules for many roles
• Generous number of vacation days each year
• Increase your impact - We match up to 2000 (or local currency equivalent) for financial donations and service
• Up to 40 hours each year to use toward volunteer projects you love
• Embracing parenthood with minimum of 16 weeks of parental leave

Different people approach problems differently. We need that. Elastic is an equal opportunity employer and is committed to creating an inclusive culture that celebrates different perspectives, experiences, and backgrounds. Qualified applicants will receive consideration for employment without regard to race, ethnicity, color, religion, sex, pregnancy, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, disability status, or any other basis protected by federal, state or local law, ordinance or regulation.

We welcome individuals with disabilities and strive to create an accessible and inclusive experience for all individuals. To request an accommodation during the application or the recruiting process, please email will reply to your request within 24 business hours of submission.

Applicants have rights under Federal Employment Laws, view posters linked below: Family and Medical Leave Act (FMLA) Poster;Pay Transparency Nondiscrimination Provision Poster; Employee Polygraph Protection Act (EPPA) Poster and Know Your Rights (Poster)

Elasticsearch develops and distributes encryption software and technology that is subject to U.S. export controls and licensing requirements for individuals who are located in or are nationals of the following sanctioned countries and regions: Belarus, Cuba, Iran, North Korea, Russia, Syria, the Crimea Region of Ukraine, the Donetsk People's Republic ("DNR"), and the Luhansk People's Republic ("LNR"). If you are located in or are a national of one of the listed countries or regions, an export license may be required as a condition of your employment in this role. Please note that national origin and/or nationality do not affect eligibility for employment with Elastic.

Please seeherefor our Privacy Statement.

• Lead, cultivate and maintain productive working relationships with other DoD agencies managers, data stewards, and senior leadership to foster productive and positive cyber security profile Participate in the strategic planning and implementation of the Cyber Security Program
• Provide expert input to the formulation of cyber security policies based upon the Risk Management Framework (RMF) with emphasize on Joint Special Access Program Implementation Guide (JSIG) authorization process
• Advise customer on Risk Management Framework (RMF) assessment and authorization issues
• Develop and implement a security assessment plan
• Perform risk assessments and make recommendations to DoD agency customers
• Advise government program managers on security testing methodologies and processes
• Evaluate authorization documentation and provide written recommendations for authorization to government PM's
• Develop and maintain a formal Information Systems Security Program
• Ensure that all IAOs, network administrators, and other cyber security personnel receive the necessary technical and security training to carry out their duties
• Develop, review, endorse, and recommend action by the AO or DAO of system assessment documentation
• Ensure approved procedures are in place for clearing, sanitizing, and destroying various types of hardware and media
• Develop and execute security assessment plans that include verification that the features and assurances required for each protection level functionin
• Institute and implement a Configuration Control Board (CCB) charter
• Maintain a and/or applicable repository for all system authorization documentation and modifications
• Develop policies and procedures for responding to security incidents, to include investigating and reporting security violations and incidents
• Ensure proper protection or corrective measures have been taken when an incident or vulnerability has been discovered within a system
• Ensure that data ownership and responsibilities are established for each authorization boundary, to include accountability, access rights, and special handling requirements
• Ensure development and implementation of an information security education, training, and awareness program, to include attending, monitoring, and presenting local cyber security
• Evaluate threats and vulnerabilities to ascertain whether additional safeguards are needed
• Assess changes in the system, its environment, and operational needs that could affect the authorization
• Ensure that authorization is accomplished a valid Authorization determination has been given for all authorization boundaries under your purview
• Review AIS assessment plans
• Coordinate with PSO or cognizant security official on approval of external information systems (e.g., guest systems, interconnected system with another organization)
• Conduct periodic assessments of the security posture of the authorization boundaries
• Ensure configuration management (CM) for security-relevant changes to software, hardware, and firmware and that they are properly documented
• Ensure periodic testing is conducted to evaluate the security posture of IS by employing various intrusion/attack detection and monitoring tools (shared responsibility with ISSOs)
• Ensure that system recovery and reconstitution processes developed and monitored to ensure that the authorization boundary can be recovered based on its availability level determination
• Ensure all authorization documentation is current and accessible to properly authorized individuals
• Ensure that system security requirements are addressed during all phases of the system life cycle
• Establish and develop a self-inspection program within the organization
• Periodically review system security to accommodate changes to policy or technology
• Coordinate all technical security issues outside of area of expertise or responsibility with ISSE
• Provide expert research and analysis in support of expanding programs and area of responsibility as it pertains to cyber security and information technology actives
• Develop Assured File Transfers (AFT) on accordance with the JSIG
• Provide leadership, mentoring, and quality assurance for Cyber Security and Information Technology team members

