Figma is growing our team of passionate creatives and builders on a mission to make design accessible to all. Figma’s platform helps teams bring ideas to life—whether you’re brainstorming, creating a prototype, translating designs into code, or iterating with AI. From idea to product, Figma empowers teams to streamline workflows, move faster, and work together in real time from anywhere in the world. If you’re excited to shape the future of design and collaboration, join us!

Figma’s Security team is growing, and we’re looking for a Security Operations Manager to lead the strategy and execution of our security operations program. In this role, you’ll build and scale the systems, processes, and tooling that help protect Figma and our community. You’ll partner closely with Security Engineering, Platform Security, IT, GRC, and Legal to strengthen our detection and response capabilities, improve operational resilience, and help shape the future of our DART and SOC functions.

This is a full time role that can be held from one of our US hubs or remotely in the United States.

What you’ll do at Figma:

• Own Figma’s security monitoring and incident response program, from detection engineering through post-incident review and continuous improvement
• Build and automate security operations workflows, including alert triage, enrichment, investigation, and response actions using SOAR and custom tooling
• Develop and maintain incident response run books, escalation procedures, and communication plans for security events of varying severity
• Lead incident response preparedness initiatives, including tabletop exercises, red team engagements, and response capability assessments
• Improve the effectiveness of our SIEM and SOAR platforms by reducing noise, increasing signal fidelity, and closing detection coverage gaps
• Build and operationalize threat intelligence capabilities to identify adversary behaviors, prioritize investments, and strengthen detection and response programs
• Partner with Legal, Privacy, and Communications teams to support breach notification and regulatory response obligations during significant security incidents
• Drive security operations strategy through vendor management, operational metrics, and cross-functional initiatives spanning IAM, vulnerability management, DLP, and exposure reduction

We’d love to hear from you if you have:

• 7+ years of experience in security operations, incident response, or a related security engineering function
• Hands-on experience building and automating detection and response workflows using scripting, APIs, or security automation platforms
• Deep expertise with SIEM and SOAR technologies in a cloud-native or SaaS environment
• Demonstrated success building, scaling, or significantly improving a detection and response program
• Experience leading complex security incidents and partnering with Legal, Privacy, and business stakeholders during high-impact events

While it’s not required, it’s an added plus if you also have:

• Operated in a public company environment with SOX, ISO 27001, SOC 2, or FedRAMP requirements
• Applied AI risk management frameworks such as NIST AI RMF, OECD AI Principles, or ISO 42001
• Utilized AI-powered tools to automate security operations workflows and improve team efficiency

At Figma, one of our values is Grow as you go. We believe in hiring smart, curious people who are excited to learn and develop their skills. If you’re excited about this role but your past experience doesn’t align perfectly with the points outlined in the job description, we encourage you to apply anyways. You may be just the right candidate for this or other roles.

Pay Transparency Disclosure

If based in Figma’s San Francisco or New York hub offices, this role has the annual base salary range stated below.

Job level and actual compensation will be decided based on factors including, but not limited to, individual qualifications objectively assessed during the interview process (including skills and prior relevant experience, potential impact, and scope of role), market demands, and specific work location. The listed range is a guideline, and the range for this role may be modified. For roles that are available to be filled remotely, the pay range is localized according to employee work location by a factor of between 80% and 100% of range. Please discuss your specific work location with your recruiter for more information.

Figma offers equity to employees, as well a competitive package of additional benefits, including health, dental & vision, retirement with company contribution, parental leave & reproductive or family planning support, mental health & wellness benefits, generous PTO, company recharge days, a learning & development stipend, a work from home stipend, and cell phone reimbursement.  Figma also offers sales incentive pay for most sales roles and an annual bonus plan for eligible non-sales roles. Figma’s compensation and benefits are subject to change and may be modified in the future.

Annual Base Salary Range:

$185,000—$296,000 USD

At Figma we celebrate and support our differences. We know employing a team rich in diverse thoughts, experiences, and opinions allows our employees, our product and our community to flourish. Figma is an equal opportunity workplace - we are dedicated to equal employment opportunities regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity/expression, veteran status , or any other characteristic protected by law. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements.

We will work to ensure individuals with disabilities are provided reasonable accommodation to apply for a role, participate in the interview process, perform essential job functions, and receive other benefits and privileges of employment. If you require accommodation, please reach out to accommodations-ext@figma.com. These modifications enable an individual with a disability to have an equal opportunity not only to get a job, but successfully perform their job tasks to the same extent as people without disabilities.

Examples of accommodations include but are not limited to:

• Holding interviews in an accessible location
• Enabling closed captioning on video conferencing
• Ensuring all written communication be compatible with screen readers
• Changing the mode or format of interviews

To ensure the integrity of our hiring process and facilitate a more personal connection, we require all candidates keep their cameras on during video interviews. Additionally, if hired you will be required to attend in person onboarding.

By applying for this job, the candidate acknowledges and agrees that any personal data contained in their application or supporting materials will be processed in accordance with Figma’s Candidate Privacy Notice.

Figma is growing our team of passionate creatives and builders on a mission to make design accessible to all. Figma’s platform helps teams bring ideas to life—whether you’re brainstorming, creating a prototype, translating designs into code, or iterating with AI. From idea to product, Figma empowers teams to streamline workflows, move faster, and work together in real time from anywhere in the world. If you’re excited to shape the future of design and collaboration, join us!

Figma’s GRC team helps build and maintain trust with our users, regulators, business partners, and the organizations that rely on Figma every day. We partner across the company to strengthen security, manage risk, maintain compliance, and scale the programs that support our continued growth.

We’re growing our team and looking for security, risk, and compliance professionals across several disciplines. Whether your expertise is in compliance, risk management, governance, GRC tooling, or customer trust, you’ll have the opportunity to build programs, improve processes, and help shape how Figma scales security and trust.

Roles we hire for on this team:

• Compliance Management
  • Lead compliance and certification programs across security and regulatory frameworks
  • Manage audit cycles, partner with external assessors, and drive audit readiness initiatives
  • Improve controls, processes, and evidence management practices across the organization
• Security Risk Management
  • Build and maintain risk and controls frameworks that support Figma’s security posture
  • Assess, prioritize, and communicate security risks across the business
  • Develop third-party risk management strategies and enterprise risk reporting programs
• Policy & Governance
  • Manage the lifecycle of organizational security policies, standards, and procedures
  • Drive policy awareness and stakeholder engagement across the company
  • Ensure governance practices align with regulatory requirements and business objectives
• GRC Platforms & Enablement
  • Select, implement, and optimize GRC platforms and supporting workflows
  • Scale evidence collection, reporting, and program management capabilities
  • Identify opportunities to automate and streamline GRC operations
• Customer Trust
  • Support customer trust and business enablement activities across the sales lifecycle
  • Manage security knowledge bases, customer-facing documentation, and trust publications
  • Respond to customer security inquiries, audits, and questionnaires

This is a full time role that can be held from one of our US hubs or remotely in the United States.

What you’ll do at Figma:

• Lead compliance programs across frameworks such as SOC 2, ISO 27001, FedRAMP, SOX ITGC, GDPR, and NIS2
• Manage external audits and certification activities while partnering with auditors and assessors
• Build and maintain risk and controls frameworks, including common control frameworks that support multiple certifications
• Conduct risk and gap assessments and drive remediation efforts across technical and business stakeholders
• Improve control effectiveness and operational efficiency through rationalization and process optimization
• Implement and optimize GRC platforms that scale evidence collection and program management
• Maintain security policies and governance processes that align with organizational risk objectives
• Support customer trust initiatives, including security questionnaires, audits, and customer-facing security communications

We’d love to hear from you if you have:

• 4+ years of experience in information security, compliance, risk management, or a related field
• Hands-on experience supporting security and compliance frameworks such as SOC 2, ISO 27001, FedRAMP, PCI-DSS, or SOX ITGC
• Experience leading or supporting audits and partnering with external assessors
• Demonstrated ability to conduct assessments, drive remediation efforts, and manage cross-functional initiatives
• Exceptional written and verbal communication skills across technical, business, and executive audiences
• Demonstrated ability to improve processes, manage competing priorities, and build strong cross-functional partnerships

While it’s not required, it’s an added plus if you also have:

• Operated in a public company environment with SOX ITGC requirements
• Supported FedRAMP authorization, SSP development, 3PAO coordination, or continuous monitoring activities
• Earned security or risk certifications such as CISA, CISSP, CISM, or CRISC
• Implemented or administered GRC platforms such as Vanta, Drata, or similar tools
• Scaled security, compliance, or risk programs in a high-growth environment

At Figma, one of our values is Grow as you go. We believe in hiring smart, curious people who are excited to learn and develop their skills. If you’re excited about this role but your past experience doesn’t align perfectly with the points outlined in the job description, we encourage you to apply anyways. You may be just the right candidate for this or other roles.

Pay Transparency Disclosure

If based in Figma’s San Francisco or New York hub offices, this role has the annual base salary range stated below.

Job level and actual compensation will be decided based on factors including, but not limited to, individual qualifications objectively assessed during the interview process (including skills and prior relevant experience, potential impact, and scope of role), market demands, and specific work location. The listed range is a guideline, and the range for this role may be modified. For roles that are available to be filled remotely, the pay range is localized according to employee work location by a factor of between 80% and 100% of range. Please discuss your specific work location with your recruiter for more information.

Figma offers equity to employees, as well a competitive package of additional benefits, including health, dental & vision, retirement with company contribution, parental leave & reproductive or family planning support, mental health & wellness benefits, generous PTO, company recharge days, a learning & development stipend, a work from home stipend, and cell phone reimbursement.  Figma also offers sales incentive pay for most sales roles and an annual bonus plan for eligible non-sales roles. Figma’s compensation and benefits are subject to change and may be modified in the future.

Annual Base Salary Range:

$153,000—$296,000 USD

At Figma we celebrate and support our differences. We know employing a team rich in diverse thoughts, experiences, and opinions allows our employees, our product and our community to flourish. Figma is an equal opportunity workplace - we are dedicated to equal employment opportunities regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity/expression, veteran status , or any other characteristic protected by law. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements.

We will work to ensure individuals with disabilities are provided reasonable accommodation to apply for a role, participate in the interview process, perform essential job functions, and receive other benefits and privileges of employment. If you require accommodation, please reach out to accommodations-ext@figma.com. These modifications enable an individual with a disability to have an equal opportunity not only to get a job, but successfully perform their job tasks to the same extent as people without disabilities.

Examples of accommodations include but are not limited to:

• Holding interviews in an accessible location
• Enabling closed captioning on video conferencing
• Ensuring all written communication be compatible with screen readers
• Changing the mode or format of interviews

To ensure the integrity of our hiring process and facilitate a more personal connection, we require all candidates keep their cameras on during video interviews. Additionally, if hired you will be required to attend in person onboarding.

By applying for this job, the candidate acknowledges and agrees that any personal data contained in their application or supporting materials will be processed in accordance with Figma’s Candidate Privacy Notice.

Figma is growing our team of passionate creatives and builders on a mission to make design accessible to all. Figma’s platform helps teams bring ideas to life—whether you’re brainstorming, creating a prototype, translating designs into code, or iterating with AI. From idea to product, Figma empowers teams to streamline workflows, move faster, and work together in real time from anywhere in the world. If you’re excited to shape the future of design and collaboration, join us!

Figma’s Security team is growing, and we’re looking for a Security Operations Manager to lead the strategy and execution of our security operations program. In this role, you’ll build and scale the systems, processes, and tooling that help protect Figma and our community. You’ll partner closely with Security Engineering, Platform Security, IT, GRC, and Legal to strengthen our detection and response capabilities, improve operational resilience, and help shape the future of our DART and SOC functions.

This is a full time role that can be held from one of our US hubs or remotely in the United States.

