Truffle Security jobs

Principal Software Engineer Remote About us Truffle Security is a cybersecurity company on a mission to make secrets easier to detect, verify, and remediate across modern software environments. Built on the popular open-source TruffleHog ™ secrets scanning platform, the company's enterprise solution gives security and engineering teams everything they need to find exposed credentials, understand which ones are active, and act on them with confidence. With support for 800+ credential types, Truffle Security continuously monitors non-human identities (NHIs) and their associated secrets across code repositories, SaaS applications, wikis, and cloud systems. It goes beyond detection by verifying which secrets are live, analyzing their scope of access, and streamlining remediation through automated workflows and lifecycle management so teams can prioritize what to revoke and confirm it's done without manual follow-up. Trusted by organizations including NVIDIA, Chick-fil-A, and OpenAI, Truffle Security helps security and engineering teams stay ahead of secrets risk. About the Role We're looking for a Principal Software Engineer to serve as a senior technical leader across Engineering. This is a hands-on role focused on improving architecture, scalability, reliability, and engineering quality across our systems. We have a strong team of Senior and Staff engineers, and we're looking for someone who can make that team even more effective. This role is about creating leverage across Engineering: improving the quality of technical decisions, mentoring experienced engineers, establishing durable architecture and engineering practices, and helping teams move faster without sacrificing reliability or maintainability. We're also changing how we build software. Our engineering

Senior Software Engineer (Microsoft Integrations) Remote About us Truffle Security is a cybersecurity company on a mission to make secrets easier to detect, verify, and remediate across modern software environments. Built on the popular open-source TruffleHog ™ secrets scanning platform, the company's enterprise solution gives security and engineering teams everything they need to find exposed credentials, understand which ones are active, and act on them with confidence. With support for 800+ credential types, Truffle Security continuously monitors non-human identities (NHIs) and their associated secrets across code repositories, SaaS applications, wikis, and cloud systems. It goes beyond detection by verifying which secrets are live, analyzing their scope of access, and streamlining remediation through automated workflows and lifecycle management so teams can prioritize what to revoke and confirm it's done without manual follow-up. Trusted by organizations including NVIDIA, Chick-fil-A, and OpenAI, Truffle Security helps security and engineering teams stay ahead of secrets risk. About the role We're expanding our enterprise integrations platform to better support organizations operating heavily in the Microsoft ecosystem. We're looking for a senior engineer to lead development of high-impact integrations across platforms like SharePoint, OneDrive, Teams, Azure Blob Storage, and Azure DevOps. This role is focused on building reliable, scalable integrations that work correctly within Microsoft's complex identity, permissions, and authorization models. You'll work closely with platform engineering, product, customer-facing teams, and security researchers to improve how TruffleHog discovers and secures secrets across enterprise environments. What you'll be working on - Build and maintain integrations for Microsoft platforms

Senior Frontend Engineer Remote About us Truffle Security is a cybersecurity company on a mission to make secrets easier to detect, verify, and remediate across modern software environments. Built on the popular open-source TruffleHog ™ secrets scanning platform, the company's enterprise solution gives security and engineering teams everything they need to find exposed credentials, understand which ones are active, and act on them with confidence. With support for 800+ credential types, Truffle Security continuously monitors non-human identities (NHIs) and their associated secrets across code repositories, SaaS applications, wikis, and cloud systems. It goes beyond detection by verifying which secrets are live, analyzing their scope of access, and streamlining remediation through automated workflows and lifecycle management so teams can prioritize what to revoke and confirm it's done without manual follow-up. Trusted by organizations including NVIDIA, Chick-fil-A, and OpenAI, Truffle Security helps security and engineering teams stay ahead of secrets risk. About the role We're seeking a talented Senior Frontend Engineer to join our Engineering team. This team owns the TruffleHog Enterprise web experience, including our frontend application built with React, TypeScript, and Chakra UI, along with the APIs and supporting infrastructure that power it. In this role, you'll lead the development of intuitive, performant, and scalable user interfaces that help customers understand and secure their environments. You'll work closely with product, design, and backend engineers to shape user-facing features from concept to production, with a strong focus on frontend architecture, usability, accessibility, and developer experience. While this is primarily a frontend-focused

