11,267 Security Expert jobs in the United States

• Lead Identity centric Workforce Security solutions team to develop authentication and access management solutions
• Drive the development of identity solutions, access patterns, modern security protocols, practicing Zero trust, least privileged, defense in depth principles
• Review and provide feedback on Identity and access management related security solutions proposed by stakeholders and can provide consultation to the partners and IT Management
• In-depth knowledge and experience on Entra ID, EPM, Sentinel, Azure, AWS Security
• Knowledge on Okta, PingFederate, Entitlement management solutions
• Strong knowledge on Identities management on Azure AD with OAuth, OIDC, SAML, SSO, MFA, Conditional access policies, MFA, Kerberos, LDAP, Identity Federations etc.
• Experience in providing security solutions for Java based Micro services, React based frontends and Android/iOS based mobile applications on the Azure
• Hands-of experience in JWT, session handling, Code signing, Certificate authentication, TLS/SSL, API Security, Application registration, application integration scenarios etc.
• wareness of API Management, Firewalls, DLP, VPNs, DNS, Azure Defender, MCAS, Sentinel, WAFs, Application Gateways, NSGs, App Proxy, Radius clusters, CDN etc.
• Good understanding of Cloud Infrastructure Entitlement Management solution (CIEM) to ensure smooth remediation of toxic combinations, high risk entitlements etc.
• Understanding and application of threat modeling concepts and methodologies
• Understanding of Applications security, OWASP standards, security best practices, browser compatibilities/storages/cookies
• cts as IAM cybersecurity expert to in solutions spanning end user computing, proxy solutions, MFA, SSO, conditional accesses, Passwordless, Yubikey, bio-metric solutions, identity and governance scenarios, Secrets Management, automation, role-based access control, Privileged identity management, just in time accesses etc.
• Participates in solutions to support- token handling, OIDC/ OAuth flows, authorization patterns, identity federation, cloud architectures, cryptography, cloud native services, cloud security etc.
• Deeper understanding on Cloud Security areas such as Policies, RBAC, activities, identities, privileged access management etc.
• bility to support operations in troubleshooting complex identity scenarios with hands-on experience on Sentinel/KQL/Audit logs etc.
• Good understanding of concepts related to docker Security, container orchestrations/Kubernetes

• Bachelor's degree in computer science or a related discipline and experience in information security, or an equivalent combination of education and work experience.
• Deep knowledge of application or infrastructure systems architecture, usually having experience with multiple system technologies.
• Excellent consultative and communication skills, and the ability to work effectively with client, partner, and IT management and st.

J ob Title Enterprise Security Architect - Information Security Expert

Corporate Title Vice President

Location Arlington, VA

Overview

Our Enterprise Security Architecture team supports the Group Security Strategy for all of Deutsche Bank. You'll be managing the Security Capability framework, driving delivery and managing a small global team as well as working with stakeholders throughout the Bank. To provide best practices for new technologies and integration the cloud into our overall Enterprise Security Architecture. As a future-thinking team, we are looking for professionals like you to help operationalize Deutsche Bank's target Enterprise Security Architecture. Our team of experts ensure the integration of advanced technologies and tools into our environment.

What We Offer You

• A diverse and inclusive environment that embraces change, innovation, and collaboration

• A hybrid working model, allowing for in-office / work from home flexibility, generous vacation, personal and volunteer days

• Employee Resource Groups support an inclusive workplace for everyone and promote community engagement

• Competitive compensation packages including health and wellbeing benefits, retirement savings plans, parental leave, and family building benefits

• Educational resources, matching gift and volunteer programs

What You'll Do

• Manage the Enterprise Security Architecture team, which includes ownership of the security capability framework to ensure alignment with industry trends, Bank security needs, threats, and general organizational requirements and work with the Security Pillar Domain Architecture team to ensure alignment of domain strategies and roadmaps with ESA Capability framework and Group Security Strategy

• Ownership of security reference architectures, including target and current state understandings of capability delivery via people, process, and technology to contribute to metrics development for security capabilities and technologies, contributing to comprehensive risk reporting