• 10+ years related experience
• 2 Years SAP Experience required (Clearly place number of SAP experience years at the beginning of the resume)
• Prior performance in roles such as ISSO or ISSM
• Master's degree or equivalent experience (6 years)
• Must have expert knowledge of DoD, National and applicable service and agency security policy, manuals and standards.
• Must be able to regularly lift up to 50

• Must meet position and certification requirements outlined in DoD Directive 8570.01-M for Information Assurance Technician Level 3 or Information Assurance Manager Level 3

• Current Top Secret Clearance with SCI Eligibility
• Prior experience for access to Special Access Program Information
• Willingness to submit to a Counterintelligence polygraph

• 
  
  Interesting Work:
  
  
  
  Our co-workers support some of the most important and critical programs to our national defense and security.
  
  
• 
  
  Values:
  
  
  
  Our first core value is that employees come first. We challenge our co-workers to provide the highest level of support and service, and reward them with some of the best benefits in the industry.
  
  
• 
  
  100% Employee Owned:
  
  
  
  We have a stake in each other's success, and the success of our customers. It's also nice to know what's going on across the company; we have company wide town-hall meetings three times a year.
  
  
• 
  
  Great Benefits - Most Full-Time Staff Are Eligible for:
  
  
  
• Starting PTO accrual of 20 days PTO/year + 10 holidays/year
  
• Flexible schedules
  
• 6% 401k match with immediate vesting
  
• Semi-annual bonus eligibility (July and December)
  
• Company funded Employee Stock Ownership Plan (ESOP) - a separate qualified retirement account
  
• Up to $10,000 in annual tuition reimbursement
  
• Other company funded benefits, like life and disability insurance
  
• Optional zero deductible Blue Cross/Blue Shield health insurance plan
  




• 
  
  Track Record of Success:
  
  
  
  We have grown every year since our founding in 1993.
  
  

Modern Technology Solutions, Inc. (MTSI) is a 100% employee-owned engineering services and solutions company that provides high-demand technical expertise in Digital Transformation, Modeling and Simulation, Rapid Capability Development, Test and Evaluation, Artificial Intelligence, Autonomy, Cybersecurity and Mission Assurance

MTSI delivers capabilities to solve problems of global importance. Founded in 1993, MTSI today has employees at over 20 offices and field sites worldwide.

For more information about MTSI, please visit

MTSI embraces nine core values including our first core value of Employees come first. Consistent with our Core Values, we are committed to Equal Opportunity, making decisions without regard to race, color, religion, sex, national origin, age, military/veteran status, disability, or any other characteristics protected by applicable law. MTSI is committed to Equal Employment Opportunity and providing reasonable accommodations to applicants and employees with physical and/or mental disabilities.

We anticipate the application window for this opening will close on - 29 Jul 2025

At Medtronic you can begin a life-long career of exploration and innovation, while helping champion healthcare access and equity for all. You’ll lead with purpose, breaking down barriers to innovation in a more connected, compassionate world.

A Day in the Life

At Medtronic, we bring bold ideas forward with speed and decisiveness to put patients first in everything we do. In-person exchanges are invaluable to our work. We're working onsite 4 days a week as part of our commitment to fostering a culture of professional growth and cross-functional collaboration as we work together to engineer the extraordinary. In your role, you may work from one the following Medtronic sites:

• Mounds View, Minnesota • Lafayette, Colorado

• Fridley, Minnesota (OHQ) • Irvine, California (UCI)

• Rice Creek, Minnesota • Jacksonville, Florida

• Boston, Massachusetts

The Manager of Application Security leads the organization's efforts to secure applications across the software development lifecycle (SDLC). This role collaborates with engineering, DevOps, and product teams to embed security best practices into design, development, and deployment processes. The manager is responsible for defining the application security strategy, leading security reviews, overseeing threat modeling, and managing security tools and programs like SAST, DAST, SCA, and bug bounty initiatives.