Security Engineer, Corporate Services Security Seattle, Washington, USA The Corporate Services Security (CPSS) Seals ( Security for Employee and Legal Systems) Team is responsible for securing the applications, infrastructure and data developed across People eXperience and Technology (PXT) and Legal teams . We partner with builder teams to minimize security risks across their applications while being a business enabler. Our team provides end-to-end security partnership across the software development lifecycle. We offer expert security consultations and guidance on best practices and implementation strategies, conduct application security reviews and threat modeling to comprehensively assess new features and applications, and drive security architecture decisions through design reviews and architectural guidance to build security in from the start. We support issue remediation by helping teams address security findings, vulnerabilities, and compliance gaps, and manage the security backlog by prioritizing and tracking security improvements and technical debt. We also support compliance and security standards questions to help teams meet organizational policies and industry requirements, and enable security tooling and automation by integrating security tools directly into development workflow Key job responsibilities Key job responsibilities: The ideal candidate combines Application Security, GenAI Security, and strong communication skills with the ability to manage security reviews alongside diverse project work. This role offers meaningful career growth as you expand your security expertise. * Conduct design and security reviews to assess customer risk, prioritize remediation, and partner with service teams on resolution * Escalate security issues with clear recommendations to senior leadership, keeping customer impact front and center

Application Security Consultant - SCA - Global Security TORONTO, Ontario, Canada Embrace the role of an Application Security Consultant and bridge the gap between security and development. Leverage your expertise in SCA tools, REST APIs, and application security to drive impactful security initiatives. Collaborate with cross-functional teams, enhance security posture, and grow your skills in a dynamic, global environment. Shape the future of secure software with us.

Enterprise Security Engineer (AI & Enterprise Security) United Kingdom Enterprise Security Engineer (AI & Enterprise Security)

Security Engineer San Francisco, CA, San Francisco, CA, United States Factory is seeking a talented Security Engineer to join our team. In this role, you will play a critical role in developing and maintaining the security foundation of our platform. You will conduct in-depth code reviews, implement security best practices, and influence the overall security strategy. Your expertise in TypeScript, Python, Kubernetes, CI/CD, and terraform orchestration will be crucial in identifying and mitigating potential security vulnerabilities. What you will do and achieve: - Design, implement, and manage security measures for the protection of our cloud infrastructure, applications, and data, focusing on both preventative controls and rapid response capabilities. - Collaborate closely with our engineering teams to integrate security practices into the software development lifecycle, including secure coding standards, automated security testing, and secure architecture design. - Stay up-to-date on the latest security threats, vulnerabilities, and mitigation strategies. - Conduct security code reviews to identify and remediate security vulnerabilities. - Develop and implement automated security testing procedures to identify vulnerabilities and risks, recommending and implementing appropriate mitigation strategies. - Respond to security incidents and participate in incident response procedures. - Document security processes, procedures, and best practices. - Lead security awareness and training programs, empowering all team members to recognize and prevent potential security threats. Qualifications - Minimum 5+ years of experience as a Security Engineer with a focus on product security, with a strong background in securing cloud-based environments (AWS, Azure, GCP) and understanding of Infrastructure as Code (IaC) security

Supervisor, Security (Sabine Pass) Cameron, LA, United States The Security Supervisor reports directly to the Security Manager. The Security Supervisor actively leads designing and implementing localized security solutions that safeguard personnel, business operations and critical assets. The Security Supervisor will serve as a security subject matter expert, will ensure all regulatory security requirements are met for a regional geographic area, and will act in the role of the Security Manager, during their absence. Per the Maritime Transportation Security Act (MTSA), the Security Supervisor is responsible for helping maintain the Site Facility Security Plan to ensure the site is prepared to respond to changes in the MARSEC Level. The Security Supervisor helps direct and supervise the security programs at the site, in addition to fulfilling the regulatory mandates of the MTSA.