What you’ll do at Figma:

• Own Figma’s security monitoring and incident response program, from detection engineering through post-incident review and continuous improvement
• Build and automate security operations workflows, including alert triage, enrichment, investigation, and response actions using SOAR and custom tooling
• Develop and maintain incident response run books, escalation procedures, and communication plans for security events of varying severity
• Lead incident response preparedness initiatives, including tabletop exercises, red team engagements, and response capability assessments
• Improve the effectiveness of our SIEM and SOAR platforms by reducing noise, increasing signal fidelity, and closing detection coverage gaps
• Build and operationalize threat intelligence capabilities to identify adversary behaviors, prioritize investments, and strengthen detection and response programs
• Partner with Legal, Privacy, and Communications teams to support breach notification and regulatory response obligations during significant security incidents
• Drive security operations strategy through vendor management, operational metrics, and cross-functional initiatives spanning IAM, vulnerability management, DLP, and exposure reduction

We’d love to hear from you if you have:

• 7+ years of experience in security operations, incident response, or a related security engineering function
• Hands-on experience building and automating detection and response workflows using scripting, APIs, or security automation platforms
• Deep expertise with SIEM and SOAR technologies in a cloud-native or SaaS environment
• Demonstrated success building, scaling, or significantly improving a detection and response program
• Experience leading complex security incidents and partnering with Legal, Privacy, and business stakeholders during high-impact events

While it’s not required, it’s an added plus if you also have:

• Operated in a public company environment with SOX, ISO 27001, SOC 2, or FedRAMP requirements
• Applied AI risk management frameworks such as NIST AI RMF, OECD AI Principles, or ISO 42001
• Utilized AI-powered tools to automate security operations workflows and improve team efficiency

At Figma, one of our values is Grow as you go. We believe in hiring smart, curious people who are excited to learn and develop their skills. If you’re excited about this role but your past experience doesn’t align perfectly with the points outlined in the job description, we encourage you to apply anyways. You may be just the right candidate for this or other roles.

Pay Transparency Disclosure

If based in Figma’s San Francisco or New York hub offices, this role has the annual base salary range stated below.

Job level and actual compensation will be decided based on factors including, but not limited to, individual qualifications objectively assessed during the interview process (including skills and prior relevant experience, potential impact, and scope of role), market demands, and specific work location. The listed range is a guideline, and the range for this role may be modified. For roles that are available to be filled remotely, the pay range is localized according to employee work location by a factor of between 80% and 100% of range. Please discuss your specific work location with your recruiter for more information.

Figma offers equity to employees, as well a competitive package of additional benefits, including health, dental & vision, retirement with company contribution, parental leave & reproductive or family planning support, mental health & wellness benefits, generous PTO, company recharge days, a learning & development stipend, a work from home stipend, and cell phone reimbursement.  Figma also offers sales incentive pay for most sales roles and an annual bonus plan for eligible non-sales roles. Figma’s compensation and benefits are subject to change and may be modified in the future.

Annual Base Salary Range:

$185,000—$296,000 USD

At Figma we celebrate and support our differences. We know employing a team rich in diverse thoughts, experiences, and opinions allows our employees, our product and our community to flourish. Figma is an equal opportunity workplace - we are dedicated to equal employment opportunities regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity/expression, veteran status , or any other characteristic protected by law. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements.

We will work to ensure individuals with disabilities are provided reasonable accommodation to apply for a role, participate in the interview process, perform essential job functions, and receive other benefits and privileges of employment. If you require accommodation, please reach out to accommodations-ext@figma.com. These modifications enable an individual with a disability to have an equal opportunity not only to get a job, but successfully perform their job tasks to the same extent as people without disabilities.

Examples of accommodations include but are not limited to:

• Holding interviews in an accessible location
• Enabling closed captioning on video conferencing
• Ensuring all written communication be compatible with screen readers
• Changing the mode or format of interviews

To ensure the integrity of our hiring process and facilitate a more personal connection, we require all candidates keep their cameras on during video interviews. Additionally, if hired you will be required to attend in person onboarding.

By applying for this job, the candidate acknowledges and agrees that any personal data contained in their application or supporting materials will be processed in accordance with Figma’s Candidate Privacy Notice.

Figma is growing our team of passionate creatives and builders on a mission to make design accessible to all. Figma’s platform helps teams bring ideas to life—whether you’re brainstorming, creating a prototype, translating designs into code, or iterating with AI. From idea to product, Figma empowers teams to streamline workflows, move faster, and work together in real time from anywhere in the world. If you’re excited to shape the future of design and collaboration, join us!

Figma’s GRC team helps build and maintain trust with our users, regulators, business partners, and the organizations that rely on Figma every day. We partner across the company to strengthen security, manage risk, maintain compliance, and scale the programs that support our continued growth.

We’re growing our team and looking for security, risk, and compliance professionals across several disciplines. Whether your expertise is in compliance, risk management, governance, GRC tooling, or customer trust, you’ll have the opportunity to build programs, improve processes, and help shape how Figma scales security and trust.

Roles we hire for on this team:

• Compliance Management
  • Lead compliance and certification programs across security and regulatory frameworks
  • Manage audit cycles, partner with external assessors, and drive audit readiness initiatives
  • Improve controls, processes, and evidence management practices across the organization
• Security Risk Management
  • Build and maintain risk and controls frameworks that support Figma’s security posture
  • Assess, prioritize, and communicate security risks across the business
  • Develop third-party risk management strategies and enterprise risk reporting programs
• Policy & Governance
  • Manage the lifecycle of organizational security policies, standards, and procedures
  • Drive policy awareness and stakeholder engagement across the company
  • Ensure governance practices align with regulatory requirements and business objectives
• GRC Platforms & Enablement
  • Select, implement, and optimize GRC platforms and supporting workflows
  • Scale evidence collection, reporting, and program management capabilities
  • Identify opportunities to automate and streamline GRC operations
• Customer Trust
  • Support customer trust and business enablement activities across the sales lifecycle
  • Manage security knowledge bases, customer-facing documentation, and trust publications
  • Respond to customer security inquiries, audits, and questionnaires

This is a full time role that can be held from one of our US hubs or remotely in the United States.

What you’ll do at Figma:

• Lead compliance programs across frameworks such as SOC 2, ISO 27001, FedRAMP, SOX ITGC, GDPR, and NIS2
• Manage external audits and certification activities while partnering with auditors and assessors
• Build and maintain risk and controls frameworks, including common control frameworks that support multiple certifications
• Conduct risk and gap assessments and drive remediation efforts across technical and business stakeholders
• Improve control effectiveness and operational efficiency through rationalization and process optimization
• Implement and optimize GRC platforms that scale evidence collection and program management
• Maintain security policies and governance processes that align with organizational risk objectives
• Support customer trust initiatives, including security questionnaires, audits, and customer-facing security communications

We’d love to hear from you if you have:

• 4+ years of experience in information security, compliance, risk management, or a related field
• Hands-on experience supporting security and compliance frameworks such as SOC 2, ISO 27001, FedRAMP, PCI-DSS, or SOX ITGC
• Experience leading or supporting audits and partnering with external assessors
• Demonstrated ability to conduct assessments, drive remediation efforts, and manage cross-functional initiatives
• Exceptional written and verbal communication skills across technical, business, and executive audiences
• Demonstrated ability to improve processes, manage competing priorities, and build strong cross-functional partnerships

While it’s not required, it’s an added plus if you also have:

• Operated in a public company environment with SOX ITGC requirements
• Supported FedRAMP authorization, SSP development, 3PAO coordination, or continuous monitoring activities
• Earned security or risk certifications such as CISA, CISSP, CISM, or CRISC
• Implemented or administered GRC platforms such as Vanta, Drata, or similar tools
• Scaled security, compliance, or risk programs in a high-growth environment

At Figma, one of our values is Grow as you go. We believe in hiring smart, curious people who are excited to learn and develop their skills. If you’re excited about this role but your past experience doesn’t align perfectly with the points outlined in the job description, we encourage you to apply anyways. You may be just the right candidate for this or other roles.

Pay Transparency Disclosure

If based in Figma’s San Francisco or New York hub offices, this role has the annual base salary range stated below.

Job level and actual compensation will be decided based on factors including, but not limited to, individual qualifications objectively assessed during the interview process (including skills and prior relevant experience, potential impact, and scope of role), market demands, and specific work location. The listed range is a guideline, and the range for this role may be modified. For roles that are available to be filled remotely, the pay range is localized according to employee work location by a factor of between 80% and 100% of range. Please discuss your specific work location with your recruiter for more information.

Figma offers equity to employees, as well a competitive package of additional benefits, including health, dental & vision, retirement with company contribution, parental leave & reproductive or family planning support, mental health & wellness benefits, generous PTO, company recharge days, a learning & development stipend, a work from home stipend, and cell phone reimbursement.  Figma also offers sales incentive pay for most sales roles and an annual bonus plan for eligible non-sales roles. Figma’s compensation and benefits are subject to change and may be modified in the future.

Annual Base Salary Range:

$153,000—$296,000 USD

At Figma we celebrate and support our differences. We know employing a team rich in diverse thoughts, experiences, and opinions allows our employees, our product and our community to flourish. Figma is an equal opportunity workplace - we are dedicated to equal employment opportunities regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity/expression, veteran status , or any other characteristic protected by law. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements.

We will work to ensure individuals with disabilities are provided reasonable accommodation to apply for a role, participate in the interview process, perform essential job functions, and receive other benefits and privileges of employment. If you require accommodation, please reach out to accommodations-ext@figma.com. These modifications enable an individual with a disability to have an equal opportunity not only to get a job, but successfully perform their job tasks to the same extent as people without disabilities.

Examples of accommodations include but are not limited to:

• Holding interviews in an accessible location
• Enabling closed captioning on video conferencing
• Ensuring all written communication be compatible with screen readers
• Changing the mode or format of interviews

To ensure the integrity of our hiring process and facilitate a more personal connection, we require all candidates keep their cameras on during video interviews. Additionally, if hired you will be required to attend in person onboarding.

By applying for this job, the candidate acknowledges and agrees that any personal data contained in their application or supporting materials will be processed in accordance with Figma’s Candidate Privacy Notice.

MongoDB’s Security Assurance team is on a mission to make MongoDB one of the world’s most trusted technology vendors. We are doing this in two ways. First, we provide customers with the clear, concise and accurate information about the security of our products that customers require to use our products. Second, we serve as trusted security SMEs to MongoDB’s field teams.

The InfoSec Analyst I is an independent contributor role. This role is vital to the Security Assurance team’s mission and is responsible for coordinating completion of customer due diligence reviews as well as helping MongoDB’s field personnel answer complex customer security questions.

We are looking to speak to candidates who are based in Dublin for our hybrid working model.

Responsibilities:

• Actively manage the Assurance team’s queue to ensure requests are handled promptly
• Complete customer security reviews. Help other team members complete reviews as necessary
• Help customer facing personnel respond to customer security questions
• Monitor relevant channels and answer in scope questions when possible, or escalate to more senior team members
• Proactively maintain the team’s knowledgebase
• Proactively recommend improvements in team processes and tooling to team leadership
• Share relevant and actionable customer feedback with team leadership
• Help coordinate development of customer facing response to high-profile supply chain events including critical severity CVEs that may affect MongoDB or its vendors
• Lead complex projects to help build, scale and train the team
• Serve as an internal subject matter expert on MongoDB product security topics, assurance trends, customer concerns, and emerging regulations
• Design and deliver internal enablement training on security posture and compliance topics for teams across the organization

Requirements:

• 2 to 3 years of experience in Information Security
• BS in Computer Science, Information Systems, or equivalent experience
• Direct exposure to at least one major framework or regulation such as ISO 27001, SOC2, CSA or DORA is preferred
• Basic understanding of public cloud technologies including IAM, encryption, network security and tenant isolation
• Strong communication skills, with the ability to present security concepts to technical and non-technical stakeholders up to and including at the executive levels
• Ability to coordinate and manage multiple urgent requests simultaneously while effectively collaborating with SMEs across various time zones
• A self-starter with a strong desire to grow into a trusted authority on the security of MongoDB and its products

Success in this Role Means:

• Within 3 months - Have a solid understanding of MongoDB’s product portfolio, core security posture, and the Security Assurance team’s procedures and tooling; reliably triage incoming requests; independently complete customer security reviews with guidance from more senior team members; monitor key internal channels and answer straightforward in‑scope questions
• Within 6 months - Independently own end‑to‑end completion of most standard customer security reviews; serve as a trusted partner to customer‑facing teams by helping them respond to complex security questions; make measurable contributions to the team knowledgebase and playbooks; proactively identify and help implement improvements to team processes and tooling
• Within 12 months - Be recognized as a trusted subject matter expert on MongoDB’s product portfolio, security posture and common customer concerns; complete complex projects that materially improve review quality, throughput, or customer experience; consistently surface relevant, actionable customer feedback that can influence Security roadmaps

About MongoDB

MongoDB is built for change, empowering our customers and our people to innovate at the speed of the market. We have redefined the data platformbase for the AI era, enabling buildersinnovators to create, transform, and disrupt industries with software. MongoDB’s unified database platform, the most widely available, globally distributed data platformbase on the market, helps organizations modernize legacy workloads, embrace innovation, and unleash AI. Our cloud-native platform, MongoDB Atlas, is the only globally distributed, multi-cloud data platformbase and is available across AWS, Google Cloud, and Microsoft Azure.

