Jobright is an AI-powered career platform that helps job seekers discover the top opportunities in the US. We are NOT a staffing agency. Jobright does not hire directly for these positions. We connect you with verified openings from employers you can trust. Job Summary: PlanSource is a leading cloud-based provider of benefits administration technology and services focused on simplifying how people manage benefits through AI-powered experiences. They are seeking a strategic Director of Security Engineering and Operations to lead their security infrastructure and operations ensuring the protection of sensitive data and services for clients in the HR and benefits technology ecosystem. Responsibilities: • Define and execute the roadmap for enterprise-wide security engineering and operations. • Lead mentor and develop a high-performing team of security engineers analysts and architects. • Partner with the CISO on security program design incident response readiness and budget planning. • Oversee the architecture implementation and maintenance of security tools and technologies (e.g. EDR/XDR WAF Messaging Security Data Loss Prevention etc). • Integrate with internal processes for ITSM Change Management Release Management and Review Boards. • Drive adoption of security solutions and services to enable the business to respond to our market quickly and securely. • Ensure that runbooks guidelines and procedures are maintained for all security solutions and capabilities. • Direct 24/7 operational management of threat detection alerting and incident response working with PlanSource’s MDR service. • Establish SLAs operational runbooks and escalation protocols for the Security Operations Center (SOC). • Lead response efforts to security incidents in coordination with Legal IT and Communications teams. • Perform semi-annual Incident Response tabletop exercises. • Establish and maintain reportable metrics covering the performance of our cyber security solutions services and capabilities. • Support audits compliance efforts (e.g. SOC 2 HIPAA ISO 27001) and vulnerability remediation. • Continuously assess gaps in tooling and coverage through tabletop exercises red/purple team tests and control evaluations. • Collaborate with the GRC team on policies metrics and board-level reporting. Qualifications: Required: • 10+ years of experience in cybersecurity with at least 5 years leading security engineering and operations teams. • Proven success implementing and overseeing tools such as EDR/XDR DLP WAF PAM etc. • Experience with cloud security operations (AWS and Azure) and hybrid infrastructure environments. • Strong knowledge of cybersecurity frameworks (e.g. NIST CSF MITRE ATT&CK ISO 27002). • Track record of incident response leadership and coordinated mitigation for real-world threats. • Understanding of DevSecOps practices CI/CD pipeline security and secure code delivery. • Excellent leadership communication and cross-functional collaboration skills. Preferred: • Bachelor's degree in Information Security Computer Science Management & Information Systems or related field is preferred. • Industry certifications preferred: CISSP CISM GSEC or GIAC/GCIH. • Previous experience in a SaaS healthcare fintech or regulated industry is a strong plus. Company: PlanSource is a technology company that automates employee benefits programs. Founded in 2008 the company is headquartered in Orlando Florida USA with a team of 501-1000 employees. The company is currently Late Stage. PlanSource has a track record of offering H1B sponsorships.

At GEICO we offer a rewarding career where your ambitions are met with endless possibilities. Every day we honor our iconic brand by offering quality coverage to millions of customers and being there when they need us most. We thrive through relentless innovation to exceed our customers’ expectations while making a real impact for our company through our shared purpose. When you join our company we want you to feel valued supported and proud to work here. That’s why we offer The GEICO Pledge: Great Company Great Culture Great Rewards and Great Careers. GEICO is seeking an experienced Sr. Staff Engineer Operations Engineer with a passion for managing complex programs across multiple departments and team to build Vulnerability Management & Offensive Security operational excellence from the ground up. You will help drive our business transformation as we transition from a traditional IT model to a tech organization with engineering excellence as its mission. The Sr. Staff Engineer Operations is a key member of the Vulnerability Management & Offensive Security leadership team working across the organization to ensure successful delivery of effective security controls and prioritization of initiatives and issue management. In this role you will own a portfolio of initiatives such as compliance security engineering operational excellence and vendor engagement. This is beyond technical project management and requires a background in Vulnerability Management and Offensive Security driving deliveries of solutions and proving success with KPIs and visible metrics. The ideal candidate will have excellent communication skills real world examples in engaging the right technical partners and leadership to drive towards solutions and get people working together. As a Sr Staff Engineer you will lead efforts to identify plan and deliver program security outcomes by independently engaging a broad set of internal and external stakeholders. This also includes the following: Monitor and track signals of security gaps initiative delays compliance risks due to system issues and drive resolution. Create visuals on current performance and risk indicators related to Vulnerability Management & Offensive Security initiatives and operations. Help to develop standards on reporting Vulnerability Management & Offensive