Physical Security Manager, DC Security SCL, SCL DC Security Santiago, Region Santiago Metropolitan, CHL As Physical Security Manager, you will lead and optimize security operations across facilities within our regional campus, driving comprehensive security strategies through systematic facility audits, real-time monitoring, and vulnerability assessments. You will direct all security operations, from guard force management and patrol optimization to overseeing infrastructure projects, while spearheading modernization initiatives through advanced analytics, surveillance systems, and integrated access control technologies. Critical to your success will be developing and implementing comprehensive security programs, including awareness training, detailed policies, and emergency response protocols, fostering a strong security culture throughout the organization. In this strategic role, you will partner with executive leadership, delivering data-driven analyses, security recommendations, and professional presentations to support informed decision-making and security investments that strengthen our overall security posture. The ideal candidate will combine strategic thinking with hands-on operational expertise to create a robust, proactive security environment that protects our people, assets, and operations. Key job responsibilities Key job responsibilities: Strategic Security Leadership • Lead comprehensive facility vulnerability assessments and security audits • Develop and implement strategic security plans aligned with organizational objectives • Transform security strategies into actionable tactical plans • Establish and track key performance indicators for security operations Operations Management • Direct security personnel and contractor operations • Manage security vendor relationships and service level agreements • Oversee security system installations, upgrades, and maintenance programs • Coordinate security construction projects from planning through completion Security Systems & Technology • Evaluate and

Area Security Manager, Global Corporate Security Sunnyvale, California, USA Amazon Corporate Security is looking for an experienced, self-motivated, corporate security leader who embodies Amazon's Leadership Principles, in particular, Customer Obsession, Ownership, Earn Trust, and Bias for Action, to join the team as an Area Security Manager for Northern California. The Area Security Manager reports to a Regional Security Manager, who leads a team of security experts. The Area Security Manager is responsible for implementation of all elements of the Corporate Security program at all Amazon corporate locations in their area of responsibility. The Area Security Manager supports the Regional Security Manager with delivery and oversight of the day-to-day security operations at multiple sites across multiple locations in a highly ambiguous and dynamically fluid environment. The Area Security Manager conducts security assessments, ensures that the corporate sites meet or exceed all requisite security standards, and manages incidents and supporting crisis response. Finally, the Area Security Manager provides security consultancy to local business leadership, develops plans to mitigate gaps in security controls, and manages the guarding and access control programs. Key job responsibilities • Deliver best-in-class security services focused on enhancing the safety and security of all Amazon employees, contractors, and visitors. • Line-manage security professionals and day-to-day security operations for a diverse portfolio of sites and customers with unique requirements. • Implement and improve security plans, policies, and programs. • Coordinate security incident response. • Respond to customer security concerns. • Monitor the external threat environments in the defined area and

Security Engineer Tysons, Virginia As a Cloud Security Engineer, the primary role is to support the security of our cloud environments across AWS, GCP, and Azure. This involves assisting in identifying and mitigating security risks, using cloud-native security tools, and helping manage security solutions. The engineer will work with various teams to incorporate security into the software development lifecycle and assist in maintaining threat models. They will also help ensure compliance with security and regulatory requirements, assist in suggesting risk mitigation strategies, and respond to security queries from clients and partners. Familiarity with cloud security platforms like CNAPP, CSPM, CWPP, CASB, CIEM, and the Wiz tool is beneficial. Responsibilities: The Cloud Security Engineer primary job responsibilities include: Experience or familiarity with cloud security or engineering in public cloud providers AWS, GCP, and Azure. Assist in evaluating, reviewing, and deploying cloud native security tools in AWS and Azure. Support in monitoring, configuring rules, and enforcement using cloud security platforms such as CNAPP, CSPM, CWPP, CASB and CIEM. Assist in utilizing the Wiz tool for cloud security posture management, including configuration analysis, vulnerability detection, and compliance monitoring. Support in selecting and acquiring additional security solutions or enhancements to existing security solutions to improve overall enterprise security. Assist in determining, monitoring, and maintaining our security posture, in collaboration with the Engineering team. Support in overseeing and managing the deployment, integration, and configuration of security solutions and any enhancements to existing security solutions and the enterprise's security documents. Collaborate with development, operations, and security