With offices worldwide and over 670,000 customers, including 75% of the Fortune 100 and AI-native startups, relying on MongoDB for their most important applications, we’re powering the next era of software.

Our compass at MongoDB is our Leadership Commitment, guiding how and why we make decisions, show up for each other, and win. It’s what makes us MongoDB.

To drive the personal growth and business impact of our employees, we’re committed to developing a supportive and enriching culture for everyone. From employee affinity groups, to fertility assistance and a generous parental leave policy, we value our employees’ wellbeing and want to support them along every step of their professional and personal journeys. Learn more about what it’s like to work at MongoDB, and help us make an impact on the world!

MongoDB is committed to providing any necessary accommodations for individuals with disabilities within our application and interview process. To request an accommodation due to a disability, please inform your recruiter.

MongoDB is an equal opportunities employer.

Req ID: 2273456141

About ProArch:

At ProArch, we partner with businesses around the world to turn big ideas into better outcomes through IT services that span cybersecurity, cloud, data, AI, and app development.

We’re 400+ team members strong across 3 countries (we call ourselves ProArchians)—and here’s what connects us all:

• A love for solving real business problems
• A belief in doing what’s right

What’s it like to work here?

• You’ll keep growing. You’ll work alongside domain experts who love to share what they know.
• You’ll be supported, heard, and trusted to make an impact.
• You’ll take on projects that touch industries, communities, and lives.
• You’ll have the time to focus on what matters most in your life outside of work.

At ProArch, you’ll be part of teams that design and deliver technology solutions solving real business challenges for our clients. With services spanning AI, Data, Application Development, Cybersecurity, Cloud & Infrastructure, and Industry Solutions, your work may involve building intelligent applications, securing business‑critical systems, or supporting cloud migrations and infrastructure modernization.

Every role here contributes to shaping outcomes for global clients and driving meaningful impact. You’ll collaborate with experts across data, AI, engineering, cloud, cybersecurity, and infrastructure—solving complex problems with creativity, precision, and purpose. You’ll join a culture rooted in technology, curiosity, and continuous learning. A place where we move fast, trust you to make an impact, encourage innovation, and support your growth.

About Position:

At ProArch, a leader in IT security consulting with presence in the US, UK, and India, we are looking for a skilled L3 SOC Analyst / Incident Response Analyst to join our Security Operations Center (SOC) team. In this critical role, you will be responsible for advanced incident detection, investigation, and response to complex cybersecurity threats. Leveraging your extensive experience and expertise, you will lead incident response activities, perform deep-dive analysis, and coordinate with cross-functional teams to mitigate risks and strengthen our security posture. If you thrive in a dynamic, fast-paced environment and are passionate about defending organizations against sophisticated cyber threats, this position is ideal for you.Role Summary

ProArch are seeking a highly skilled and technically strong L3 SOC Analyst / Incident Response Analyst to operate within a Managed Security Services Provider (MSSP) environment, supporting multiple customer environments across diverse industries.

This role is heavily focused on:

• Incident Response
• Threat Investigation
• Detection Engineering
• DFIR Operations
• SOC Automation
• Threat Hunting
• Security Platform Engineering
• Response Workflow Optimization

The ideal candidate combines strong incident response expertise, deep Microsoft security platform knowledge, hands-on detection engineering capability, and SOC automation experience within a fast-paced MSSP environment.

This is not a traditional alert-monitoring SOC Analyst role. The position requires strong investigative, analytical, and response-oriented cybersecurity capabilities.

Key Responsibilities

1. Incident Response & Threat Investigation

• Lead and support advanced security incident investigations across multiple customer environments

Perform:

• Threat triage and validation
• IOC analysis and threat correlation
• Endpoint and identity investigations
• Email security investigations
• Cloud security incident analysis
• Root cause analysis

Investigate and respond to:

• Account compromise incidents

• Business Email Compromise (BEC)

• Malware and ransomware activity

• Privilege escalation

• Lateral movement activity

• Suspicious cloud and identity-based attacks

• Advanced phishing and social engineering campaigns

• Coordinate containment, remediation, and recovery activities with customer and internal teams

• Support high-severity incident escalation handling and response coordination

• Provide detailed investigation findings, timelines, impact assessments, and response recommendations

• Conduct proactive threat hunting and threat validation activities where required

• Support digital forensics and evidence collection activities when applicable

2. Detection Engineering & SIEM Operations

Design, develop, and maintain advanced detection rules across:

• Microsoft Sentinel
• Microsoft Defender XDR

Develop and optimize:

• KQL queries
• Analytics rules
• Correlation logic
• Detection use cases

Perform:

• Detection tuning

• False positive reduction

• Behavioral baselining

• Threat-based detection improvements

• Build and maintain reusable detection content and query libraries

• Support proactive detection engineering initiatives aligned with emerging threats and attacker techniques

• Leverage threat intelligence and MITRE ATT&CK mapping to improve detection coverage

3. SOC Automation & SOAR Engineering

Design and implement SOC automation workflows using:

• Microsoft Sentinel Playbooks
• Logic Apps
• SOAR platforms
• API-driven integrations

Build workflows for:

• Alert enrichment

• Incident routing

• Automated containment actions

• Threat intelligence enrichment

• Ticket synchronization

• Investigation acceleration

• Develop scalable automation frameworks to improve SOC operational efficiency

• Support continuous optimization of SOC workflows and automation coverage

• Create automation standards and reusable workflow templates across customer environments

4. Microsoft Security Platform Operations

Provide hands-on operational support, investigation, tuning, administration, and engineering for:

• Microsoft Defender for Endpoint (MDE)
• Microsoft Defender XDR
• Microsoft Defender for Identity (MDI)
• Microsoft Defender for Office 365 (MDO)
• Microsoft Defender for Cloud Apps (MDCA)
• Microsoft Purview
• Microsoft Identity Protection / Entra ID
• Microsoft Sentinel

5. AI Security & Modern Threat Operations

Support detection and response activities related to:

• AI-orchestrated attacks

• Identity-based attacks

• Cloud-native threats

• Advanced phishing and social engineering campaigns

• Leverage AI-assisted SOC operations and automation capabilities where applicable

• Support modern detection strategies aligned with evolving attacker techniques

• Evaluate opportunities to integrate AI-driven efficiencies into detection, investigation, and response workflows

6. Client & Operational Support

• Participate in customer incident discussions and escalation calls when required

• Support onboarding of new customer environments and security integrations

• Maintain:

• Investigation playbooks

• SOPs

• Workflow documentation

• Operational runbooks

• Detection documentation

Collaborate closely with:

• SOC Operations

• Security Engineering

• Vendors

• Consulting teams

• Customer stakeholders

• Support operational improvement initiatives across SOC and DFIR functions

Required Qualifications

Education

• Bachelor’s Degree / Graduation in: Computer Science/Information Technology/Cybersecurity or related technical field is mandatory
• Relevant cybersecurity and automation-focused certifications will be considered an added advantage.

Experience

• 6-9 years of overall cybersecurity experience

Strong hands-on experience in:

• Incident Response

• Threat Investigation

• SOC Operations

• Detection Engineering

• DFIR activities

• Prior Incident Response Analyst experience is highly preferred

• Experience working within MSSP environments preferred

• Experience supporting or collaborating with US-based teams/vendors preferred

• Proven hands-on experience with SOAR platforms in enterprise or MSSP environments

• Strong experience designing and implementing SOC automation workflows from scratch

• Experience supporting enterprise Security Operations Center (SOC) environments

• Experience with detection engineering and SIEM rule development

Required Technical Skills

Security Platforms & Technologies

Strong hands-on experience with:

• Microsoft Defender for Endpoint (MDE)
• Microsoft Defender XDR
• Microsoft Defender for Identity (MDI)
• Microsoft Defender for Office 365 (MDO)
• Microsoft Defender for Cloud Apps (MDCA)
• Microsoft Purview
• Microsoft Identity Protection / Entra ID
• CrowdStrike Falcon
• Threat Intelligence platforms
• Microsoft Sentinel (Mandatory)
• Defender XDR SIEM operations (Mandatory)
• Graph API
• Datto Autotask or equivalent ticketing systems
• Email security solutions
• Endpoint Detection & Response (EDR) platforms
• Identity and authentication platforms
• Cloud security technologies
• Detection Engineering & Automation

Strong experience creating:

• Detection rules
• Analytics rules
• KQL queries
• Detection tuning and fine-tuning

Experience with:

• SOC workflow design
• SOC automation
• SOAR engineering
• API integrations
• Workflow orchestration

Understanding of:

MITRE ATT&CK

• Threat detection methodologies
• Threat hunting methodologies
• AI-driven attack techniques
• AI use cases in SOC operations

Scripting & Technical Skills

Preferred experience with:

• PowerShell
• Python
• REST APIs
• Logic Apps
• KQL (Mandatory)

Preferred Certifications

• Microsoft SC-200
• Microsoft SC-401
• Microsoft AZ-500
• Microsoft SC-900
• Microsoft SC-100
• CISSP
• Security Automation / SOAR Automation / SOAR Certifications

Soft Skills & Work Style

• Strong verbal and written communication skills with the ability to work effectively across technical and non-technical teams
• Excellent collaboration and stakeholder coordination skills across SOC Operations, Engineering, Consulting, Vendors, and Leadership teams
• Strong documentation and technical writing capabilities for investigations, workflows, SOPs, and operational procedures
• Ability to work independently in a remote-first, multicultural, and fast-paced MSSP environment
• Self-driven, proactive, and highly organized with strong ownership and accountability
• Strong analytical, troubleshooting, and problem-solving skills
• Comfortable managing multiple projects, priorities, and operational initiatives simultaneously
• Team-oriented mindset with the ability to operate effectively as an individual contributor
• Professional communication and coordination skills for working with US-based teams and vendors
• Adaptable and flexible to evolving operational and business requirements

Working Model

• Rotational Shift (US Business Hours or After Hours)
• Remote-first operational model
• Participation in on-call escalation rotation for critical incidents when required

What Success Looks Like

• High-quality incident investigations and response handling
• Improved detection fidelity and reduced false positives
• Increased SOC automation coverage and operational efficiency
• Faster containment and response coordination
• Consistent and high-quality incident response across customer environments
• Strong collaboration across SOC, Engineering, and Customer teams
• Continuous improvement of detection, automation, and DFIR capabilities

Life @ ProArch

• At ProArch, we believe our people are the key to our success. That’s why we foster an environment where every employee—known proudly as a ProArchian—can grow, thrive, and make a meaningful impact.
• We empower employees to develop at their own pace through Career Pathways, a clear and supportive guide to professional progression.
• Our culture is one of positivity, inclusivity, and respect. Titles don’t define how we treat each other— every ProArchian is valued equally, and collaboration across roles and teams is the norm.
• We understand that great work starts with balance. That’s why we prioritize work-life harmony, offering flexible work schedules and encouraging time for what matters most.
• Beyond the workplace, ProArchians actively give back—organizing volunteer efforts and charitable initiatives that empower the communities we call home.
• And because we know that extraordinary efforts deserve recognition, we celebrate those who go above and beyond with appreciation programs.
• At ProArch, we’re not just using technology to transform businesses— we’re using it to create a better experience for our people, our clients, and our communities.

About ProArch:

At ProArch, we partner with businesses around the world to turn big ideas into better outcomes through IT services that span cybersecurity, cloud, data, AI, and app development.

We’re 400+ team members strong across 3 countries (we call ourselves ProArchians)—and here’s what connects us all:

• A love for solving real business problems
• A belief in doing what’s right

What’s it like to work here?

• You’ll keep growing. You’ll work alongside domain experts who love to share what they know.
• You’ll be supported, heard, and trusted to make an impact.
• You’ll take on projects that touch industries, communities, and lives.
• You’ll have the time to focus on what matters most in your life outside of work.

At ProArch, you’ll be part of teams that design and deliver technology solutions solving real business challenges for our clients. With services spanning AI, Data, Application Development, Cybersecurity, Cloud & Infrastructure, and Industry Solutions, your work may involve building intelligent applications, securing business‑critical systems, or supporting cloud migrations and infrastructure modernization.