Security tool effectiveness maturity resilience and other factors in determining risks as they come up. Help drive automation of routine tasks to drive growth in security protection and detection technologies. Provide expert guidance demonstrations and lead discussions on security best practices to stakeholders and leadership. Works in lockstep with our CSIRT GRC Platform Security Development/Product organizations and Technology partner teams to ensure protection coverages proper detection event notifications documentation and standards we can all use. Organize store and manage operational best practices documentation for security solutions to protect our business products and assets in a hybrid environment (on-prem and multi-cloud). Partner with the project sponsors delivery teams and stakeholders to deliver quality solutions on time and within budget by coordinating project activities across multiple systems departments and teams. Create maintain and actively manage a detailed project schedule change control process and documentation. Identify and raise appropriate security risks in addition to presenting detailed and implementable solutions or alternatives and drive those campaigns to resolution. Drive vendor management Manage by identifying vendors coordinating vendor activities and working with Sourcing to develop statement of work and procure services. Qualifications Demonstrated understanding of vulnerability management and offensive security tooling and practices including – vulnerability scanning of infrastructure penetration testing red/purple teaming risk assessment prioritization and remediation of vulnerabilities. Familiar with CVEs CWEs CVSS and OWASP projects - Web Top Ten API Top Ten Mobile Top Ten and OWASP AI. Knowledge of data access languages such as SQL and GraphQL and the ability to construct queries against data sources. Extensive experience in engineering and solution delivery in a dynamic service provider environment. Strong knowledge of project management methodologies and best practices. Proven track record of successfully managing large/complex projects across cross-functional teams building processes and coordinating delivery Working knowledge of security services and their impact on production systems including runtime protection services detective and protective agents and/or daemon sets vulnerability and application scanning etc. Experience in a multi-cloud environment including AWS Azure and/or Google Cloud. Experience communicating and presenting to senior and junior staff with the ability to influence development partners and stakeholders. Detail and deadline oriented with effective organizational and analytic skills Strong critical thinking problem solving decision making and analytical skills Outstanding time management skills and attention to detail Excellent verbal/written communication skills including the ability to clearly document findings proposals issues and status Self-motivated and able to work independently while coordinating activities with cross-divisional teams Effective leadership qualities ability to influence without direct management authority Ability to excel in a fast-paced startup-like environment Knowledge of industry-standard security control frameworks and compliance standards including NIST PCI SOX NYDFS. Preferred Qualifications: Knowledge in a hybrid cloud environment such including Containerization VMs CI/CD pipeline IaC Experience defining KPI’s/SLAs used to drive multi-million-dollar businesses and reporting to senior leadership. Experience 10+ years in engineering focused role preferably in the tech industry 4+ years of experience with AWS GCP Azure or other cloud providers 4+ years in a senior role influencing company direction Experience applying engineering to meet or exceed third party attestation requirements (PCI SOX …). Education Bachelor’s degree in Computer Science Cyber Security or equivalent education with work experience Third party certifications on security or engineering related technologies Annual Salary $120000.00 - $260000.00 The above annual salary range is a general guideline. Multiple factors are taken into consideration to arrive at the final hourly rate/ annual salary to be offered to the selected candidate. Factors include but are not limited to the scope and responsibilities of the role the selected candidate’s work experience education and training the work location as well as market and business considerations. At this time GEICO will not sponsor a new applicant for employment authorization for this position. The GEICO Pledge: Great Company: At GEICO we help our customers through life’s twists and turns. Our mission is to protect people when they need it most and we’re constantly evolving to stay ahead of their needs. We’re an iconic brand that thrives on innovation exceeding our customers’ expectations and enabling our collective success. From day one you’ll take on exciting challenges that help you grow and collaborate with dynamic teams who want to make a positive impact on people’s lives. Great Careers: We offer a career where you can learn grow and thrive through personalized development programs created with your career – and your potential – in mind. You’ll have access to industry leading training certification assistance career mentorship and coaching with supportive leaders at all levels. Great Culture: We foster an inclusive culture of shared success rooted in integrity a bias for action and a winning mindset. Grounded by our core values we have an an established culture of caring inclusion and belonging that values different perspectives. Our teams are led by dynamic multi-faceted teams led by supportive leaders driven by performance excellence and unified under a shared purpose. As part of our culture we also offer employee engagement and recognition programs that reward the positive impact our work makes on the lives of our customers. Great Rewards: We offer compensation and benefits built to enhance your physical well-being mental and emotional health and financial future. Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being. Financial benefits including market-competitive compensation a 401K savings plan vested from day one that offers a 6% match performance and recognition-based incentives and tuition assistance. Access to additional benefits like mental healthcare as well as fertility and adoption assistance. Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program which offers the ability to work from anywhere in the US for up to four weeks per year. The equal employment opportunity policy of the GEICO Companies provides for a fair and equal employment opportunity for all associates and job applicants regardless of race color religious creed national origin ancestry age gender pregnancy sexual orientation gender identity marital status familial status disability or genetic information in compliance with applicable federal state and local law. GEICO hires and promotes individuals solely on the basis of their qualifications for the job to be filled. GEICO reasonably accommodates qualified individuals with disabilities to enable them to receive equal employment opportunity and/or perform the essential functions of the job unless the accommodation would impose an undue hardship to the Company. This applies to all applicants and associates. GEICO also provides a work environment in which each associate is able to be productive and work to the best of their ability. We do not condone or tolerate an atmosphere of intimidation or harassment. We expect and require the cooperation of all associates in maintaining an atmosphere free from discrimination and harassment with mutual respect by and for all associates and applicants.

At GEICO we offer a rewarding career where your ambitions are met with endless possibilities. Every day we honor our iconic brand by offering quality coverage to millions of customers and being there when they need us most. We thrive through relentless innovation to exceed our customers’ expectations while making a real impact for our company through our shared purpose. When you join our company we want you to feel valued supported and proud to work here. That’s why we offer The GEICO Pledge: Great Company Great Culture Great Rewards and Great Careers. GEICO is seeking an experienced Sr. Staff Engineer Operations Engineer with a passion for managing complex programs across multiple departments and team to build Product Security operational excellence from the ground up. You will help drive our business transformation as we transition from a traditional IT model to a tech organization with engineering excellence as its mission. The Sr. Staff Engineer Operations is a key member of the Product Security leadership team working across the organization to ensure successful delivery of effective security controls and prioritization of initiatives and issue management. In this role you will own a portfolio of initiatives such as compliance engineering and operational excellence and vendor engagement. This is beyond technical project management and requires a background in building teams delivering solutions and proving success with KPIs and visible metrics. The ideal candidate will have excellent communication skills real world examples in engaging the right technical partners and leadership to drive towards solutions and get people working together. As a Sr Staff Engineer you will lead efforts to identify plan and deliver program security outcomes by independently engaging a broad set of internal and external stakeholders. This also includes the following: Monitor and track signals of security gaps initiative delays compliance risks due to system issues and drive resolution. Create visuals on current performance and risk indicators related to product security initiatives and operations. Help to develop standards on reporting product security tool effectiveness maturity resilience and other factors in determining risks as they come up. Help drive automation of routine tasks to drive growth in security protection and detection technologies. Provide expert guidance demonstrations and lead discussions on security best practices to stakeholders and leadership. Works in lockstep with our CSIRT GRC Platform Security Development/Product organizations and Technology partner teams to ensure protection coverages proper detection event notifications documentation and standards we can all use. Organize store and manage operational best practices documentation for security solutions to protect our business products including applications services code and associated repositories infrastructure as code (IaC) and code related to deployment pipelines. Partner with the project sponsors delivery teams and stakeholders to deliver quality solutions on time and within budget by coordinating project activities across multiple systems departments and teams. Create maintain and actively manage a detailed project schedule change control process and documentation. Identify and raise appropriate security risks in addition to presenting detailed and implementable solutions or alternatives and drive those campaigns to resolution. Qualifications Demonstrated understanding of application security tooling and testing including SAST DAST SCA etc. as well as cross-functional awareness of security operations including SOC Incident Response Privacy Legal Vulnerability Management and Data Protection. Familiar with OWASP projects and implementation within the product security organization such as Web Top Ten API Top Ten Mobile Top Ten and ASVS. Knowledge of data access languages such as SQL and GraphQL and the ability to construct queries against data sources. Extensive