• Lead the application security strategy and team, integrating security into the software development lifecycle and CI/CD pipelines.

• Oversee the implementation and management of security tools, secure coding practices, threat modeling, and vulnerability remediation efforts.

• Manage vendor contracts and relationships for security tools and services, including contract negotiation, compliance, and performance tracking.

We believe that when people from different cultures, genders, and points of view come together, innovation is the result —and everyone wins. Medtronic walks the walk, creating an inclusive culture where you can thrive. Our unwavering commitment to inclusion, diversity, and equity (ID&E) means zero barriers to opportunity within Medtronic and a culture where all employees belong, are respected, and feel valued for who they are and the life experiences they contribute. We know equity starts beyond our workplace, and we must play a role in addressing systemic inequities in our communications if we hope to have long-term sustainable impact. Anchored in our Mission, we continue to drive ID&E forward both to enhance the well-being of Medtronic employees and to accelerate innovation that brings our lifesaving technologies to more people in more places around the world.

Bring your talents to an industry leader in medical technology and healthcare solutions – we’re a market leader and growing every day. You can be proud to be a part of technologies that are rooted in our long history of mission-driven innovation. You will be empowered to shape your own career. We encourage and support your growth with the training, mentorship, and guidance you need to own your future success. Together, we can transform healthcare. Join us for a career in IT that changes lives. Medtronic is committed to fostering a diverse and inclusive culture. Check out the accomplishments of our Women in IT group!

CAREERS THAT CHANGE LIVES

• Develop, implement, and continuously improve the organization’s application security program and roadmap.

• Lead and mentor a team of application security engineers and analysts.

• Collaborate with development, DevOps, and product teams to integrate security controls into CI/CD pipelines and software development practices (DevSecOps).

• Conduct threat modeling, secure code reviews, and vulnerability assessments.

• Manage and optimize application security tools (e.g., SAST, DAST, SCA, RASP, WAF, container scanning).

• Oversee the evaluation, selection, onboarding, and management of third-party security vendors and tools.

• Manage vendor relationships, including negotiating contracts, setting service-level agreements (SLAs), and tracking performance against KPIs.

• Ensure all third-party security tools and services comply with legal, procurement, and cybersecurity policy requirements.

• Review and assess vendor security practices as part of risk management and due diligence.

• Partner with internal stakeholders (Legal, Procurement, Finance) to manage contract renewals, budget forecasting, and spend tracking related to security services.

• Partner with internal teams to prioritize and remediate vulnerabilities discovered through testing, bug bounty, or vendor reports.

• Develop secure coding standards and deliver developer training to promote secure development practices.

• Track, report, and present application security KPIs to leadership.

• Stay current with evolving threats, vulnerabilities, and application security trends.

• Contribute to incident response efforts when application-related security incidents occur.

• Expert knowledge in AWS, and GITHUB, and well informed on other emerging technologies.

MUST HAVE (Minimum Qualifications)

• Bachelor’s degree

• 5+ years of experience with a bachelor’s degree or 3+ years of experience with an advanced degree

NICE TO HAVE (Preferred Qualifications)

• Strongly Preferred:

• Strong understanding of Cyber Security NIST frameworks, OWASP

• Strong communication skills to upper management and leadership

• Strong ability to collaborate with other IT organizations and business partners

• Experience managing a third-party vendor contracts

• Expert in agile work processes

• Strategic thinker

• Professional certifications such as CISSP, CSSLP, GWAPT, or OSWE.

• Experience with DevSecOps practices and tools in a cloud-native environment (AWS, Azure, GCP).

• Experience working in Agile or DevOps environments.

Physical Job Requirements

The above statements are intended to describe the general nature and level of work being performed by employees assigned to this position, but they are not an exhaustive list of all the required responsibilities and skills of this position. 

The physical demands described within the Responsibilities section of this job description are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. For Office Roles: While performing the duties of this job, the employee is regularly required to be independently mobile. The employee is also required to interact with a computer, and communicate with peers and co-workers. Contact your manager or local HR to understand the Work Conditions and Physical requirements that may be specific to each role.