Every role here contributes to shaping outcomes for global clients and driving meaningful impact. You’ll collaborate with experts across data, AI, engineering, cloud, cybersecurity, and infrastructure—solving complex problems with creativity, precision, and purpose. You’ll join a culture rooted in technology, curiosity, and continuous learning. A place where we move fast, trust you to make an impact, encourage innovation, and support your growth.

Position Overview

ProArch IT Solutions is seeking a highly motivated and technically skilled Security / SOAR Automation Engineer to join our global cybersecurity operations team supporting a fast-paced Managed Security Services Provider (MSSP) environment. The ideal candidate will possess strong hands-on experience in cybersecurity automation, SOAR platform engineering, SOC workflow orchestration, and security integrations across modern security ecosystems.

This role is heavily focused on designing, implementing, optimizing, and scaling SOC automation capabilities to improve operational efficiency, incident response, alert enrichment, triage automation, threat intelligence utilization, and AI-driven security operations enhancements.

The Engineer will work closely with SOC Operations, Security Engineering, Security Consulting, and Leadership teams to deliver automation initiatives and operational improvements while supporting a globally distributed security environment.

This is a permanently remote opportunity for candidates based in India, aligned primarily to USA Eastern Time (ET) business hours, with flexibility depending on operational requirements.

Key Responsibilities:

• SOAR Engineering & Automation

• Design, develop, implement, and maintain SOAR playbooks and automation workflows for SOC operations.

• Build scalable security orchestration workflows for:

• Alert triage

• Automated enrichment

• Threat intelligence correlation

• Incident response

• Containment workflows

• Identity-based investigations

• Case management

• Reporting automation

• Reporting automation

• Implement and maintain integrations between SOAR platforms and various security technologies using APIs, webhooks, SDKs, and custom connectors.

• Develop automation logic to improve SOC efficiency, reduce analyst fatigue, and accelerate Mean Time to Respond (MTTR) and Mean Time to Resolve.

• Support SOAR platform lifecycle management including upgrades, change management, testing, governance, RBAC, and operational maintenance.

• Assist with SOAR platform administration, identity & access management, and environment hardening.

Security Platform Integrations

Hands-on experience integrating and automating workflows involving:

• Microsoft Defender for Endpoint (MDE)
• Microsoft Defender XDR
• Microsoft Defender for Identity (MDI)
• Microsoft Defender for Office 365 (MDO)
• Microsoft Defender for Cloud Apps (MDCA)
• Microsoft Purview
• Microsoft Identity Protection / Entra ID
• CrowdStrike Falcon
• Threat Intelligence platforms
• (Must have) SIEM platforms (Microsoft Sentinel & Defender XDR)
• Graph API
• Ticketing platforms (Datto Autotask preferred)
• Email security solutions
• Endpoint detection & response platforms
• Identity and authentication platforms
• Cloud security solutions

SOC Operations Enhancement

• Work collaboratively with SOC Managers, SOC Team Leads, Analysts, and Security Consultants to identify automation opportunities.
• Create operational enhancements to improve detection engineering, investigation workflows, escalation efficiency, and reporting.
• Assist with scaling SOC operations using automation and AI-driven initiatives.
• Support operational maturity improvements within the SOC environment.
• Participate in incident response automation strategy discussions and implementation planning.
• Contribute to SOC transformation initiatives focused on operational scalability and service optimization.

AI & Advanced Security Operations

• Contribute to AI-enabled SOC initiatives and intelligent automation projects.
• Assist in implementing AI orchestration and automation use cases within security operations.
• Research and evaluate emerging AI and automation technologies relevant to cybersecurity operations.
• Support initiatives focused on autonomous investigation workflows, enrichment intelligence, and analyst assistance capabilities.

Collaboration & Project Coordination

• Coordinate automation initiatives with internal stakeholders and external vendors.
• Work closely with SOAR vendors for implementation support, troubleshooting, optimization, and feature enablement.
• Participate in project planning, implementation tracking, testing, and deployment activities.
• Maintain technical documentation, workflow diagrams, integration references, and operational runbooks.
• Support cross-functional cybersecurity projects and operational improvements

Experience

• Bachelor’s Degree / Graduation in Computer Science, Information Technology, Cybersecurity, Engineering, or a related technical field is mandatory.
• Relevant cybersecurity certifications and automation-focused certifications will be considered an added advantage.
• 3–5 years of overall cybersecurity experience.
• Proven hands-on experience with SOAR platforms in enterprise or MSSP environments.
• Strong experience designing and implementing automation workflows from scratch.
• Experience supporting Security Operations Center (SOC) environments.
• Prior SOC Analyst experience is highly preferred.
• Experience working within Managed Security Services Provider (MSSP) environments preferred.
• Experience supporting or collaborating with US-based teams/vendors preferred.

Technical Skills

• Strong hands-on experience with SOAR technologies.
• Experience with Torq SOAR preferred.

Strong understanding of:

• Incident response workflows
• SOC operations
• Detection engineering
• Security orchestration
• Threat intelligence
• API integrations
• Authentication mechanisms
• Identity-based security workflows
• Experience integrating security tools using:
• REST APIs
• JSON
• Webhooks
• Python
• PowerShell
• Scripting/automation frameworks
• Familiarity with SIEM platforms and alert correlation logic.
• Experience with ticketing systems, preferably Datto Autotask.
• Understanding endpoints, cloud, identity, and email security ecosystems.

Preferred Qualifications

• Experience implementing AI-driven SOC workflows.
• Exposure to AI orchestration in cybersecurity operations.
• Knowledge of security operations metrics and optimization strategies.
• Experience with security automation governance and change management.
• Exposure to cloud security platforms and SaaS security controls.
• Familiarity with DevSecOps or infrastructure automation concepts.
• Relevant cybersecurity certifications are advantageous like Security+, CySA+, GCIH, SC-200, AZ-500, SOAR platform certifications, Splunk / Microsoft certifications

Soft Skills & Work Style

• Strong verbal and written communication skills with the ability to work effectively across technical and non-technical teams.
• • Excellent collaboration and stakeholder coordination skills across SOC Operations, Engineering, Consulting, Vendors, and Leadership teams.
• Strong documentation and technical writing capabilities for workflows, SOPs, and operational procedures.
• Ability to work independently in a remote-first, multicultural, and fast-paced MSSP environment.
• Self-driven, proactive, and highly organized with strong ownership and accountability.
• Strong analytical, troubleshooting, and problem-solving skills.
• Comfortable managing multiple projects, priorities, and operational initiatives simultaneously.
• Team-oriented mindset with the ability to operate effectively as an individual contributor.
• Professional communication and coordination skills for working with US-based teams and vendors.
• Adaptable and flexible to evolving operational and business requirements.

Work Schedule & Environment

• Primary alignment with USA Eastern Time (ET) business hours.
• Permanent remote working opportunity within India.
• Flexible working model based on operational requirements and project demands.
• Fast-paced MSSP and cybersecurity operations environment.

What Success Looks Like in This Role

• Successful deployment and optimization of SOC automation workflows.
• Measurable reduction in manual SOC effort and alert fatigue.
• Improved operational efficiency and response timelines.
• Reliable integration and orchestration across security ecosystems.
• Contribution toward scalable, AI-enabled cybersecurity operations.
• Strong collaboration with SOC leadership, analysts, engineering, and consulting teams.
• Continuous innovation and operational enhancement within the security operations function.

Life @ ProArch

• At ProArch, we believe our people are the key to our success. That’s why we foster an environment where every employee—known proudly as a ProArchian—can grow, thrive, and make a meaningful impact.
• We empower employees to develop at their own pace through Career Pathways, a clear and supportive guide to professional progression.
• Our culture is one of positivity, inclusivity, and respect. Titles don’t define how we treat each other— every ProArchian is valued equally, and collaboration across roles and teams is the norm.
• We understand that great work starts with balance. That’s why we prioritize work-life harmony, offering flexible work schedules and encouraging time for what matters most.
• Beyond the workplace, ProArchians actively give back—organizing volunteer efforts and charitable initiatives that empower the communities we call home.
• And because we know that extraordinary efforts deserve recognition, we celebrate those who go above and beyond with appreciation programs.
• At ProArch, we’re not just using technology to transform businesses— we’re using it to create a better experience for our people, our clients, and our communities.

Company Overview

Interactive Brokers Group, Inc. (Nasdaq: IBKR) is a global financial services company headquartered in Greenwich, CT, USA, with offices in over 15 countries. We have been at the forefront of financial innovation for over four decades, known for our cutting-edge technology and client commitment.

IBKR affiliates provide global electronic brokerage services around the clock on stocks, options, futures, currencies, bonds, and funds to clients in over 200 countries and territories. We serve individual investors and institutions, including financial advisors, hedge funds and introducing brokers. Our advanced technology, competitive pricing, and global market help our clients to make the most of their investments.

Barron’s has recognized Interactive Brokers as the #1 online broker for six consecutive years. Join our dynamic, multi-national team and be a part of a company that simplifies and enhances financial opportunities using state-of-the-art technology.

About the Role

We are looking for an Application Security Engineer who lives at the intersection of security and engineering. This is not a policy role — you will be hands-on building, tuning, and scaling the security scanning infrastructure that protects our software delivery pipeline. You will own SAST, DAST, and SCA tooling end to end, drive false positive reduction, and embed security gates directly into CI/CD workflows across engineering teams. A deep understanding of how vulnerabilities actually work — not just what scanners report — is fundamental to success in this role.

The Problem We’re Solving

We operate in a complex, regulated environment — multiple languages, layered network boundaries, and delivery velocity that cannot be sacrificed for security theater. We are building a scanning program that works in that reality. Tuned, automated, trusted — coverage that is measurable and findings that engineers actually act on. This role exists to solve that problem.

What You’ll Do

• Own and operate static, dynamic, and software composition analysis scanning platforms across all engineering pipelines — onboarding new repositories, tuning rulesets, and maintaining coverage metrics

• Build and maintain CI/CD security gates that enforce scan policies at pull request, merge, and release stages across engineering workflows

• Write custom detection rules tailored to the organization’s tech stack and threat model — covering vulnerability classes specific to the languages and frameworks in use

• Triage and prioritize scan findings with a deep understanding of actual exploitability — distinguish true positives from noise, explain the real-world impact of each finding, and build suppression workflows that reduce false positive rates without creating blind spots

• Develop automation to ticket, deduplicate, and route findings to the right engineering teams with enough context for developers to understand and act on them

• Integrate dynamic scanning into pre-production environments with authenticated coverage — understanding what attack surface is actually reachable versus what scanners miss

• Partner with engineering teams on remediation — provide exploit context, reproduce findings where necessary, and give concrete fix guidance grounded in how the vulnerability actually works

• Support software composition analysis and dependency security programs — tying third-party vulnerabilities back to actual reachability and exploitability in the codebase rather than treating every CVE as equal severity

• Contribute to the security champions program — help developers understand not just what is flagged but why it matters and how an attacker would use it

• Run structured evaluations of new tooling and drive buy vs build decisions with documented PoC results

What We’re Looking For

These areas are the capabilities we are looking for. Strong candidates will not check every box. If you are strong in either of the below, we want to hear from you. Depth in one area with curiosity about other matters more than surface-level familiarity across all of them.

• 5-7 years in application security, DevSecOps, or a security engineering role with tooling focus

• Strong foundational knowledge of how web application vulnerabilities work at a technical level — injection classes, broken authentication patterns, insecure deserialization, XXE, SSRF, IDOR, race conditions, and business logic flaws — not just awareness of their names

• Ability to read a scan finding and independently reason about whether it is exploitable in context — understanding data flow, trust boundaries, and what an attacker would actually need to trigger it

• Hands-on experience deploying and tuning SAST platforms — writing or modifying rules, understanding AST-based and dataflow analysis, and knowing where static analysis fundamentally cannot reach

• Experience integrating security tooling into CI/CD pipelines and enforcing policy at key delivery gates

• Proficiency in at least one scripting language — Python or Go strongly preferred — for automation and tooling development

• Experience with DAST tooling in authenticated scan configurations — understanding what authenticated coverage requires and how session handling, CSRF tokens, and multi-step flows affect scan fidelity

• Familiarity with SCA concepts — dependency graphs, transitive vulnerabilities, license risk, reachability analysis, and SBOM formats including CycloneDX and SPDX

• Ability to read and reason about code across multiple languages

Nice to Have

• Development background — candidates who have written production code and personally addressed security vulnerabilities in a codebase bring a fundamentally different perspective to this role; they understand why developers make the choices they do, where fixes break things, and how to give remediation guidance that engineers will actually implement

• Background that spans both sides of the SDLC — having sat in a developer role before moving into security means stronger partnerships with engineering teams and more credible guidance during code review and triage conversations

• Experience writing custom detection logic for organization-specific vulnerability patterns beyond out-of-the-box scanner coverage

Company Benefits & Perks:

• Competitive salary package.
• Performance based annual bonus ( cash and stocks).
• Hybrid working model (3 days office/week).
• Group Medical & Life Insurance.
• Modern offices with free amenities & fully stocked cafeterias.
• Monthly food card & company paid snacks.
• Hardship/shift allowance with company provided pickup & drop facility*
• Attractive employee referral bonus.
• Frequent company sponsored team building events and outings.