Security Engineer II, StoreSec Application Security Austin, Texas, USA Amazon Healthcare Security's (HealthSec) AI team is hiring a Security Engineer II to secure GenAI applications and enable secure AI adoption across Amazon Health Services (AHS). You will work at the intersection of AI for Security and Security for AI-securing AHS GenAI applications in production, hardening the AI-SDLC for AHS builders, and building AI-powered security tooling that scales protection across healthcare verticals including application security, network and infrastructure security, detections and monitoring, and incident response. Working closely with AHS AI application builders and product teams, you will ensure that AI systems handling healthcare data meet HIPAA compliance and Amazon's security bar while improving security review process efficiency for both builders and peer healthcare security teams. Key job responsibilities Define and drive implementation of proactive security controls for AHS AI applications including GenAI chatbots, agentic systems, and LLM-powered tools Develop and implement security controls for the AI-SDLC, ensuring AHS builders build secure AI applications by default Assess and drive mitigation of AI-specific security risks including prompt injection, model abuse, data exfiltration, and unauthorized tool invocation at scale Build and/or drive adoption of AI-powered security tooling (e.g., automated threat modeling, code scanning, security test generation) to scale security across AHS Drive adoption of AI security guardrails, testing frameworks, and monitoring across AHS GenAI applications Collaborate with AHS builder teams to integrate security guidance into AI development workflows, reducing late-stage security findings Develop and maintain security documentation including AI threat models, risk assessments, and

Security Engineer, CS Security Seattle, Washington, USA Are you passionate about delivering innovative security solutions and protecting millions of customers through a blend of deep security expertise, hands-on coding, and building scalable security guardrails and paved paths? The Customer Service Application Security team is looking for a talented and results-driven Security Engineer to help shape how Amazon protects customer data through secure-by-design principles. In this role, you'll be a trusted security partner to development teams - reviewing application designs for security gaps, providing guidance on secure coding practices, and rolling up your sleeves to contribute code for security fixes directly alongside developers. You'll conduct threat modeling, evaluate system architecture to ensure sound security design, and leverage AWS services and modern development practices to transform manual security processes into scalable solutions. You'll embed secure-by-default practices into applications early and throughout the software development lifecycle through guardrails and paved path solutions. If you're a security engineer who loves writing code, thrives on partnering with developers, and is excited about solving complex security challenges, join our team and help define the future of application security at Amazon. Key job responsibilities • Design, build, and maintain automated security guardrails and paved paths that enable secure-by-default practices across Amazon's technology landscape • Engage early with development teams at the ideation and design stage to embed security into applications from the start, providing guidance on secure architecture and coding practices • Build automated, continuous security assessment capabilities that replace manual security reviews and scale across our

Security Architect Tel Aviv-Yafo, Gush Dan, Israel Transmit Security gives businesses the modern tools they need to build secure, trusted and end-to-end digital identity journeys to innovate and grow. CX-focused, cybersecurity conscious leaders rely on Transmit Security's xCIAM platform to provide their customers with smooth experiences protected from fraud across all channels and devices. Transmit Security serves many of the world's largest banks, insurers, retailers, and other leading brands, collectively responsible for more than $1.3 trillion in annual commerce. About the Role: Providing an identity security platform to some of the most sensitive organizations in the world, product security is key in Transmit Security. As a Product Security Architect, you will be responsible for designing, shaping, and evolving the security architecture of all of our SaaS services. You'll be focused on proactively reducing security risks by performing architectural reviews, providing guidance and governance for security programs, owning application security training all through close collaboration with development and DevOps teams. What you'll do: - Security Architecture & Design - Security Reviews and Threat Modeling - Application Security Training - SDLC Security - Establish and provide guidance around application security and DevSecOps security programs What you'll need: - Deep understanding of Web technologies and web application security including deep understanding of common vulnerabilities in application and infrastructure security. - Deep understanding of identity and authentication standards such as OIDC, OAuth, SAML - Strong background in security architecture - Experience running security reviews - Excellent coding capabilities and skills to identify application security