Benefits & Compensation

Medtronic offers a competitive Salary and flexible Benefits Package

A commitment to our employees lives at the core of our values. We recognize their contributions. They share in the success they help to create. We offer a wide range of benefits, resources, and competitive compensation plans designed to support you at every career and life stage.

Salary ranges for U.S (excl. PR) locations (USD):$132,800.00 - $199,200.00

This position is eligible for a short-term incentive called the Medtronic Incentive Plan (MIP).

The base salary range is applicable across the United States, excluding Puerto Rico and specific locations in California. The offered rate complies with federal and local regulations and may vary based on factors such as experience, certification/education, market conditions, and location. Compensation and benefits information pertains solely to candidates hired within the United States (local market compensation and benefits will apply for others).

The following benefits and additional compensation are available to those regular employees who work 20+ hours per week: Health, Dental and vision insurance, Health Savings Account, Healthcare Flexible Spending Account, Life insurance, Long-term disability leave, Dependent daycare spending account, Tuition assistance/reimbursement, and Simple Steps (global well-being program).

The following benefits and additional compensation are available to all regular employees: Incentive plans, 401(k) plan plus employer contribution and match, Short-term disability, Paid time off, Paid holidays, Employee Stock Purchase Plan, Employee Assistance Program, Non-qualified Retirement Plan Supplement (subject to IRS earning minimums), and Capital Accumulation Plan (available to Vice Presidents and above, or subject to IRS earning minimums).

Regular employees are those who are not temporary, such as interns. Temporary employees are eligible for paid sick time, as required under applicable state law, and the Employee Stock Purchase Plan. Please note some of the above benefits may not apply to workers in Puerto Rico.

Further details are available at the link below:

Medtronic benefits and compensation plans (

About Medtronic

We lead global healthcare technology and boldly attack the most challenging health problems facing humanity by searching out and finding solutions.

Our Mission — to alleviate pain, restore health, and extend life — unites a global team of 95,000+ passionate people.

We are engineers at heart— putting ambitious ideas to work to generate real solutions for real people. From the R&D lab, to the factory floor, to the conference room, every one of us experiments, creates, builds, improves and solves. We have the talent, diverse perspectives, and guts to engineer the extraordinary.

Learn more about our business, mission, and our commitment to diversity here ( .

It is the policy of Medtronic to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, Medtronic will provide reasonable accommodations for qualified individuals with disabilities.

If you are applying to perform work for Medtronic, Inc. (“Medtronic”) in any position which will involve performing at least two (2) hours of work on average each week within the unincorporated areas of Los Angeles County, you can find here ( a list of all material job duties of the specific job position which Medtronic reasonably believes that criminal history may have a direct, adverse and negative relationship potentially resulting in the withdrawal of a conditional offer of employment. Medtronic will consider for employment qualified job applicants with arrest or conviction records in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.

We lead global healthcare technology and boldly attack the most challenging health problems facing humanity by searching out and finding solutions.

Our Mission — to alleviate pain, restore health, and extend life — unites a global team of 95,000+ passionate people.

We are engineers at heart— putting ambitious ideas to work to generate real solutions for real people. From the R&D lab, to the factory floor, to the conference room, every one of us experiments, creates, builds, improves and solves. We have the talent, diverse perspectives, and guts to engineer the extraordinary.

We change lives . Each team member, each day, helps to improve and redefine how the world treats the most pressing health conditions, from heart disease to diabetes. Our industry leadership comes from the passion and ingenuity of our people. That’s who we are. Working alongside one another, we use science, medicine, and a profound understanding of the human body to build extraordinary technologies that can transform lives.

We build extraordinary solutions as one team . With one Medtronic Mindset defining how we work. Speed and decisiveness run through our DNA. Diverse perspectives inspire our bold answers to any challenge that comes our way. And we deliver results the right way, breakthrough after patient breakthrough.

This life-changing career is yours to engineer . By bringing your ambitious ideas, unique perspective and contributions, you will…

• Build a better future, amplifying your impact on the causes that matter to you and the world

• Grow a career reflective of your passion and abilities

• Connect to a dynamic and inclusive culture that welcomes the challenge of life-long learning

These commitments set our team apart from the rest:

Experiences that put people first . Respect for people is the hallmark of our humanity. It fuels our team to positively impact even a single life. And it means we put our people first at Medtronic as well, creating a culture of belonging and always pushing to get you the career-building resources you need.