\* Depending upon the shifts.

** The benefits package is subject to change at the management’s discretion.

Company Overview

Interactive Brokers Group, Inc. (Nasdaq: IBKR) is a global financial services company headquartered in Greenwich, CT, USA, with offices in over 15 countries. We have been at the forefront of financial innovation for over four decades, known for our cutting-edge technology and client commitment.

IBKR affiliates provide global electronic brokerage services around the clock on stocks, options, futures, currencies, bonds, and funds to clients in over 200 countries and territories. We serve individual investors and institutions, including financial advisors, hedge funds and introducing brokers. Our advanced technology, competitive pricing, and global market help our clients to make the most of their investments.

Barron’s has recognized Interactive Brokers as the #1 online broker for six consecutive years. Join our dynamic, multi-national team and be a part of a company that simplifies and enhances financial opportunities using state-of-the-art technology.

Security Engineer -Bug Bounty

About the Role

We are looking for a Security Engineer focused on Bug Bounty who treats researcher reports as security data, not support tickets. This is not a coordination role — you will be hands-on validating vulnerabilities, reproducing exploits, and working directly with engineering teams to drive fixes. You will own the full lifecycle of the program: scope design, triage, researcher relations, remediation tracking, and the upstream feedback that turns external findings into internal controls.

The other half of this role is developer partnership. Findings that sit in a backlog do not improve security. You will reduce the friction that keeps confirmed vulnerabilities from being fixed — translating researcher reports into clear remediation guidance, removing ambiguity that slows engineers down, and identifying the process or tooling gaps that let the same vulnerability class appear repeatedly.

A deep understanding of how vulnerabilities actually work — not just how to classify them — is fundamental to success here.

What You’ll Do

• Own day-to-day operations of the bug bounty program on the managed platform, including report triage, severity assessment, researcher communication, and payout decisions — maintaining SLA compliance across all inbound volume

• Reproduce and technically validate submitted vulnerabilities across web, API, mobile, and trading infrastructure attack surfaces — reason independently about exploitability in context, not just what the report claims

• Classify findings using CVSS, OWASP, and business impact criteria; distinguish genuine risk from theoretical severity; escalate critical issues into incident response workflows with enough context for engineering leadership to act immediately

• Act as a remediation partner, not just a reporter — work directly with developers to clarify findings, provide exploit context, reproduce issues where needed, and give fix guidance grounded in how the vulnerability actually works; track what slows remediation and fix it

• Identify recurring vulnerability classes across inbound reports and feed patterns back into AppSec initiatives — SAST rule tuning, developer training, design review checklists — closing the loop from external discovery to internal prevention

• Maintain program scope, out-of-scope guidance, and rules of engagement; adjust based on surface area changes, new products, and program maturity signals

• Coordinate with legal, compliance, and communications on responsible disclosure edge cases, researcher disputes, and public disclosure timelines

• Produce monthly and quarterly program metrics for security leadership — coverage, triage velocity, remediation cycle times, finding trends — with enough analytical depth to drive program decisions

• Evaluate attack surface expansions — new APIs, products, acquisitions — for readiness to enter program scope

What We’re Looking For

These are the capabilities that matter for this role. Strong candidates will not check every box. Depth in vulnerability validation and developer partnership matters more than broad platform familiarity. If you have operated on both sides of the researcher-developer relationship, we want to hear from you.

• 2–5 years in application security, penetration testing, bug bounty operations, or a security engineering role with hands-on validation focus

• Strong foundational knowledge of how web application vulnerabilities work at a technical level — SSRF, IDOR, auth bypass, injection classes, business logic flaws, API authorization failures, OAuth misconfigurations — not just awareness of their names

• Ability to read a researcher report and independently reason about exploitability in the specific context of the application — understand trust boundaries, data flow, and what an attacker would actually need to trigger the finding

• Experience operating a bug bounty or vulnerability disclosure program on a managed platform — Bugcrowd, HackerOne, or equivalent — with ownership of triage decisions and researcher communication

• Strong written communication under pressure — you will be writing triage decisions to elite researchers and remediation guidance to developers simultaneously; both audiences require clarity and credibility

• Familiarity with REST and GraphQL API security, OAuth 2.0 flows, session management, and web application architecture at the level needed to validate findings without relying on the researcher’s reproduction steps alone

• Ability to work cross-functionally with engineering teams — translate security findings into actionable, developer-friendly guidance that engineers will actually implement rather than defer

Nice to Have

• Active bug bounty participation as a researcher — candidates who have filed reports themselves understand what makes a finding credible, what frustrates researchers about triage decisions, and how to run a program that retains high-signal contributors

• Development background — candidates who have written production code and personally addressed security vulnerabilities bring a fundamentally different perspective to remediation partnership; they understand why developers make the choices they do, where fixes break things, and how to give guidance that engineers will actually act on

• Experience in financial services or a similarly regulated environment — understanding the compliance overlay on remediation timelines and disclosure decisions changes how you prioritize and escalate

• Scripting ability in Python or Bash — for triage automation, scope monitoring, duplicate detection, or metrics extraction from platform APIs

• Familiarity with DAST tooling (Burp Suite Pro, Nuclei, ZAP) — candidates who can independently reproduce and extend researcher findings without relying solely on the submitted reproduction steps are significantly more effective in this role

Company Benefits & Perks:

• Competitive salary package.
• Performance based annual bonus ( cash and stocks).
• Hybrid working model (3 days office/week).
• Group Medical & Life Insurance.
• Modern offices with free amenities & fully stocked cafeterias.
• Monthly food card & company paid snacks.
• Hardship/shift allowance with company provided pickup & drop facility*
• Attractive employee referral bonus.
• Frequent company sponsored team building events and outings.

\* Depending upon the shifts.

** The benefits package is subject to change at the management’s discretion.

GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation’s top organizations, such as Fortune 500 companies and U.S. government agencies, to identify threats, optimize resources and integrate best-fit solutions that mitigate risk.

About GuidePoint Security

GuidePoint Security is a leading cybersecurity solutions and services firm enabling federal government organizations to make smarter security decisions that minimize risk. With more than 800 vetted technology vendor partnerships and deep practitioner expertise across every major cybersecurity domain, GuidePoint serves more than half of the U.S. Government’s cabinet-level agencies across Civilian, DoD, and Intelligence Community segments, as well as Federal System Integrators and major defense prime contractors. We are growing our federal presales engineering team and looking for technically exceptional engineers who thrive at the intersection of federal mission and cybersecurity technology.

The Senior Network Security Engineer will engineer, design, and sustain Comply-to-Connect (C2C) deployment support to migrate and maintain critical services across unclassified and classified environments.

Key Responsibilities

• Engineering, designing, and implementing C2C deployment support while managing the appliances, servers, and supporting infrastructure.
• Coordinating with the network service provider to develop and maintain comprehensive network architecture diagrams.
• Evaluating and recommending technology upgrades to address performance, standardization, and industry best practices.
• Monitoring and investigating C2C performance and faults to recommend and implement necessary improvements.
• Interacting with team members and customers at multiple levels to gather and coordinate vital technical information.
• Supporting Assessment and Authorization (A&A) activities related to cybersecurity technologies and system accreditation.

Requirements

• An active TS/SCI with Polygraph is required.
• Bachelor’s degree or 4+ years of additional experience in lieu of a degree.
• 5+ years of experience in Information Systems Security and/or Cyber Engineering.
• Experience with technologies involved in large-scale enterprise deployments and data center environments.
• Experience deploying enterprise security software products such as firewalls, IPS, Anti-Virus, and network management systems.
• Knowledge of Windows and Linux systems, TCP/IP networking, 802.1x, and general network security concepts.
• IAT Level II (GSEC, Security+, SSCP, or CCNA-Security) certification or the ability to obtain it within 6 months of hire.

Preferred Qualifications

• Certified Information Systems Security Professional (CISSP) certification.
• Experience implementing vendor-agnostic C2C capabilities and services within DoD engineering and sustainment environments.
• Proficiency with Cisco Identity Services Engine (ISE) and tools such as Nmap, Nessus, and tcpdump.
• Knowledge of Shell, Perl, and XML Scripting to automate security tasks.

Physical Qualifications

• Must be able to remain in a stationary position 50%.
• Needs to occasionally move about inside the office to access file cabinets, office machinery, etc.
• Frequently communicates with co-workers, management, and customers, which may involve delivering presentations.
• Must be able to exchange accurate information in these situations.

“ Applicants selected will be subject to a security investigation and must meet eligibility requirements for access to classified information.”

We use Greenhouse Software as our applicant tracking system and Zoom Scheduler for HR screen request scheduling. At times, your email may block our communication with you. Please be sure to check your SPAM folder so that you don’t miss updates on your application.

Why GuidePoint? GuidePoint Security is a rapidly growing, profitable, privately-held value added reseller that focuses exclusively on Information Security. Since its inception in 2011, GuidePoint has grown to over 1,200 employees, established strategic partnerships with leading security vendors, and serves as a trusted advisor to more than 6,200 customers.

Firmly-defined core values drive all aspects of the business, which have been paramount to the company’s success and establishment of an enjoyable workplace atmosphere. At GuidePoint, your colleagues are knowledgeable, skilled, and experienced and will seek to collaborate and provide mentorship and guidance at every opportunity.

This is a unique and rare opportunity to grow your career along with one of the fastest growing companies in the nation.

Some added perks….

• Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)
• Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family). If you choose the High Deductible / HSA plan, GPS will contribute in 4 equal quarterly installments: ($850 per EE annually / $1750 per family annually (includes spouse/children/family options)
• Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans
• 12 corporate holidays and a Flexible Time Off (FTO) program
• Healthy mobile phone and home internet allowance
• Eligibility for retirement plan after 2 months at open enrollment
• Pet Benefit Option

Headquarters: Remote

About the Company

Valon is building the AI-native operating system for regulated finance, starting with mortgage servicing.

We're a Series C company backed by a16z, transforming industries that others have written off as too complex to innovate.

Rather than build on top of broken legacy systems, we took a different approach: we built and operate our own mortgage servicing business managing $110+ billion in loans. This wasn't the end goal, it was how we deeply understood the complexity needed to build software that actually works in regulated industries.

The results speak for themselves. We've transformed mortgage servicing from a 0% margin business into 60%+ margins while dramatically improving customer experience. Major enterprise contracts are now deploying across the industry.

ValonOS is our unified platform that makes every process structured and programmable and it is perfectly positioned for the AI era. When everything flows through one system with rich data, AI agents don't just automate tasks, they continuously improve entire operations. Mortgage servicing is just the beginning of our vision to transform regulated industries and beyond.

Security at Valon

Our customers entrust us with some of their most sensitive and personal financial information, and it is the ultimate mission of Valon’s Security team to ensure we have sound programs, processes, and automation in place to safeguard our customers’ data. The Security team protects the infrastructure and data for processing billions of dollars of mortgage loans.

In addition to protecting Valon’s internal systems, the Security team partners closely with Product and Engineering to design and deliver secure, scalable, and trustworthy capabilities for ValonOS. We work cross-functionally across all teams at Valon to enable security throughout the organization. We engage with external security auditors, pentesting firms, and partners to continuously evaluate Valon’s security posture.

Valon offices are located in New York City and San Francisco, but we fully support remote work!

About the Role

We are seeking a seasoned and highly skilled Staff Product Security Engineer - Customer Platform to join our growing team! As a key security member at Valon, you will play a critical role in ensuring the security of our organization's systems, cloud infrastructure, products, and data.

This role blends product security architecture and technical control implementation, incorporating security by design into ValonOS. You will be hands-on and help shape how security is designed, built, and scaled across our SaaS platform both in foundational infrastructure and in customer-facing security features.