Technical Program Manager, Security Engineering Vancouver, British Columbia About Match Group Match Group (NASDAQ: MTCH) is a leading provider of dating products across the globe, operating a portfolio of brands including Tinder, Hinge, Match, OkCupid, Pairs, Meetic, and more. With hundreds of millions of users worldwide generating billions of interactions daily, our scale demands world-class security operations. About the Team The MG Security Engineering organization provides unified security services across all Match Group brands - spanning Product Security (AppSec, InfraSec, Red Team, Platform Security), Enterprise Security (InfoSec, GRC, Vendor Security), Monitoring & SOC, Incident Response, Data Security, Digital Investigations, AI/ML Security, and Security Program Management. We are a team of 50+ security professionals protecting a global portfolio of consumer platforms. About Match Group Match Group (NASDAQ: MTCH) is a leading provider of dating products across the globe, operating a portfolio of brands including Tinder, Hinge, Match, OkCupid, Pairs, Meetic, and more. With hundreds of millions of users worldwide generating billions of interactions daily, our scale demands world-class security operations. About the Team The MG Security Engineering organization provides unified security services across all Match Group brands - spanning Product Security (AppSec, InfraSec, Red Team, Platform Security), Enterprise Security (InfoSec, GRC, Vendor Security), Monitoring & SOC, Incident Response, Data Security, Digital Investigations, AI/ML Security, and Security Program Management. We are a team of 50+ security professionals protecting a global portfolio of consumer platforms. What You'll Do As a Technical Program Manager (TPM), Security Engineering , you will drive the planning, execution,

Security Manager, Amazon Corporate Security Kuala Lumpur, Wilayah Persekutuan Kuala Lumpur, MYS Amazon Corporate Security (ACS) is looking for an eager and self-motivated corporate security professional who embodies Amazon's Leadership Principles, in particular, Customer Obsession, Deliver Results, Earn Trust, and Bias for Action to join the team as a Security Manager for Malaysia, Singapore, Vietnam and Thailand based in Kuala Lumpur. The Security Manager (SM) reports to a Regional Security Manager who leads a team of security experts for a dedicated sub-region. The SM is responsible for supporting the implementation of all elements of the Corporate Security program at all Amazon corporate locations in their area of responsibility. The SM supports the Regional Security Manager with delivery and oversight of the day-to-day security operations in a highly ambiguous and dynamically fluid environment. The SM conducts a variety of security assessments, administers mitigations, and tracks security issues through to resolution. The SM leverages their security expertise to implement security plans, policies, and programs; respond to and escalate operational security concerns; and work closely with the guard force services to deliver best-in-class security services. Key job responsibilities - Security Service Delivery - Deliver best-in-class security services to safeguard all Amazon employees, contractors, and visitors, ensuring a safe and secure work environment across all assigned sites. - Trusted Security Advisor - Serve as the subject matter expert and go-to security advisor within the area of responsibility, leveraging strong communication and briefing skills to guide stakeholders. - Site & Operations Management - Manage day-to-day

Security Engineer, Secure Third Party Tools Seattle, Washington, USA Secure Third Party Tools (S3T) is looking for a Security Engineer to aid on our issue to identify, measure and remediate security risks of engagement with 3Ps and their products that get access to Amazon's data. S3T conducts assessments to determine if third party usage meets Amazon's security bar and the security measures required to remediate gaps to meet the security Bar. We help with security risk reduction, by identifying required security measures, helping determine acceptable methods of meeting security control objectives including application of compensating controls or other risk-reduction activities. If you enjoy working at scale in a rapidly changing environment and influencing the protection of our customers within a large global organization, this position will provide you with a challenging opportunity. As a Security Engineer, you will collaborate with teams across business, science, product, software development, other security engineers and 3Ps to identify security risks and remediate them. You will also collaborate in defining the right security controls in the evolving security landscape to safeguard our customer's data. In You will conduct security deep-dive reviews (e.g. product security review and testing), developing security guardrails and baselines for partner teams to securely use third party products and services, collaborate on securing integrations of third party products with Amazon services, advising on security configurations, building tools to help assess and monitor security posture of 3Ps building mechanisms to identify and monitor usage of 3Ps and improving existing capabilities of S3T. The

Information Security Architect - Principal, Application Security Chennai, TN, IND Deluxe is looking to fill this role in our Chennai, India location. As a Principal Information Security Architect you will utilize your extensive cybersecurity knowledge including threat modeling, risk assessment, and security controls; expertise in secure software architecture design and security governance frameworks; proficiency in programming languages and security assessment tools. Job Functions: Develop and communicate a strategic security vision and roadmap aligned with the organization's business objectives. Ensure that the security strategy guides security initiatives, technology choices, and risk management efforts. Design secure architectures for software systems and infrastructure, including threat modeling, security controls, and secure coding practices. Ensure that security designs are implemented consistently and meet industry best practices. Ensure compliance with industry regulations, standards, and internal security policies. Monitor and report on security compliance. Develop risk mitigation strategies, including security controls, incident response plans, and disaster recovery procedures. Ensure that the organization's workforce is educated about security risks and best practices. Lead and coordinate responses to security incidents, ensuring lessons learned are incorporated into security improvements. Basic Qualifications: Bachelor's degree in a related field, such as computer science, information security, cybersecurity, or a related discipline 10 years of related experience in Information Security Must be 18 years of age or older Preferred Qualifications Master's degree in IT, Computer Science, information security, cybersecurity, or related field 12 years of related experience in Information Security Certification in relevant security domains (e.g., GDSA, CISSP-ISSAP, CISM, CISA) Benefits In line with