experience in engineering and solution delivery in a dynamic service provider environment. Strong knowledge of project management methodologies and best practices. Proven track record of successfully managing large/complex projects across cross-functional teams building processes and coordinating delivery Working knowledge of security services and their impact on production systems including runtime protection services detective and protective agents and/or daemon sets vulnerability and application scanning etc.. Experience in a multi-cloud environment including AWS Azure and/or Google Cloud. Experience communicating and presenting to senior and junior staff with the ability to influence development partners and stakeholders. Detail and deadline oriented with effective organizational and analytic skills Strong critical thinking problem solving decision making and analytical skills Outstanding time management skills and attention to detail Excellent verbal/written communication skills including the ability to clearly document findings proposals issues and status Experience with continuous delivery Self-motivated and able to work independently while coordinating activities with cross-divisional teams Effective leadership qualities ability to influence without direct management authority Ability to excel in a fast-paced startup-like environment. Knowledge of industry-standard security control frameworks including NIST PCI SOX NYDFS. Preferred Qualifications: Knowledge in a hybrid cloud environment such including Containerization VMs CI/CD pipeline IaC Experience defining KPI’s/SLA’s used to drive multi-million-dollar businesses and reporting to senior leadership. Experience 8+ years in engineering focused role preferably in the tech industry 4+ years of experience with AWS GCP Azure or other cloud providers 4+ years in a senior role influencing company direction Experience applying engineering to meet or exceed third party attestation requirements (PCI SOX …). Education Bachelor’s degree in Computer Science Cyber Security or equivalent education with work experience Third party certifications on engineering related technologies. Annual Salary $115000.00 - $260000.00 The above annual salary range is a general guideline. Multiple factors are taken into consideration to arrive at the final hourly rate/ annual salary to be offered to the selected candidate. Factors include but are not limited to the scope and responsibilities of the role the selected candidate’s work experience education and training the work location as well as market and business considerations. At this time GEICO will not sponsor a new applicant for employment authorization for this position. The GEICO Pledge: Great Company: At GEICO we help our customers through life’s twists and turns. Our mission is to protect people when they need it most and we’re constantly evolving to stay ahead of their needs. We’re an iconic brand that thrives on innovation exceeding our customers’ expectations and enabling our collective success. From day one you’ll take on exciting challenges that help you grow and collaborate with dynamic teams who want to make a positive impact on people’s lives. Great Careers: We offer a career where you can learn grow and thrive through personalized development programs created with your career – and your potential – in mind. You’ll have access to industry leading training certification assistance career mentorship and coaching with supportive leaders at all levels. Great Culture: We foster an inclusive culture of shared success rooted in integrity a bias for action and a winning mindset. Grounded by our core values we have an an established culture of caring inclusion and belonging that values different perspectives. Our teams are led by dynamic multi-faceted teams led by supportive leaders driven by performance excellence and unified under a shared purpose. As part of our culture we also offer employee engagement and recognition programs that reward the positive impact our work makes on the lives of our customers. Great Rewards: We offer compensation and benefits built to enhance your physical well-being mental and emotional health and financial future. Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being. Financial benefits including market-competitive compensation a 401K savings plan vested from day one that offers a 6% match performance and recognition-based incentives and tuition assistance. Access to additional benefits like mental healthcare as well as fertility and adoption assistance. Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program which offers the ability to work from anywhere in the US for up to four weeks per year. The equal employment opportunity policy of the GEICO Companies provides for a fair and equal employment opportunity for all associates and job applicants regardless of race color religious creed national origin ancestry age gender pregnancy sexual orientation gender identity marital status familial status disability or genetic information in compliance with applicable federal state and local law. GEICO hires and promotes individuals solely on the basis of their qualifications for the job to be filled. GEICO reasonably accommodates qualified individuals with disabilities to enable them to receive equal employment opportunity and/or perform the essential functions of the job unless the accommodation would impose an undue hardship to the Company. This applies to all applicants and associates. GEICO also provides a work environment in which each associate is able to be productive and work to the best of their ability. We do not condone or tolerate an atmosphere of intimidation or harassment. We expect and require the cooperation of all associates in maintaining an atmosphere free from discrimination and harassment with mutual respect by and for all associates and applicants.