Responsibilities

• Define and evolve product security architecture and strategy for Valon’s multi-tenant SaaS platform

• Architect and guide secure implementation of customer-facing security capabilities in conjunction with Engineering (e.g., authentication / authorization models, identity integration, access controls, audit and logging, encryption / key management)

• Build and maintain security reference architectures and standardized secure design patterns for product teams

• Lead threat modeling, security design and code reviews for new features, services, and major architectural changes

• Collaborate with Product, Engineering, Data, Compliance, Legal, and other teams to identify and drive mitigation for product and data security risks

• Support vulnerability triage, remediation strategy, and root cause analysis for product security issues

• Support security compliance and regulatory needs (e.g., SOC 2, CCPA, NYDFS, FTC), including customer-facing security discussions and due diligence

• Develop, implement, and enforce security policies, standards, and procedures

• Support operational activities including security advisory and consultative reviews, incident response, issue remediation, and other security processes

Ideal Background

• Extensive experience in product security, application security, or security architecture roles, with ownership of security design for SaaS platforms including multi-tenancy and customer-facing security capabilities.

• Strong background in cloud security and modern infrastructure, with hands-on experience securing cloud environments (GCP preferred).

• Proven experience in SaaS IAM and tenant security (e.g., authentication/authorization, RBAC, SSO/SAML/OIDC, SCIM, MFA, audit logs).

• Expertise in designing secure platform controls (e.g., APIs, service-to-service auth, encryption/KMS/CMEK, logging/monitoring)

• Demonstrated ability to build and maintain security reference architectures.

• Expert-level experience leading threat modeling and security design reviews including security-focused code reviews.

• Applied knowledge with industry security and compliance frameworks (OWASP, NIST, CIS, SOC 2/ISO 27001 concepts)

• Highly hands-on engineer with proven ability to operate autonomously, drive multiple complex cross-functional efforts, and influence independently.

• Excellent communication and collaboration skills, including the ability to explain complex security concepts to both technical and non-technical stakeholders.

• Prior software engineering experience and/or coding ability (Python) is preferred.

• Experience working in high-growth or startup environments is a plus.

Minimum Qualifications

• 8+ years in progressive senior security engineering or architect level roles, with 3+ years leading security design for enterprise-grade cloud and SaaS platforms

• Bachelor's degree in Information Security, Computer Science, Technology or related field

• Relevant security certifications (e.g., CISSP, CISM, CCSK, CCSP or similar)

• Proven ability to design security reference architectures and implement customer platform security controls and technologies (IAM, API security, encryption/key management, logging/monitoring and others)

• Hands-on experience with modern security technologies and tooling across cloud and application security

Benefits

• Base Compensation Band: $190K - $260K. Base salary offered is determined by a number of factors including the candidate’s experience, qualifications, and skills

  • This Base Compensation pay range applies to our New York City located staff and may differ according to location.

• Compensation: Competitive salary with a meaningful stake in the company via equity, and 401k plan

• Health & well-being: We’ll invest in your physical and mental well-being with comprehensive medical, dental, & vision benefits

• Commuter benefits: We offer pre-tax deductions for public transportation, rideshare services, and parking expenses to make your commute more affordable and convenient

• Grow together: Company wide orientation for you to successfully onboard and other learning & development opportunities including regular review cycles that feature 360 degree feedback

• Play together: Quarterly budgets for team and company outings. Use it for team swag, cooking classes, or team dinners!

• Generous time off: Flexible paid time off, sick days, and 11 company holidays

• Baby bonding time!: 12 weeks off for both birthing and non-birthing parents - fully paid so you can focus your energy on your newest addition

Throughout the interview process, please remember that emails will only be from valon.com email addresses. We will never ask for any personally identifiable information during the interview process itself. Please reach out to talent@valon.com if you have any requests to verify the authenticity of an outreach.

Valon is an equal opportunity employer that is committed to diversity and inclusion in the workplace. We prohibit discrimination and harassment of any kind based on race, color, sex, religion, sexual orientation, national origin, disability, genetic information, pregnancy, or any other protected characteristic as outlined by federal, state, or local laws. Valon makes hiring decisions based solely on qualifications, merit, and business needs at the time.

To apply: https://weworkremotely.com/remote-jobs/valon-tech-staff-product-security-engineer-customer-platform

At NiCE, we don’t limit our challenges. We challenge our limits. Always. We’re ambitious. We’re game changers. And we play to win. We set the highest standards and execute beyond them. And if you’re like us, we can offer you the ultimate career opportunity that will light a fire within you.

At NICE, we don’t limit our challenges. We challenge our limits. Always. We’re ambitious. We’re game changers. And we play to win. We set the highest standards and execute beyond them. And if you’re like us, we can offer you the ultimate career opportunity that will light a fire within you.

So, what’s the role all about?

The ideal candidate will be responsible for designing, implementing, and maintaining security measures to protect our organization’s computer systems, networks, and SaaS products. This role requires a hands-on approach to identifying vulnerabilities, implementing solutions, and staying abreast of the latest security trends and technologies. The Senior Information Security Engineer will collaborate closely with cross-functional teams to ensure the confidentiality, integrity, and availability of our systems and data.

How will you make an impact?

• Security Tooling: Deploy, maintain, integrate, and perform initial configuration of security tools.
• Vulnerability Management: Coordinate and conduct regular security assessments, penetration testing, and vulnerability scans to identify and address security weaknesses proactively.
• Incident Response: Lead incident response efforts to promptly detect, analyze, and mitigate security incidents and breaches. Develop and maintain incident response plans and procedures.
• Security Operations: Monitor security logs and alerts, investigate suspicious activities, and respond to security events in real-time. Implement and maintain security tools and technologies to enhance our security posture.
• Identity and Access Management: Manage user access controls, authentication mechanisms, and identity management systems to ensure appropriate levels of access and privilege.

Have you got what it takes?

• At least 5 years of experience in information security, with a focus on hands-on security engineering and operations.
• In-depth knowledge of networking protocols, operating systems, and cloud technologies.
• Strong understanding of security principles, practices, and frameworks (e.g., PCI, NIST, ISO 27001).
• Experience with security tools such as SIEM, IDS/IPS, endpoint protection, and penetration testing tools.
• Experience with public cloud security, specifically AWS, Azure, and Google Cloud Platform (GCP).

You will have an advantage if you also have:

• Relevant certifications such as CISSP, CISM, CEH, or cloud-specific certifications (e.g., AWS Certified Security – Specialty, Microsoft Certified: Azure Security Engineer Associate, Google Professional Cloud Security Engineer) are highly desirable.

What’s in it for you?

Join an ever-growing, market disrupting, global company where the teams – comprised of the best of the best – work in a fast-paced, collaborative, and creative environment! As the market leader, every day at NICE is a chance to learn and grow, and there are endless internal career opportunities across multiple roles, disciplines, domains, and locations. If you are passionate, innovative, and excited to constantly raise the bar, you may just be our next NICEr!

Enjoy NICE-FLEX!

At NICE, we work according to the NICE-FLEX hybrid model, which enables maximum flexibility: 2 days working from the office and 3 days of remote work, each week. Naturally, office days focus on face-to-face meetings, where teamwork and collaborative thinking generate innovation, new ideas, and a vibrant, interactive atmosphere.

About NICE

NICE Ltd. (NASDAQ: NICE) software products are used by 25,000+ global businesses, including 85 of the Fortune 100 corporations, to deliver extraordinary customer experiences, fight financial crime and ensure public safety. Every day, NICE software manages more than 120 million customer interactions and monitors 3+ billion financial transactions.

Known as an innovation powerhouse that excels in AI, cloud and digital, NICE is consistently recognized as the market leader in its domains, with over 8,500 employees across 30+ countries.

NICE is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, age, sex, marital status, ancestry, neurotype, physical or mental disability, veteran status, gender identity, sexual orientation or any other category protected by law.

Requisition ID: 10996

Reporting into: Damon Hefner, Manager Information Security

Role Type: Individual Contributor

About NiCE

NICE Ltd. (NASDAQ: NICE) software products are used by 25,000+ global businesses, including 85 of the Fortune 100 corporations, to deliver extraordinary customer experiences, fight financial crime and ensure public safety. Every day, NiCE software manages more than 120 million customer interactions and monitors 3+ billion financial transactions.

Known as an innovation powerhouse that excels in AI, cloud and digital, NiCE is consistently recognized as the market leader in its domains, with over 8,500 employees across 30+ countries.

NiCE is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, age, sex, marital status, ancestry, neurotype, physical or mental disability, veteran status, gender identity, sexual orientation or any other category protected by law.

Company Description

Tech native for over 30 years, Devoteam guides businesses through sustainable digital transformation to deliver value.

With over 11,000 tech architects in more than 25 countries across Europe, the Middle East, and Africa, Devoteam is committed to using technology to serve people.

Devoteam has been a ServiceNow Elite Partner since 2019. In 2026, it was recognised as ServiceNow Partner of the Year for the fourth consecutive year.

Job Description

Looking to take your IT security consulting career to the next level? Our ServiceNow Cyber & Risk team is seeking a Consultant with an innovative, can-do attitude and a passion for making a difference. You’ll be based in our Prague office and work with global companies from across Europe.

With us, you’ll have the chance to do the job of your dreams - the one you didn’t even know you wanted yet. Here’s what you can expect:

• Leading the implementations of key ServiceNow IRM and SecOps projects within Devoteam Group.
• Technical leadership of the team - training, presentations, knowledge sharing.
• Pre-sales  and delivering product demos to potential customers, proposals preparations, projects estimations.
• Working on a variety of projects focused on advisory and implementation of Security Operations, Risk and Compliance using ServiceNow SecOps and IRM product suites.

Qualifications

You will be a great fit for this role if you have…

• 3+ years of consulting or implementation work experience in the field of IT security, risk or compliance.
• Knowledge of security trends and their application to address cyber security issues.
• An understanding of security, risk, and privacy standards and frameworks such as ISO2700x family, NIST CSF, DORA, NIS2, GDPR, and others.
• Analytical mindset and a can-do attitude.
• Fluent English communication skills.
• Soft skills such as communication and presentation.

Want to be head of the pack? We’d definitely welcome…

• Experience with international security projects is an advantage.
• Experience using/implementing ServiceNow IRM or SecOps is an advantage.
• A degree in Information Technologies (ideally with a focus on cyber security) is an advantage.
• Knowledge of the German language is an advantage

What will you get apart from the salary?

• 5 weeks of vacation per year (= 1 week extra)
• 4 My Days per year
• Hybrid office
• Flexible working hours
• Career Management, training and certifications in the best breed of technologies - focused on technical skills (ServiceNow, Google), Project Management methodology etc., including Udemy for business account.
• Meal allowance up to 28.000 CZK/year (123,90 CZK/day)
• Cafeteria 1000 CZK/month (MultiSport Card available)
• Phone tariff (unlimited calls, texts messages within the EU, 20GB of Internet)
• Employee Referral Program
• Sabbatical leave
• Repurchase of hardware

Moreover, we offer:

• Foreign business trips
• Above standard working equipment
• Company Mobile Phone (selection from Android/iPhone)
• Company Laptop (Windows/macOS)
• Coffee, tea, snacks and breakfasts in the office
• Company events and teambuildings
• Gifts for work anniversaries, promotion or childbirth
• Friendly and open culture

And last but not least, you can rely on:

• Transparent framework for career growth, reinforced by annual performance evaluations
• Trust and autonomy, with no micro-management
• Learning from senior colleagues and opportunities to collaborate with professionals from various industries
• Opportunities to attend conferences to keep skills up-to-date
• Working on a variety of projects for a broader range of experience
• Adoption and utilization of evolving IT technologies
• Usage of AI tools and access to elaborate, tailored AI training

Additional Information

Benefits:

• 5 weeks of vacation per year (= 1 week extra)
• 4 “My Days” per year
• Hybrid office
• Flexible working hours
• Udemy for business account
• Meal allowance up to 32.000 CZK/year (129,50 CZK/day)
• Cafeteria 1200 CZK/month (MultiSport Card available)
• Phone tariff (unlimited calls, texts messages within the EU, 20GB of Internet)
• Employee Referral Program
• Sabbatical leave
• Repurchase of hardware

Moreover, we offer:

• Above standard working equipment
• Company mobile phone (selection from Android/iPhone)
• Company laptop (Windows/macOS)
• Coffee, tea, snacks and breakfasts in the office
• Company events and team buildings
• Gifts for work anniversaries, promotion or childbirth
• Friendly and open culture

And last but not least, you can rely on:

• Transparent framework for career growth, reinforced by annual performance evaluations
• Trust and autonomy, with no micro-management
• Learning from senior colleagues and opportunities to collaborate with professionals from various industries
• Opportunities to attend conferences to keep skills up-to-date
• Usage of AI tools and access to elaborate, tailored AI training

At NiCE, we don’t limit our challenges. We challenge our limits. Always. We’re ambitious. We’re game changers. And we play to win. We set the highest standards and execute beyond them. And if you’re like us, we can offer you the ultimate career opportunity that will light a fire within you.