• Oversee CSO's contribution to the Bank's Enterprise Process Model (EPM). This includes ensuring accurate process information for CSO is available for legal purposes

• Accountable for functional requirements and conceptual models contributing to security capabilities and contribute to central architectural and technology processes and programs on behalf of CSO

• Facilitate proper channels of communication with internal and external stakeholders to properly discuss and understand interdependencies, facilitate architecture and technology reviews of major programs, and drive alignment across the various architectural teams in and outside of CSO

• Develop and implement data-driven methodology to incorporate IS Risk Management into the Bank's core Security Strategy to support simplification of the CSO Technology Lifecycle by identifying overlapping / duplicative technology across pillars and ensure alignment with the CSO Technology lifecycle and where necessary help develop/maintain position papers which offer guidelines and resources relating to relevant hot security topics

How You'll Lead

• Lead the Enterprise Security Architecture team. Collaborate, guide and actively engage with the Security Pillar Domain Architects and be the delegate Domain Architect for CSO

• Own the security capability framework for the Bank, it's strategies for all security domains and capability roadmaps and Accountable for the review, analysis, and approval of all new security technologies requested within the Bank

• Lead the continued maturity of the Bank's threat framework as it pertains to architecture and reporting and alignment with the MITRE ATT&CK framework

Skills You'll Need

• Bachelor's degree or equivalent required

• Significant Experience in cyber security disciplines

• Strong knowledge of cyber capabilities - including designing and deploying security solutions

• Cyber certifications are an advantage (i.e. CISSP, Security+, SABSA)

Skills That Will Help You Excel

• Excellent communication and presentation skills

• Proven record of grasping highly complex problems and turning them into actionable plans to deliver solutions

• Familiarity with working in a large, complex enterprise

Expectations

The Arlington office is 100% remote for those local to Arlington, although some collaboration days at the team's space in the Ballston We Work are expected. Flexibility to accommodate virtual meetings with global stakeholders (UK, Germany, Romania, India, Singapore) is required.

The salary range for this position in Arlington is $125,000 to $203,000.Actual salaries may be based on a number of factors including, but not limited to, a candidate's skill set, experience, education, work location and other qualifications. Posted salary ranges do not include incentive compensation or any other type of remuneration.

Deutsche Bank Benefits

At Deutsche Bank, we recognize that our benefit programs have a profound impact on our colleagues. That's why we are focused on providing benefits and perks that enable our colleagues to live authentically and be their whole selves, at every stage of life. We provide access to physical, emotional, and financial wellness benefits that allow our colleagues to stay financially secure and strike balance between work and home. Click here to learn more!

Learn more about your life at Deutsche Bank through the eyes of our current employees

The California Consumer Privacy Act outlines how companies can use personal information. If you are interested in receiving a copy of Deutsche Bank's California Privacy Notice please

#LI-REMOTE

We strive for a culture in which we are empowered to excel together every day. This includes acting
responsibly, thinking commercially, taking initiative and working collaboratively.
Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group.

We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively.

Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group.

We welcome applications from all people and promote a positive, fair and inclusive work environment.

We are an Equal Opportunity Employer - Veterans/Disabled and other protected categories. Click these links to view the following notices:EEOC Know Your Rights;Employee Rights and Responsibilities under the Family and Medical Leave Act;Employee Polygraph Protection ActandPay Transparency Nondiscrimination Provision.

ONSITE

Who We Are: Founded in 2007, SimIS Inc. is an innovative information technology solution Veteran Owned Small Business (VOSB) that models future environments, requirements, and capabilities, and then secures the enterprise from internal and external threats compliant with Federal, State, and industry standard governance to ensure client mission success. Our performance standard is “excellence,” with an outcomes-based, quality focus in our services and products, guided by our core values of honesty (in word and deed), relationships (confidence and trust with clients and partners), teamwork (shared goals, mission, and purpose), loyalty (allegiance to our client and team), and importance of others (work and win as a team).