Join Us at PlanSource: Your Exciting Career Awaits! At PlanSource a leading cloud-based provider of benefits administration technology and services we are on a mission to simplify how people choose use and manage benefits through cutting-edge AI-powered experiences. This is an incredible time to launch your career with us! PlanSource is seeking an experienced and strategic Director of Security Engineering and Operations to lead our security infrastructure architecture and operations functions. This role is critical to scaling our cybersecurity maturity as we protect sensitive data and services relied upon by clients across the HR and benefits technology ecosystem. You will lead a cross-functional team of engineers and analysts design secure-by-default solutions direct operational processes for detection and response and ensure continuous improvement of our defensive capabilities. This senior leader will work closely with Architecture IT Ops DevOps Product Compliance and Risk teams to align security strategy with business objectives. Key Responsibilities Strategy & Leadership Define and execute the roadmap for enterprise-wide security engineering and operations. Lead mentor and develop a high-performing team of security engineers analysts and architects. Partner with the CISO on security program design incident response readiness and budget planning. Security Engineering Oversee the architecture implementation and maintenance of security tools and technologies (e.g. EDR/XDR WAF Messaging Security Data Loss Prevention etc). Integrate with internal processes for ITSM Change Management Release Management and Review Boards. Drive adoption of security solutions and services to enable the business to respond to our market quickly and securely. Ensure that runbooks guidelines and procedures are maintained for all security solutions and capabilities. Security Operations Direct 24/7 operational management of threat detection alerting and incident response working with PlanSource’s MDR service. Establish SLAs operational runbooks and escalation protocols for the Security Operations Center (SOC). Lead response efforts to security incidents in coordination with Legal IT and Communications teams. Perform semi-annual Incident Response tabletop exercises. Establish and maintain reportable metrics covering the performance of our cyber security solutions services and capabilities. Risk Mitigation & Governance Support audits compliance efforts (e.g. SOC 2 HIPAA ISO 27001) and vulnerability remediation. Continuously assess gaps in tooling and coverage through tabletop exercises red/purple team tests and control evaluations. Collaborate with the GRC team on policies metrics and board-level reporting. Qualifications 10+ years of experience in cybersecurity with at least 5 years leading security engineering and operations teams. Proven success implementing and overseeing tools such as EDR/XDR DLP WAF PAM etc. Experience with cloud security operations (AWS and Azure) and hybrid infrastructure environments. Strong knowledge of cybersecurity frameworks (e.g. NIST CSF MITRE ATT&CK ISO 27002). Track record of incident response leadership and coordinated mitigation for real-world threats. Understanding of DevSecOps practices CI/CD pipeline security and secure code delivery. Excellent leadership communication and cross-functional collaboration skills. Preferred Qualifications Bachelor's degree in Information Security Computer Science Management & Information Systems or related field is preferred. Industry certifications preferred: CISSP CISM GSEC or GIAC/GCIH. Previous experience in a SaaS healthcare fintech or regulated industry is a strong plus. What we Offer: Great benefits package including a full suite of health benefits a generous 401(k) Plan unlimited PTO paid parental leave a strong rewards and recognition program and a focus on mental health and well-being. An inclusive environment with Employee Resource Groups to join volunteering days and the ability to donate to organizations of your choice through our recognition platform. The opportunity to work for a growing established technology company but work side-by-side with a small dynamic team of talented professionals. Fast-paced environment with big goals and the opportunity to make a big impact. Top five reasons to come to PlanSource: #5: Join the Vista Family. In March 2019 Vista Equity Partners acquired PlanSource marking a new phase of growth. Vista’s portfolio of technology and software companies collectively make up the 4th largest software ecosystem in the world. #4: PlanSource is highly rated with our customers. Be proud of our sophisticated cloud-based technology that meets the needs of even the most complex benefit programs. #3: Success is rewarded. With more than just a pat on the back your success is recognized and rewarded. We take care of our employees in every way we can with comprehensive benefits employee recognitions and a commitment to wellbeing. #2: You can grow and develop professionally. PlanSource has a great track record of internal promotions within the company and offering development plans and tracks to pursue your personal and professional goals. #1: Share our values. Be part of a team that values diversity and representation in all levels of the organization. Be part of a team that gives back to local communities and is actively aware of their social and environmental impact. PlanSource is committed to fostering cultivating and preserving a culture of diversity and inclusion. Our employees are the most valuable asset we have. The collective sum of the individual differences life experiences knowledge inventiveness innovation self-expression unique capabilities and talent that our employees invest in their work represents a significant part of not only our culture but our reputation and company’s achievement as well. We celebrate and support our employees’ diversity in age color disability ethnicity cultural beliefs family or marital status gender identity or expression language national origin physical and mental ability political affiliation race religion sexual orientation socio-economic status veteran status and other characteristics that make our employees unique. NOTE: We will consider a remote employee for approved cities PlanSource can accommodate. If you’re selected you’ll receive your offer and be asked to complete a background check. This will include a drug screen criminal record search and verification of previous employment and/or education. REF 4769