Information Security Engineer

At NICE, we don’t limit our challenges. We challenge our limits. Always. We’re ambitious. We’re game changers. And we play to win. We set the highest standards and execute beyond them. And if you’re like us, we can offer you the ultimate career opportunity that will light a fire within you.

So, what’s the role all about?

The Information Security Engineer will assist in implementing and administering initiatives implemented by InfoSec, including security initiatives mandated by regulatory and compliance requirements. This position will be responsible for ensuring that regular housekeeping activities are performed to maintain and monitor processes and systems.

The role ensures that both Corporate and Production services are managed according to company policies, processes, and compliance and regulatory requirements.

How will you make an impact?

• Create, manage, and respond to security incidents and conduct analysis in accordance with existing processes and company security policies
• Installation, configuration, and administration of information security tools such as, but not limited to, endpoint protection, SIEM, XDR, WAF, vulnerability scanners, and DLP
• Troubleshoot and resolve technical issues related to security tools and security processes
• Coordinate with third-party vendors
• Assist with internal and external audits associated with regulatory and compliance requirements
• Provide formal notification to Information Security leadership when changes are planned that may impact the approved security posture of NICE CX or the associated certification and accreditation
• Review and recommend improvements to information security processes
• Ensure regular housekeeping activities are performed to maintain system integrity and monitoring

Have you got what it takes?

• Knowledge of basic information security principles and theories
• A minimum of 3 years working in IT and data networks
• A minimum of 3 years working in Security Operations
• Good English communication skills
• Proven track record of solving problems
• Good organization and project management skills
• Advanced computer skills in desktop applications
• Possess excellent analytic skills including numbers, patterns, processes, and data flow
• Self-starter who can function without constant oversight

You will have an advantage if you also have:

• Proficient with Microsoft Applications
• Holder of COMPTIA Security+, CISA, CISSP, SSCP, CCSK, or related certification
• Knowledge of GDPR, PCI, SOC 2, FedRAMP, IRAP, and HIPAA compliance regulations

What you need to know

• This job is not intended to be all-inclusive, and employees will also perform other reasonable related business duties as assigned
• This organization reserves the right to revise or change job duties as the need arises
• This job may require overtime, including nighttime, early morning, and weekend hours
• This job may require on-call availability

What’s in it for you?

Learn more about the Benefits at NICE

Join an ever-growing, market-disrupting, global company where the teams – comprised of the best of the best – work in a fast-paced, collaborative, and creative environment! As the market leader, every day at NICE is a chance to learn and grow, and there are endless internal career opportunities across multiple roles, disciplines, domains, and locations. If you are passionate, innovative, and excited to constantly raise the bar, you may just be our next NICEr!

About NICE

NICE Ltd. (NASDAQ: NICE) software products are used by 25,000+ global businesses, including 85 of the Fortune 100 corporations, to deliver extraordinary customer experiences, fight financial crime, and ensure public safety. Every day, NICE software manages more than 120 million customer interactions and monitors 3+ billion financial transactions.

Known as an innovation powerhouse that excels in AI, cloud, and digital, NICE is consistently recognized as the market leader, with over 8,500 employees across 30+ countries.

NICE is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, age, sex, marital status, ancestry, neurotype, physical or mental disability, veteran status, gender identity, sexual orientation, or any other category protected by law.

#LI-Hybrid

Requisition ID: 10994 Reporting into: Manager, Information Security, CX

Role Type: Individual Contributor

About NiCE

NICE Ltd. (NASDAQ: NICE) software products are used by 25,000+ global businesses, including 85 of the Fortune 100 corporations, to deliver extraordinary customer experiences, fight financial crime and ensure public safety. Every day, NiCE software manages more than 120 million customer interactions and monitors 3+ billion financial transactions.

Known as an innovation powerhouse that excels in AI, cloud and digital, NiCE is consistently recognized as the market leader in its domains, with over 8,500 employees across 30+ countries.

NiCE is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, age, sex, marital status, ancestry, neurotype, physical or mental disability, veteran status, gender identity, sexual orientation or any other category protected by law.

At NiCE, we don’t limit our challenges. We challenge our limits. Always. We’re ambitious. We’re game changers. And we play to win. We set the highest standards and execute beyond them. And if you’re like us, we can offer you the ultimate career opportunity that will light a fire within you.

Information Security Engineer

At NICE, we don’t limit our challenges. We challenge our limits. Always. We’re ambitious. We’re game changers. And we play to win. We set the highest standards and execute beyond them. And if you’re like us, we can offer you the ultimate career opportunity that will light a fire within you.

So, what’s the role all about?

The Information Security Engineer will assist in implementing and administering initiatives implemented by InfoSec, including security initiatives mandated by regulatory and compliance requirements. This position will be responsible for ensuring that regular housekeeping activities are performed to maintain and monitor processes and systems.

The role ensures that both Corporate and Production services are managed according to company policies, processes, and compliance and regulatory requirements.

How will you make an impact?

• Create, manage, and respond to security incidents and conduct analysis in accordance with existing processes and company security policies
• Installation, configuration, and administration of information security tools such as, but not limited to, endpoint protection, SIEM, XDR, WAF, vulnerability scanners, and DLP
• Troubleshoot and resolve technical issues related to security tools and security processes
• Coordinate with third-party vendors
• Assist with internal and external audits associated with regulatory and compliance requirements
• Provide formal notification to Information Security leadership when changes are planned that may impact the approved security posture of NICE CX or the associated certification and accreditation
• Review and recommend improvements to information security processes
• Ensure regular housekeeping activities are performed to maintain system integrity and monitoring

Have you got what it takes?

• Knowledge of basic information security principles and theories
• A minimum of 3 years working in IT and data networks
• A minimum of 3 years working in Security Operations
• Good English communication skills
• Proven track record of solving problems
• Good organization and project management skills
• Advanced computer skills in desktop applications
• Possess excellent analytic skills including numbers, patterns, processes, and data flow
• Self-starter who can function without constant oversight

You will have an advantage if you also have:

• Proficient with Microsoft Applications
• Holder of COMPTIA Security+, CISA, CISSP, SSCP, CCSK, or related certification
• Knowledge of GDPR, PCI, SOC 2, FedRAMP, IRAP, and HIPAA compliance regulations

What you need to know

• This job is not intended to be all-inclusive, and employees will also perform other reasonable related business duties as assigned
• This organization reserves the right to revise or change job duties as the need arises
• This job may require overtime, including nighttime, early morning, and weekend hours
• This job may require on-call availability

What’s in it for you?

Learn more about the Benefits at NICE

Join an ever-growing, market-disrupting, global company where the teams – comprised of the best of the best – work in a fast-paced, collaborative, and creative environment! As the market leader, every day at NICE is a chance to learn and grow, and there are endless internal career opportunities across multiple roles, disciplines, domains, and locations. If you are passionate, innovative, and excited to constantly raise the bar, you may just be our next NICEr!

About NICE

NICE Ltd. (NASDAQ: NICE) software products are used by 25,000+ global businesses, including 85 of the Fortune 100 corporations, to deliver extraordinary customer experiences, fight financial crime, and ensure public safety. Every day, NICE software manages more than 120 million customer interactions and monitors 3+ billion financial transactions.

Known as an innovation powerhouse that excels in AI, cloud, and digital, NICE is consistently recognized as the market leader, with over 8,500 employees across 30+ countries.

NICE is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, age, sex, marital status, ancestry, neurotype, physical or mental disability, veteran status, gender identity, sexual orientation, or any other category protected by law.

#LI-Hybrid

Requisition ID: 10995 Reporting into: Manager, Information Security, CX

Role Type: Individual Contributor

About NiCE

NICE Ltd. (NASDAQ: NICE) software products are used by 25,000+ global businesses, including 85 of the Fortune 100 corporations, to deliver extraordinary customer experiences, fight financial crime and ensure public safety. Every day, NiCE software manages more than 120 million customer interactions and monitors 3+ billion financial transactions.

Known as an innovation powerhouse that excels in AI, cloud and digital, NiCE is consistently recognized as the market leader in its domains, with over 8,500 employees across 30+ countries.

NiCE is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, age, sex, marital status, ancestry, neurotype, physical or mental disability, veteran status, gender identity, sexual orientation or any other category protected by law.

At NiCE, we don’t limit our challenges. We challenge our limits. Always. We’re ambitious. We’re game changers. And we play to win. We set the highest standards and execute beyond them. And if you’re like us, we can offer you the ultimate career opportunity that will light a fire within you.

At NICE, we don’t limit our challenges. We challenge our limits. Always. We’re ambitious. We’re game changers. And we play to win. We set the highest standards and execute beyond them. And if you’re like us, we can offer you the ultimate career opportunity that will light a fire within you.

So, what’s the role all about?

The Information Security Analyst is primarily responsible for ensuring compliance with information security frameworks such as Cyber Essentials, Cyber Essentials Plus, ISO 27001, ISO 27701, ISO 42001, GDPR, and DORA. This role focuses on internal audits, regulatory compliance, and readiness for external audits while also contributing to Cybersecurity Operations Center (CSOC) activities, including incident monitoring and response.

How will you make an impact?

• Internal Audit Execution: Conduct internal audits to evaluate and enhance IT controls, compliance with standards, and risk management processes.
• Audit Preparation: Assist internal control owners in scoping appropriate evidence and preparing for external audits.
• Gap Assessments: Facilitate and/or conduct internal gap assessments and audit readiness evaluations for frameworks such as ISO 27001, GDPR, and DORA.
• Framework Tracking: Monitor updates to Cyber Essentials, ISO, and regulatory frameworks and ensure internal alignment.
• Control Documentation: Develop and maintain control narratives, walkthroughs, and documentation of compliance processes.
• Audit Findings: Identify control deficiencies and work with stakeholders to recommend cost-effective, value-added remediation actions.
• Compliance Reporting: Draft audit reports and present findings to management during status updates and closing meetings.
• External Audit Coordination: Collaborate with external audit teams to streamline processes and provide requested documentation and evidence.
• Security Monitoring: Use tools such as Rapid7 InsightIDR or other SIEM solutions to assist with security monitoring and incident detection.
• Incident Response Support: Participate in incident response efforts, documenting security incidents and assisting in containment and recovery actions.
• Threat Identification: Contribute to analyzing cybersecurity threats and implementing recommendations to improve the security posture.
• Policy and Procedure Development: Assist in creating and refining cybersecurity policies and operational procedures to align with audit and compliance objectives.
• Vulnerability Management: Support the tracking and remediation of vulnerabilities in coordination with IT and Security Operations teams.

Have you got what it takes?

• Strong expertise in audit and compliance frameworks, including ISO 27001, ISO 27701, ISO 42001, GDPR, DORA, Cyber Essentials, and Cyber Essentials Plus.

• Familiarity with CSOC tools such as Rapid7 InsightIDR or other SIEM solutions.

• Hands-on experience in internal and external audits, compliance assessments, and process improvement.

• Basic understanding of incident response frameworks and cybersecurity best practices.

• Exceptional analytical, organizational, and communication skills.

• Commitment to continuous learning and professional development in audit, compliance, and security.

You will have an advantage if you also have:

• A Master’s degree in Cybersecurity, Risk Management, or related fields is a plus.

• Certifications (preferred or required):

• Certified Information Systems Auditor (CISA)

• Certified Information Security Manager (CISM)

• Certified Information Systems Security Professional (CISSP)

• ISO 27001 Lead Auditor or Implementer

• Cyber Essentials Assessor (or equivalent)

• GIAC certifications (e.g., GIAC Certified Incident Handler - GCIH or GIAC Security Essentials - GSEC)

What’s in it for you?

Join an ever-growing, market disrupting, global company where the teams – comprised of the best of the best – work in a fast-paced, collaborative, and creative environment! As the market leader, every day at NICE is a chance to learn and grow, and there are endless internal career opportunities across multiple roles, disciplines, domains, and locations. If you are passionate, innovative, and excited to constantly raise the bar, you may just be our next NICEr!

Enjoy NICE-FLEX!