Life-transforming technologies . No matter your role, you contribute to technologies that transform lives. What we build empowers patients to live life on their terms.

Better outcomes for our world . Here, it’s about more than the bottom line. Our Mission to improve human welfare drives us. We advance healthcare, society, and equity with every design, inside and outside our walls.

Insight-driven care . Fresh viewpoints. Cutting-edge AI, data, and automation. You're shaping the future of healthcare technology and defining the next generation of breakthroughs in care

It is the policy of Medtronic to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, Medtronic will provide reasonable accommodations for qualified individuals with disabilities.

For sales reps and other patient facing field employees, going into a healthcare setting is considered an essential function of the job and we expect our employees to comply with all credentialing requirements at the hospitals or clinics they support.

This employer participates in the federal E-Verify program to confirm the identity and employment authorization of all newly hired employees. For further information about the E-Verify program, please click here ( .

For updates on job applications, please go to the candidate login page and sign in to check your application status.

If you need assistance completing your application please email

To request removal of your personal information from our systems please email

About Lumen

Lumen connects the world. We are igniting business growth by connecting people, data and applications – quickly, securely, and effortlessly. Together, we are building a culture and company from the people up – committed to teamwork, trust and transparency. People power progress.

We’re looking for top-tier talent and offer the flexibility you need to thrive and deliver lasting impact. Join us as we digitally connect the world and shape the future.

The Role

Lumen is seeking a Lead Technology Consultant to join our Security Advisory Services team. This role blends deep technical expertise with strategic advisory capabilities, supporting enterprise customers as they strengthen their cloud and infrastructure security postures. The ideal candidate will have proven experience conducting cloud security assessments, delivering risk-informed recommendations, and engaging with executive stakeholders to align security initiatives with business objectives.

Candidates should bring strong proficiency across Azure and AWS, with hands-on skills in security tooling, enterprise firewall configuration, and emerging technologies such as AI/ML platforms. This role will also support the design and delivery of tailored governance models, control frameworks, and compliance readiness assessments, helping clients build resilient and scalable security programs.

The position requires a balance of technical depth, consultative presence, and reporting acumen, with the ability to work across both strategic planning and tactical execution.

Location

This is a remote position open to candidates based anywhere in the US

The Main Responsibilities

• Conduct in-depth cloud and infrastructure security assessments across AWS, Azure, and hybrid environments using tools

• Leverage industry tools and data to assess security posture gaps, misconfigurations, and control weaknesses across customer environments

• Evaluate firewall architecture and rule sets to identify exposure risks, segmentation concerns, and policy alignment issues

• Assess AI/ML platform configurations and architecture for compliance with modern security best practices and emerging threats

• Deliver tailored executive-level reports, maturity models, and risk-based recommendations to support strategic security planning

• Translate technical assessment findings into clear, business-aligned insights for both executive leadership and technical teams

• Provide guidance on cloud governance, identity architecture, and policy enforcement models without direct implementation

• Collaborate with customer stakeholders to define remediation priorities, roadmap actions, and long-term security strategy

• Maintain working knowledge of security frameworks (e.g., NIST, CIS, HIPAA, PCI DSS) to support regulatory alignment and compliance readiness

What We Look For in a Candidate

• 8+ years of experience in cybersecurity consulting, advisory services, or cloud security assessment roles

• Proven expertise in conducting cloud and hybrid security assessments across Azure, AWS, and on-prem environments

• Familiarity with leveraging assessment tools such as Prowler, Qualys, Tenable, and Nipper to support posture and configuration evaluations

• Strong understanding of enterprise firewall platforms (e.g., Fortinet, Palo Alto, Cisco, VMware NSX) and their role in security architecture assessments

• Experience assessing AI/ML platforms, DevSecOps environments, and cloud-native services for security and compliance risks

• Demonstrated ability to produce and deliver executive-level reporting, including risk summaries, security scorecards, and strategic recommendations

• Knowledge of key enterprise platforms such as Microsoft Entra ID (Azure AD), Intune, Purview, DNS policy, and Cloudflare

• Comprehensive familiarity with industry frameworks such as NIST, CIS Controls, CMMC, HIPAA, PCI DSS, and cloud security best practices

• Excellent verbal and written communication skills, with the ability to translate technical findings into business-impact narratives

Compensation

This information reflects the anticipated base salary range for this position based on current national data. Minimums and maximums may vary based on location. Individual pay is based on skills, experience and other relevant factors.