SimIS is currently recruiting for the below listed position and this position is contingent upon award. 

Job Description:

The ideal candidate (will be expected to perform) represents a critical senior-level role responsible for architecting and maintaining robust cybersecurity solutions across both contractor and government operations, managing complex security initiatives. This position requires an experienced cybersecurity professional who will lead threat hunting operations, develop comprehensive security frameworks, and serve as the primary technical authority for all cybersecurity matters while collaborating closely with various engineering teams and government stakeholders. The selected candidate will be responsible for designing and implementing advanced security controls, conducting sophisticated penetration testing, leading incident response activities, and providing strategic direction for security operations center (SOC) activities. This role demands an individual who can effectively balance hands-on technical leadership with program-level security governance, including developing security policies, maintaining compliance with DoD security requirements, and mentoring junior security personnel. The position requires someone who can translate complex technical concepts for executive stakeholders while maintaining deep expertise in emerging threats, cutting-edge security technologies, and evolving compliance frameworks, all while working within a classified environment that demands the highest levels of discretion and security awareness.

The candidate performs the following specific assignments:

• Minimum 10 years of experience in cyber security

• Support the PM and provide direction for complex technical programs

• Leads cyber security initiatives and provides technical direction

• Develops security architecture and frameworks

• CISSP, IAT Level I certification required

• Conducts security assessments and audits

• Develops security policies and procedures

• Manages incident response and recovery

Advanced proficiency in:

• Developing security policies aligned with NIST SP 800-53, RMF, and CMMC frameworks, maintaining compliance with DoD security requirements, and mentoring junior security personnel in the use of tools like Wireshark, TCPDump, and various IDS/IPS systems.

Experience Required:

• Bachelor’s degree in Engineering from an accredited college or university with a concentration in Cybersecurity, Computer, Electrical, or Electronics Engineering, or a Bachelor’s degree from an accredited college or university in Mathematics with a concentration in Computer Science

• At least Ten (10) years of post-college full-time experience with at least 8 years managing complex technical programs

• Ten (10) years of professional experience in cybersecurity engineering

• Ten (10) years of technical and program management experience in the operation, maintenance, design, or testing of Command, Control, Communications, Computers, Intelligence, Surveillance, Reconnaissance (C4ISR) systems and equipment

• Technical and program management experience in the operation, maintenance, design, or testing of Command, Control, Communications, Computers, Intelligence, Surveillance, Reconnaissance (C4ISR) systems and equipment

• CISSP, IAT Level I certification required

• Motivated to independently achieve results

• Active clearance (SECRET/ Top Secret preferred)

Experience Desired:

• A Master’s degree in Engineering from an accredited college or university preferred

Benefits:

• Medical, Dental, and Vision  

• Short Term Disability (at no cost to you) and Long Term Disability

• Life Insurance  

• Flex Spending Accounts (FSA)

• 401(k) Savings Plan  

• Tuition Assistance Program  

• Paid Time Off (PTO)  

• 11 Federal Holidays each year  

SimIS, Inc. is an EOE / M / F / Disability / VET / Drug Free Employer  

Powered by JazzHR

Provide a short description of the Position: An application security engineer ensures software security by identifying vulnerabilities, implementing protective measures, collaborating with development teams, monitoring for suspicious activities, and staying updated on security trends.

Provide a list of the day-to-day tasks to be performed by the Selected Candidate: Conduct security analysis and documentation of PeopleSoft roles and permission lists. Map and migrate security roles to Workday, ensuring Role-Based Access Control (RBAC) best practices. Implement security policies, governance frameworks, and compliance controls (SOX, GDPR, NIST). Conduct security risk assessments and develop mitigation strategies. Provide training and documentation on Workday security policies.
Mindlance is an Equal Opportunity Employer and does not discriminate in employment on the basis of - Minority/Gender/Disability/Religion/LGBTQI/Age/Veterans.