Jobright is an AI-powered career platform that helps job seekers discover the top opportunities in the US. We are NOT a staffing agency. Jobright does not hire directly for these positions. We connect you with verified openings from employers you can trust. Job Summary: DoorDash is a technology and logistics company focused on building a scalable delivery network. The Detection Engineer will be responsible for designing building and tuning high-fidelity detections to enhance DoorDash's security posture while collaborating with cross-functional teams to analyze threats and develop detection strategies. Responsibilities: • Conduct hands-on detection engineering for custom alerting to include implementing risk-based analytics to reduce alert volumes and promote high-fidelity alert content • Use threat intelligence and deep understanding of adversary tactics to build custom detections tailored to multiple environments and use cases • Build automation workflows for alerts and define response scenarios for event follow-up and escalation. • Leverage security tooling logs and custom telemetry to build detections at scale • Work with structured and unstructured logs to create meaningful content • Maintain detection repositories use case libraries and conduct routine content updates • Coordinate with cross-functional teams internally and externally on threats targeting DoorDash • Lead or participate in security tool proof-of-concepts and documentation • Lead training or other education and awareness opportunities for the enterprise as required • Participate in and support on-call rotation Qualifications: Required: • 2+ years of experience in secure coding alert development and detection engineering. • Experience with a broad range of technologies including endpoint detection and network technologies and SOAR/SIEM platforms • Deep knowledge of querying and scripting language • Deep knowledge of cloud and distributed IT environments • Deep understanding of log sources forwarders parsing and data pipelines • Experience working with Global and cross-functional partners • Experience partnering with cross functional teams to support an investigation • Excellent understanding of information security operations related frameworks and standards (e.g. MITRE Att&ck and NIST) • Excellent verbal and written communication presentation and stakeholder management skills Company: DoorDash is a food delivery platform that connects customers with local and national businesses. It is a sub-organization of DoorDash. Founded in 2013 the company is headquartered in San Francisco California USA with a team of 10001+ employees. The company is currently Public Company. DoorDash has a track record of offering H1B sponsorships.

Strong understanding of cloud platforms such as AWS Azure or Google Cloud. Experience with security tools and technologies (e.g. firewalls IDS/IPS SIEM). Knowledge of scripting and automation tools for security tasks. Familiarity with regulatory frameworks and compliance standards. Relevant security certifications such as CISSP CISM CEH or AWS Certified Security – Specialty are preferred. Hands-on experience with cloud operations processes and implementations – Strong understanding of cloud infrastructure management including provisioning scaling and maintaining cloud services. Experience working with cloud service providers such as AWS Azure or Google Cloud to deploy and optimize cloud-based applications. Familiarity with best practices in cloud automation cost management and operational monitoring. Experience in cloud security governance and compliance management – Proven ability to develop implement and enforce cloud security policies ensuring alignment with industry standards and regulatory frameworks such as NIST CIS ISO 27001 GDPR HIPAA or FedRAMP. Experience conducting security audits risk assessments and compliance reviews to ensure cloud environments meet organizational and legal security requirements. Ability to work with stakeholders across security compliance and operations teams to drive governance initiatives and maintain security posture.

Strong understanding of cloud platforms such as AWS Azure or Google Cloud. Experience with security tools and technologies (e.g. firewalls IDS/IPS SIEM). Knowledge of scripting and automation tools for security tasks. Familiarity with regulatory frameworks and compliance standards. Relevant security certifications such as CISSP CISM CEH or AWS Certified Security – Specialty are preferred. Hands-on experience with cloud operations processes and implementations – Strong understanding of cloud infrastructure management including provisioning scaling and maintaining cloud services. Experience working with cloud service providers such as AWS Azure or Google Cloud to deploy and optimize cloud-based applications. Familiarity with best practices in cloud automation cost management and operational monitoring. Experience in cloud security governance and compliance management – Proven ability to develop implement and enforce cloud security policies ensuring alignment with industry standards and regulatory frameworks such as NIST CIS ISO 27001 GDPR HIPAA or FedRAMP. Experience conducting security audits risk assessments and compliance reviews to ensure cloud environments meet organizational and legal security requirements. Ability to work with stakeholders across security compliance and operations teams to drive governance initiatives and maintain security posture.