Location Based Pay Ranges

$103,711 - $38,281 in these states: AL AR AZ FL GA IA ID IN KS KY LA ME MO MS MT ND NE NM OH OK PA SC SD TN UT VT WI WV WY

108,896 - 145,195 in these states: CO HI MI MN NC NH NV OR RI

114,082 - 152,109 in these states: AK CA CT DC DE IL MA MD NJ NY TX VA WA

#GSS

Lumen offers a comprehensive package featuring a broad range of Health, Life, Voluntary Lifestyle benefits and other perks that enhance your physical, mental, emotional and financial wellbeing. We're able to answer any additional questions you may have about our bonus structure (short-term incentives, long-term incentives and/or sales compensation) as you move through the selection process.

Learn more about Lumen's:

Benefits (

Bonus Structure

What to Expect Next

#LI-JS1

Requisition #: 338541

Background Screening

If you are selected for a position, there will be a background screen, which may include checks for criminal records and/or motor vehicle reports and/or drug screening, depending on the position requirements. For more information on these checks, please refer to the Post Offer section of our FAQ page ( . Job-related concerns identified during the background screening may disqualify you from the new position or your current role. Background results will be evaluated on a case-by-case basis.

Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

Equal Employment Opportunities

We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, gender expression, marital status, family status, pregnancy, or other legally protected status (collectively, “protected statuses”). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training.

Disclaimer

The job responsibilities described above indicate the general nature and level of work performed by employees within this classification. It is not intended to include a comprehensive inventory of all duties and responsibilities for this job. Job duties and responsibilities are subject to change based on evolving business needs and conditions.

In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information.

Please be advised that Lumen does not require any form of payment from job applicants during the recruitment process. All legitimate job openings will be posted on our official website or communicated through official company email addresses. If you encounter any job offers that request payment in exchange for employment at Lumen, they are not for employment with us, but may relate to another company with a similar name.

Application Deadline

07/26/2025

JOB SPECIFICATIONS:TITLE: SOC SupervisorLOCATION: Quincy, MA (Free Parking)SCHEDULE: Saturday-Sunday (6:30am-6:30pm)PAY: $30/hour Security Operations CenterThe Security Operations Center (SOC) is a 24/7 physical security command center charged with protecting client assets, colleagues, and customers. The SOC utilizes a variety of technologies to accomplish this mission including alarm, threat management and video surveillance systems. SOC Console Operators use these systems to identify and respond to physical security incidents. These incidents often include violations of company policy as well as the law. In the performance of these duties, SOC Console Operators regularly interact with law enforcement officers, emergency services personnel, internal business lines and senior management. SOC Console Operators also perform administrative work in support of this mission. Core FunctionsMonitor burglar alarm, threat management and video surveillance systems. Investigate and respond to activity in accordance with established procedures.Coordinate incident response between law enforcement personnel, onsite security teams and various internal business teams.Escalate major incidents to client management as needed.Prepare written reports summarizing these incidents along with actions performed.Answer both emergency and non-emergency phone calls.Provide callers with guidance in regard to physical security matters.Dispatch emergency services for life safety events including medical emergencies.Provision physical access to corporate offices and retail branch locations. Assist vendors and other personnel with after-hours access as needed.Regularly test alarm equipment to ensure proper operation.Troubleshoot equipment problems with access control, burglar alarm and video surveillance systems. Open service calls to resolve issues as needed.Complete additional administrative work as assigned.Experience & Skills1 year of customer service experience. Prior call center or command center experience strongly preferred. Strong verbal and written communication skills. Ability to maintain composure in stressful situations and maketimely, well-informed decisions based upon a comprehensive knowledge of SOC operating procedures.Ability to handle NPPI data and other types of confidential information with discretion.Proficiency with Windows O/S and Microsoft products (i.e., Excel, Word, Outlook, OneNote, Teams) as well as the ability to learn new systems.Proficiency with CCURE-9000, MAS Monitoring and DMP RemoteLink/Entre is preferred but not required.Ability to self-start and work without immediate supervision.Ability to work independently as well as part of a team.Must possess reliable transportation to client location in Quincy MA “Securitas is committed to diversity, equity, inclusion and belonging in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other applicable legally protected characteristic.”EOE-M/F/Vet/Disabilities#MetroBostonSecuritas employees come from all walks of life, bringing with them a variety of distinctive skills and perspectives. United through our common purpose, we provide the security needed to safeguard our clients' assets and people. Our core values - Integrity, Vigilance and Helpfulness - are represented by the three red dots in the Securitas logo. If you live by these values, we’re looking for you to join the Securitas team.