• Collaborate with our blockchain security team to design and implement a large language model (LLM)-based AI agent for security audit tools.
• Experiment with novel AI techniques to enhance threat detection and risk assessment in blockchain environments.
• Assist in transforming cutting-edge research on AI agents into practical, scalable security auditing solutions.
• Continuously research emerging trends in LLMs, AI agent architectures, and cybersecurity, and proactively propose improvements.

• Currently pursuing or recently completed a PhD in Artificial Intelligence, Computer Science, or a related field, with a strong emphasis on machine learning, natural language processing, and/or cybersecurity.
• Deep understanding of LLM architectures (e.g., transformers) and hands-on experience in training or fine-tuning such models.
• Proficiency in Python and experience with deep learning frameworks (e.g., PyTorch or TensorFlow).
• Basic familiarity with blockchain technology and smart contract development is a plus.
• Excellent analytical skills, problem-solving capabilities, and the ability to thrive in a fast-paced, innovative startup environment.
• Strong written and verbal communication skills in English.

• Prior research or project experience in developing AI agents or automated security analysis tools.
• Exposure to security audit methodologies and vulnerability assessment, particularly in blockchain or smart contract environments.
• Familiarity with blockchain programming languages (e.g., Solidity) and platforms (e.g., Ethereum).
• Publications or contributions to leading conferences/journals in AI, NLP, or cybersecurity.
• Demonstrated ability to translate research insights into effective, production-ready tools.

• The IT Security and Compliance Analyst provides oversight of IT Security and controls, supports the IT compliance and regulatory requirements.
• You will play a key role in our Second Line of Defense, supporting our IT assessments, and remediate gaps.
• Our company Technology is on an exciting transformation journey, and you will have a great opportunity to help us transform the Security area as well.
• Compliance and Regulatory requirements.
• This position is responsible for providing support for internal and external audits, engage with business to conduct risk

• Partner with Credit Application Teams to Implement and manage IT Controls
• Provide Security & Control csulting to Application teams
• Internal Audit and Third-Party Audit Support
• Support Credit Internal Controls with IT related controls and deficiencies
• Management of High and Medium Comments identified by the Audit and application teams. (development, implementation, and sustainability of Control Improvement Plans)
• Conduct reviews of recently identified IT and IT related audit Comments
• Support Application teams with Detailed Risk Assessments and Threat Modeling
• Support Vendor Management and Business Owners with due diligence for supplier onboarding
• Support Credit Privacy and Compliance Attorneys with IT related regulatory requirements
• Support Third Party consulting engagements
• Maintain accurate JIRA User Stories and Backlog

• Strong knowledge of our company and Industry standard IT Controls and best security practices
• Solid understanding of corporate policies (ISP, Finance Manual, Corporate Directives, etc.)
• Understand risk and implement mitigating controls
• Knowledge of risk management principles, including risk assessment, mitigation, and reporting.
• Capable and comfortable working autonomously
• Strong leadership skills and results oriented
• Demonstrates ability to work in white space
• Continuous controls process improvement mentality
• Integrity - ability to "stand ground" for correct action and do the right thing
• Demonstrated ability to take ownership and accountability of all work and responsibilities
• Strong communication skills (written and oral)
• Excellent interpersonal, collaborative and team building skills

• Internal Audit - IT Auditor
• Cyber Security Services Advisor (formerly Security Controls Champion or Security Controls Practitioner)
• Preferred candidate should have a proven track record in IT security and controls, demonstrated strong controls mindset
• Knowledge in one or more of the following areas: Security services, Database Administration, cloud security, Application development or support and Networks
• Familiarity with AI/LLM
• Industry Certifications a plus (e.g., CISA, CRISC, CISM, CISSP)

• Bachelors

• Industry Certifications a plus (e.g., CISA, CRISC, CISM, CISSP)

• Medical and Dental (FastTek pays majority of the medical program)
• Vision
• Personal Time Off (PTO) Program
• Long Term Disability (100% paid)
• Life Insurance (100% paid)
• 401(k) with immediate vesting and 3% (of salary) dollar-for-dollar match