Security Analyst Boston, MA At WHOOP, we are on a mission to unlock human performance and extend healthspan. The security organization supports this mission by protecting the systems, data, and infrastructure that power the platform and enable trusted member experiences. WHOOP is seeking a Security Analyst to support day-to-day security operations and maintain operational visibility across the security environment. This role works closely with the internal security team and external security partners to investigate alerts, coordinate response activities, and ensure security issues are triaged and addressed efficiently. The ideal candidate combines strong analytical skills with operational discipline and enjoys working across security and engineering teams to investigate potential threats and improve security processes. At WHOOP, we are on a mission to unlock human performance and extend healthspan. The security organization supports this mission by protecting the systems, data, and infrastructure that power the platform and enable trusted member experiences. WHOOP is seeking a Security Analyst to support day-to-day security operations and maintain operational visibility across the security environment. This role works closely with the internal security team and external security partners to investigate alerts, coordinate response activities, and ensure security issues are triaged and addressed efficiently. The ideal candidate combines strong analytical skills with operational discipline and enjoys working across security and engineering teams to investigate potential threats and improve security processes. RESPONSIBILITIES: - Triage and investigate security alerts originating from internal security tooling as well as those escalated by external security monitoring partners. - Monitor and manage the internal

Senior Director, Security Architecture Dublin ZoomInfo is where careers accelerate. We move fast, think boldly, and empower you to do the best work of your life. You'll be surrounded by teammates who care deeply, challenge each other, and celebrate wins. With tools that amplify your impact and a culture that backs your ambition, you won't just contribute. You'll make things happen-fast. The Senior Director of Security Architecture is a leadership role responsible for overseeing the creation and ongoing maintenance of ZoomInfo's security architecture. This role involves leading the Security Architecture team, responsible for developing security architectures, performing threat modeling, assessing security risks, and defining security requirements to establish a robust security posture. This role leads a team that works with an engineering function of over 500 product developers, 200 data developers and 100 enterprise apps developers. The security architecture strategy addresses multiple domains: Cloud platform security, Applications security, Data security and AI security. We'll be concentrating around AI-native talent who can manage fleets of agents to drive outsized impact. What You'll Do - Security Architecture: Develop and execute a vision for the organization's security architecture, for both product security and enterprise security, that is aligned with business objectives. - Team Management: Lead and mentor a team of security architects and engineers based in Israel and the US, fostering a culture of continuous improvement and professional development - Security Champions Program: Lead the security champions program, empowering employees across the organization to advocate for and implement security best practices. - Secure

Security Engineering Manager, AWS Foundational & Hardware Security Austin, Texas, USA AWS Security is seeking an experienced and technical Security Engineering Manager to lead the Foundational & Hardware Security team. In this role, you will own the hardware security practice within AWS, driving security strategy across custom silicon design, firmware, and platform technologies. You will lead a team of world-class security engineers, engage deeply with AWS hardware engineering and platform teams to shape their security roadmaps, and ensure that AWS hardware platforms - from custom chipsets to edge and hybrid devices - are built and operated to the highest security standards. This is a high-impact leadership role at the intersection of hardware engineering and security, with direct influence on the security posture of AWS's global cloud infrastructure, custom silicon programs, and edge computing portfolio. Key job responsibilities * Lead, mentor, and grow a team of security engineers, fostering a culture of technical excellence and ownership * Engage early with AWS hardware engineering teams - including silicon design, firmware, and platform engineering - to influence their security roadmaps, embed security requirements from the earliest stages of product design, and ensure security is a first-class consideration from chip architecture through deployment * Define and drive the multi-year hardware security strategy for AWS, covering: * Custom silicon security: chip-level security architecture for AWS-designed processors such as Graviton, Trainium, and Inferentia - including secure boot, hardware root of trust, memory protection, and inter-chip communication security (encryption, side-channel resistance, power analysis attack mitigations) * Firmware