Become a part of our caring community and help us put health first

The Senior Engineer, Offensive Security, executes high-fidelity threat actor and control validation campaigns within our BAS program. This role influences functional area strategy through technical expertise, operates with considerable autonomy on moderately complex assignments, and makes recommendations to leadership based on advanced knowledge and experience. The position focuses on Breach and Attack Simulation operations, campaign delivery, and detailed analysis, while also contributing to the overall direction of the program.

The Bigger Picture

Join a 100% remote, highly specialized offensive security team where you will have access to Hack The Box Pro Labs, all HTB role-based training paths and certifications, discretionary certification funding, and conference/training budgets. These resources will enable you to continuously advance your expertise while working on industry-leading BAS challenges at scale. You will be part of Cyber Threat Simulation (CTS), collaborating with Red Team, Penetration Testing, and Bug Bounty professionals-highly specialized experts who identify vulnerabilities so the business can address them proactively. Fridays are dedicated to research and development, allowing the team to pursue training in emerging offensive security technologies, tools, large language models (LLMs), artificial intelligence, and other relevant topics.

Mission & Impact

• Run high-fidelity threat-actor and control-validation campaigns , maintain agent health, convert raw BAS platform test results into actionable findings, and track them in the enterprise risk management platform. You will leverage your offensive security expertise to determine the most effective approach for executing simulations, design appropriate test cases for specific security countermeasures, and manage multiple projects simultaneously.

• Your week includes reviewing the latest products from the Threat Intelligence team on a specific threat actor, chaining custom Tactics, Techniques, and Procedures (TTPs) for a Threat Simulation, and developing complementary custom test cases using the platform's Python API. Additional responsibilities involve initiating a bi-weekly Security Baseline, collaborating with SIEM Engineering to tune detection logic after analyzing recent baseline results, writing concise findings for documentation in the enterprise risk management system, and conducting in-depth analysis of IOC Validation gaps.

• Why it matters : Every campaign you launch identifies real-world weaknesses before attackers can exploit them, providing Engineering and Threat Management and Response teams with valuable data to strengthen security countermeasures, review architectural and strategic security decisions, and enhance our overall security posture.

• You'll excel in this role if you are proficient in Python, enjoy transforming cyber threat intelligence into high-fidelity TTPs, thrive at mapping attacker behavior to potential detection telemetry, and prefer presenting evidence-based dashboards over debating hypotheticals.

Key Responsibilities

• Campaign Delivery : Build and execute threat-actor and control-validation campaigns using the BAS platform's pre-built threat simulation libraries, supplemented by custom test cases developed through the Python API to address specific TTPs not covered by the vendor. Ensure campaigns meet service level agreements, such as a two-week turnaround for pre-built threat simulations, while operating with limited guidance on moderately complex campaign development.

• Tool Operation & Tuning : Maintain agents, payload sets, and scheduling with considerable autonomy. Automate bi-weekly security baseline runs and create synthetic unit tests when there are changes in countermeasure configurations or architecture. Apply advanced technical knowledge to resolve complex issues.

• Data & Reporting : Draft actionable findings for SOC/IR and organize risk items within the Findings-Analysis workstream for documentation. Use independent judgment to analyze and evaluate variable factors such as network architecture, agent configuration, and detection capabilities.

• Strategic Collaboration : Collaborate with the CTI team on priority TTPs, verify annual coverage, and share new test cases with the broader team. Make recommendations regarding testing approaches based on offensive security expertise and experience.

• Continuous Improvement : Propose enhancements to security countermeasures, address detection or alerting gaps, and suggest new service-line use cases to the Lead for roadmap consideration. Your technical insights and proactive recommendations will have a significant influence on the BAS strategy.

Use your skills to make an impact

Minimum Qualifications

• Minimum 3 years of experience in offensive security roles such as Red Team, Penetration Testing, or Bug Bounty programs

• Intermediate to advanced proficiency in Python programming, or equivalent experience with interpreted languages such as PowerShell, Bash, or Ruby

• Independent technical problem-solving and analysis

• Experience with major Cloud Service Providers, including AWS, GCP, and Azure

• Demonstrated ability to work autonomously on complex technical assignments

• Experience utilizing Threat Intelligence to guide offensive security operations

• Experience testing endpoints protected by solutions such as Microsoft Defender for Endpoint, CrowdStrike, or SentinelOne

• Interest in building and testing large language models (LLMs), machine learning models, AI infrastructure, MCP, prompt engineering, and applying these technologies to offensive security operations

Preferred Qualifications

• Minimum 5 years of experience in any of the following areas:

• Malware development

• Advanced Red Team operations and threat simulation

• Threat hunting or digital forensics in enterprise environments

• Analyzing and gathering intelligence on threat actors and their TTPs

• Published speaking engagements at industry conferences such as DEF CON, BSIDES, x33fcon, Black Hat, etc.

• Relevant industry certifications, including but not limited to: OSCP, OSWE, OSED, OSCE3, CRTP, CRTE, CRTO, CRTL, CPTS, CBBH, CWEE, CAPE, MalDev Academy, OpenSecurityTraining2

• Experience with building and breaking LLMs, machine learning models, AI infrastructure, MCP, prompt engineering, and applying these technologies to offensive security operations

Remote/WAH requirements:

• WAH requirements: Must have the ability to provide a high speed DSL or cable modem for a home office. Associates or contractors who live and work from home in the state of California will be provided payment for their internet expense.

• A minimum standard speed for optimal performance of 25x10 (25mpbs download x 10mpbs upload) is required.

• Satellite and Wireless Internet service is NOT allowed for this role.

• A dedicated space lacking ongoing interruptions to protect member PHI / HIPAA information

Travel: While this is a remote position, occasional travel to Humana's offices for training or meetings may be required.

Scheduled Weekly Hours

40

Pay Range

The compensation range below reflects a good faith estimate of starting base pay for full time (40 hours per week) employment at the time of posting. The pay range may be higher or lower based on geographic location and individual pay will vary based on demonstrated job related skills, knowledge, experience, education, certifications, etc.

$117,600 - $161,700 per year

This job is eligible for a bonus incentive plan. This incentive opportunity is based upon company and/or individual performance.

Description of Benefits

Humana, Inc. and its affiliated subsidiaries (collectively, "Humana") offers competitive benefits that support whole-person well-being. Associate benefits are designed to encourage personal wellness and smart healthcare decisions for you and your family while also knowing your life extends outside of work. Among our benefits, Humana provides medical, dental and vision benefits, 401(k) retirement savings plan, time off (including paid time off, company and personal holidays, volunteer time off, paid parental and caregiver leave), short-term and long-term disability, life insurance and many other opportunities.

Application Deadline: 07-29-2025

About us

Humana Inc. (NYSE: HUM) is committed to putting health first - for our teammates, our customers and our company. Through our Humana insurance services and CenterWell healthcare services, we make it easier for the millions of people we serve to achieve their best health - delivering the care and service they need, when they need it. These efforts are leading to a better quality of life for people with Medicare, Medicaid, families, individuals, military service personnel, and communities at large.

?

Equal Opportunity Employer

It is the policy of Humana not to discriminate against any employee or applicant for employment because of race, color, religion, sex, sexual orientation, gender identity, national origin, age, marital status, genetic information, disability or protected veteran status. It is also the policy of Humana to take affirmative action, in compliance with Section 503 of the Rehabilitation Act and VEVRAA, to employ and to advance in employment individuals with disability or protected veteran status, and to base all employment decisions only on valid job requirements. This policy shall apply to all employment actions, including but not limited to recruitment, hiring, upgrading, promotion, transfer, demotion, layoff, recall, termination, rates of pay or other forms of compensation and selection for training, including apprenticeship, at all levels of employment.

Humana complies with all applicable federal civil rights laws and does not discriminate on the basis of race, color, national origin, age, disability, sex, sexual orientation, gender identity or religion. We also provide free language interpreter services. See our