Construction Security Assurance Officer, Data Centre Security Melbourne, Victoria, AUS Applicants must be Australian citizens and hold or be eligible to obtain an Australian Government Security Clearance with the ability to successfully complete an Organisational Suitability Assessment. For more information regarding security clearances please visit (https://www.agsva.gov.au/) AWS Infrastructure Operations - Physical Security are looking for exceptional Project Security Officer's to assist with the management and delivery of project security requirements on an upcoming project. These are site-based roles, responsible for assisting our project team to manage physical security, in line with client security requirements and the project security plan. You must obsess over internal and external customers and successfully deliver support and services in an environment where priorities shift extremely fast. You must be able to operate independently to manage security projects, continuously triage and prioritize accordingly, communicate clearly and compellingly (without PowerPoint), Think Big and outside the box, and Deliver Results. Key job responsibilities • Serve as the AWS primary security liaison maintaining daily communication with Regional Security Manager, Data Centre Security Manager, client security representatives, certifying authorities and other relevant personnel. • Provide comprehensive security oversight throughout the construction phase, ensuring delivery of fit-for-purpose and certifiable facilities through attendance at security assurance Hold and Witness Point inspections. •Collation of security assurance reports to the AWS Security Assurance Team. Document and track security-related issues and incidents. • Appropriate management, response and recording of any security issues or incidents occurring throughout the construction phase as per the Security Response Plan.

Security Manager - Construction Ops, Data Centre Security Melbourne, Victoria, AUS Applicants must be Australian citizens and hold or be eligible to obtain an Australian Government Security Clearance with the ability to successfully complete an Organisational Suitability Assessment. For more information regarding security clearances please visit (https://www.agsva.gov.au/) AWS Infrastructure Operations - Physical Security are looking for exceptional Project Security Officer's to assist with the management and delivery of project security requirements on an upcoming project. These are site-based roles, responsible for assisting our project team to manage physical security, in line with client security requirements and the project security plan. You must obsess over internal and external customers and successfully deliver support and services in an environment where priorities shift extremely fast. You must be able to operate independently to manage security projects, continuously triage and prioritize accordingly, communicate clearly and compellingly (without PowerPoint), Think Big and outside the box, and Deliver Results. Key job responsibilities • Serve as the AWS primary security liaison maintaining daily communication with Regional Security Manager, Data Centre Security Manager, client security representatives, certifying authorities and other relevant personnel. • Provide comprehensive security oversight throughout the construction phase, ensuring delivery of fit-for-purpose and certifiable facilities through attendance at security assurance Hold and Witness Point inspections. •Collation of security assurance reports to the AWS Security Assurance Team. Document and track security-related issues and incidents. • Appropriate management, response and recording of any security issues or incidents occurring throughout the construction phase as per the Security Response

Data Center Physical Security Specialist , DCC Communities Boardman, Oregon, USA AWS' Infrastructure Physical Security Team is looking for a Data Center Security Specialist with experience working in critical infrastructure installations, ideally data centers. As a Data Center Security Specialist you will be tasked with driving operational security excellence in a control room setting or in several facilities located within a short driving distance. Your vigilance will drive a culture of quality and support proactive identification of physical security vulnerabilities for remediation. You will interface and direct security vendors involved in new security construction, repairs, daily security operations, patrols, and planning. You will extract metrics and observe improvements by looking at hard data available. You will advise and recommend security systems improvements and design and will lead security awareness training for data center occupants. You will write and implement security procedures and directorates, reports, develop presentations, and advise leadership on the status of physical security operations. Key job responsibilities Complete standard tasks for operational security as part of a security operations team across multiple facilities. Drive security awareness campaigns aimed at enhancing security vigilance and effectiveness. Use tools to complete tasks such as workflow ticketing and analyze data to track key performance metrics. Lead security investigations across campus facilities. Oversee physical security vendors that provide guards, electronic security systems, door construction/repair, fencing, and access controls. Promote security strategy and culture daily to achieve security goals. Support or own security projects. Provide security awareness training to data center personnel. As this