At NICE, we work according to the NICE-FLEX hybrid model, which enables maximum flexibility: 2 days working from the office and 3 days of remote work, each week. Naturally, office days focus on face-to-face meetings, where teamwork and collaborative thinking generate innovation, new ideas, and a vibrant, interactive atmosphere.

About NICE

NICE Ltd. (NASDAQ: NICE) software products are used by 25,000+ global businesses, including 85 of the Fortune 100 corporations, to deliver extraordinary customer experiences, fight financial crime and ensure public safety. Every day, NICE software manages more than 120 million customer interactions and monitors 3+ billion financial transactions.

Known as an innovation powerhouse that excels in AI, cloud and digital, NICE is consistently recognized as the market leader in its domains, with over 8,500 employees across 30+ countries.

NICE is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, age, sex, marital status, ancestry, neurotype, physical or mental disability, veteran status, gender identity, sexual orientation or any other category protected by law.

Requisition ID: 10993

Reporting into: Director Information

Role Type: Individual Contributor

About NiCE

NICE Ltd. (NASDAQ: NICE) software products are used by 25,000+ global businesses, including 85 of the Fortune 100 corporations, to deliver extraordinary customer experiences, fight financial crime and ensure public safety. Every day, NiCE software manages more than 120 million customer interactions and monitors 3+ billion financial transactions.

Known as an innovation powerhouse that excels in AI, cloud and digital, NiCE is consistently recognized as the market leader in its domains, with over 8,500 employees across 30+ countries.

NiCE is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, age, sex, marital status, ancestry, neurotype, physical or mental disability, veteran status, gender identity, sexual orientation or any other category protected by law.

Set a new pulse for healthcare!

We are looking for a Senior Security Engineer to join the SecOps team at Doctolib.

Your mission will be to protect the infrastructure, identities, devices and platform that millions of patients and hundreds of thousands of health professionals rely on every day. You will work hands-on across the full corporate IT security perimeter (identity, endpoint, SaaS, network and cloud) in a highly regulated environment (HDS, ISO 27001, C5) where security directly impacts patient safety and trust in the healthcare system.

Working in the tech team at Doctolib means building innovative products and features to improve the daily lives of care teams and patients.

What you’ll do

Your responsibilities include but are not limited to:

• Design and ship security changes as code, reviewed in pull requests like any production change, across our identity, endpoint, SaaS and network security stack
• Build detections, dashboards and automated responses on top of our SIEM (Elastic), writing queries and continuously tuning alert quality
• Drive corporate IT security programs from architecture to enforcement spanning Entra ID, CrowdStrike, Wiz, and Cloudflare
• Investigate security incidents end-to-end and iterate on playbooks with each resolution cycle
• Write proposals and run cross-team change management on major security initiatives, ensuring robust communication with stakeholders
• Mentor junior engineers and contribute to platform security topics when initiatives span both the corporate and product perimeters

Who you are

Before you read on: if you don’t have the exact profile described below, but you feel this job description matches your skill set, we still encourage you to apply.

You’ll be a great fit if you:

• Have 5+ years of hands-on experience in corporate, including at least 2 years at a senior level, with end-to-end ownership of multiple security domains (identity, endpoint, SaaS, network or detection) in production
• Have strong daily mastery of GitHub, Terraform and AI coding assistants (Claude or equivalent) — you ship security work as code reviewed in PRs, and you use AI agents as a structural part of your workflow, not as an occasional helper
• Have a solid detection engineering and SIEM background, and are comfortable writing queries and tuning alerts independently
• Bring a pragmatic mindset and strong written communication skills, with the ability to make decisions under uncertainty and follow through on complex, cross-team initiatives
• Are fluent in English (primary written working language); daily team conversations happen mostly in French, so being a French speaker or willing to learn is a strong plus

It would be fantastic if you:

• Have curiosity for platform security topics (cloud, Kubernetes, supply chain) and a willingness to contribute beyond your core corporate IT perimeter
• Bring prior experience in a regulated industry such as healthcare, fintech or the public sector

Life at Doctolib Tech

• Our solutions are built on a single fully cloud-native platform that supports web and mobile app interfaces, multiple languages, and is adapted to country and healthcare specialty requirements.
• Our stack is composed of Rails, TypeScript, Java, Python, Kotlin, Swift, and React Native.
• We leverage AI ethically across our products to empower patients and health professionals. Discover our AI vision here.

Want to learn more about our tech culture and environment? Visit the Doctolib Tech site .

What we offer

• Free comprehensive health insurance (basic package) for you and your children
• 25 days of paid vacation per year, plus up to 14 days of RTT
• Free mental health and coaching services through our partner Moka.care
• Work from abroad for up to 10 days per year thanks to our flexibility days policy
• Lunch vouchers (Swile card) worth €8.50 per working day, with €4.50 covered by Doctolib
• A subsidy from the work council to refund part of the membership to a sport club or a creative class
• 50% reimbursement of your public transport subscription
• Parent Care Program: receive one additional month of leave on top of the legal parental leave
• Enrollment in Doctolib’s long-term employee value sharing plan called DoctoGrowth
• For caregivers and workers with disabilities, a package including an adaptation of the remote policy, extra days off for medical reasons, and psychological support
• Relocation support in case of international mobility
• Access to the best AI tools for coding, development and dedicated training

Our interview process

• TA Screening
• Technical Deep Dive with a take-home case study and debrief session
• Behavioral Interview
• Final Conversation with the Head of SecOps
• At least one reference check

We want your experience to be clear, respectful, and transparent. Learn more about our hiring process on our candidate experience page.

Job details

• Permanent position
• Tech stack: Elastic, Entra ID, CrowdStrike, Wiz, Cloudflare, GitHub, Terraform
• Full-time
• Paris, France
• Hybrid work setup (up to 2 remote days per week)
• Start date: as soon as possible

We welcome everyone

At Doctolib, we are committed to improving access to healthcare for everyone. This translates into our recruitment process. We evaluate candidates based solely on qualifications and motivation, without any form of discrimination.

The more diverse ideas are heard, the more our product will truly improve healthcare for all. You are welcome to apply to Doctolib, regardless of your gender, religion, age, sexual orientation, ethnicity, or disability.

To ensure equal opportunities, we invite you to exclude personal information (e.g., pictures, age) from your applications. If you require any accommodation, please let us know for support during the hiring process.

Join us in building the healthcare we all dream of!

Your data privacy

All information provided is processed by Doctolib for application management. For data processing details, click here: France . Please contact hr.dataprivacy(at)doctolib.com for inquiries or to exercise your rights.

At NiCE, we don’t limit our challenges. We challenge our limits. Always. We’re ambitious. We’re game changers. And we play to win. We set the highest standards and execute beyond them. And if you’re like us, we can offer you the ultimate career opportunity that will light a fire within you.

Information Security Engineer

At NICE, we don’t limit our challenges. We challenge our limits. Always. We’re ambitious. We’re game changers. And we play to win. We set the highest standards and execute beyond them. And if you’re like us, we can offer you the ultimate career opportunity that will light a fire within you.

So, what’s the role all about?

The Information Security Engineer will assist in implementing and administering initiatives implemented by InfoSec, including security initiatives mandated by regulatory and compliance requirements. This position will be responsible for ensuring that regular housekeeping activities are performed to maintain and monitor processes and systems.

The role ensures that both Corporate and Production services are managed according to company policies, processes, and compliance and regulatory requirements.

How will you make an impact?

• Create, manage, and respond to security incidents and conduct analysis in accordance with existing processes and company security policies
• Installation, configuration, and administration of information security tools such as, but not limited to, endpoint protection, SIEM, XDR, WAF, vulnerability scanners, and DLP
• Troubleshoot and resolve technical issues related to security tools and security processes
• Coordinate with third-party vendors
• Assist with internal and external audits associated with regulatory and compliance requirements
• Provide formal notification to Information Security leadership when changes are planned that may impact the approved security posture of NICE CX or the associated certification and accreditation
• Review and recommend improvements to information security processes
• Ensure regular housekeeping activities are performed to maintain system integrity and monitoring

Have you got what it takes?

• Knowledge of basic information security principles and theories
• A minimum of 3 years working in IT and data networks
• A minimum of 3 years working in Security Operations
• Good English communication skills
• Proven track record of solving problems
• Good organization and project management skills
• Advanced computer skills in desktop applications
• Possess excellent analytic skills including numbers, patterns, processes, and data flow
• Self-starter who can function without constant oversight

You will have an advantage if you also have:

• Proficient with Microsoft Applications
• Holder of COMPTIA Security+, CISA, CISSP, SSCP, CCSK, or related certification
• Knowledge of GDPR, PCI, SOC 2, FedRAMP, IRAP, and HIPAA compliance regulations

What you need to know

• This job is not intended to be all-inclusive, and employees will also perform other reasonable related business duties as assigned
• This organization reserves the right to revise or change job duties as the need arises
• This job may require overtime, including nighttime, early morning, and weekend hours
• This job may require on-call availability

What’s in it for you?

Learn more about the Benefits at NICE

Join an ever-growing, market-disrupting, global company where the teams – comprised of the best of the best – work in a fast-paced, collaborative, and creative environment! As the market leader, every day at NICE is a chance to learn and grow, and there are endless internal career opportunities across multiple roles, disciplines, domains, and locations. If you are passionate, innovative, and excited to constantly raise the bar, you may just be our next NICEr!

About NICE

NICE Ltd. (NASDAQ: NICE) software products are used by 25,000+ global businesses, including 85 of the Fortune 100 corporations, to deliver extraordinary customer experiences, fight financial crime, and ensure public safety. Every day, NICE software manages more than 120 million customer interactions and monitors 3+ billion financial transactions.

Known as an innovation powerhouse that excels in AI, cloud, and digital, NICE is consistently recognized as the market leader, with over 8,500 employees across 30+ countries.

NICE is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, age, sex, marital status, ancestry, neurotype, physical or mental disability, veteran status, gender identity, sexual orientation, or any other category protected by law.

#LI-Hybrid

Requisition ID: 10994 Reporting into: Manager, Information Security, CX

Role Type: Individual Contributor

About NiCE

NICE Ltd. (NASDAQ: NICE) software products are used by 25,000+ global businesses, including 85 of the Fortune 100 corporations, to deliver extraordinary customer experiences, fight financial crime and ensure public safety. Every day, NiCE software manages more than 120 million customer interactions and monitors 3+ billion financial transactions.

Known as an innovation powerhouse that excels in AI, cloud and digital, NiCE is consistently recognized as the market leader in its domains, with over 8,500 employees across 30+ countries.

NiCE is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, age, sex, marital status, ancestry, neurotype, physical or mental disability, veteran status, gender identity, sexual orientation or any other category protected by law.

At NiCE, we don’t limit our challenges. We challenge our limits. Always. We’re ambitious. We’re game changers. And we play to win. We set the highest standards and execute beyond them. And if you’re like us, we can offer you the ultimate career opportunity that will light a fire within you.

Information Security Engineer

At NICE, we don’t limit our challenges. We challenge our limits. Always. We’re ambitious. We’re game changers. And we play to win. We set the highest standards and execute beyond them. And if you’re like us, we can offer you the ultimate career opportunity that will light a fire within you.

So, what’s the role all about?

The Information Security Engineer will assist in implementing and administering initiatives implemented by InfoSec, including security initiatives mandated by regulatory and compliance requirements. This position will be responsible for ensuring that regular housekeeping activities are performed to maintain and monitor processes and systems.

The role ensures that both Corporate and Production services are managed according to company policies, processes, and compliance and regulatory requirements.

How will you make an impact?

• Create, manage, and respond to security incidents and conduct analysis in accordance with existing processes and company security policies
• Installation, configuration, and administration of information security tools such as, but not limited to, endpoint protection, SIEM, XDR, WAF, vulnerability scanners, and DLP
• Troubleshoot and resolve technical issues related to security tools and security processes
• Coordinate with third-party vendors
• Assist with internal and external audits associated with regulatory and compliance requirements
• Provide formal notification to Information Security leadership when changes are planned that may impact the approved security posture of NICE CX or the associated certification and accreditation
• Review and recommend improvements to information security processes
• Ensure regular housekeeping activities are performed to maintain system integrity and monitoring

Have you got what it takes?

• Knowledge of basic information security principles and theories
• A minimum of 3 years working in IT and data networks
• A minimum of 3 years working in Security Operations
• Good English communication skills
• Proven track record of solving problems
• Good organization and project management skills
• Advanced computer skills in desktop applications
• Possess excellent analytic skills including numbers, patterns, processes, and data flow
• Self-starter who can function without constant oversight

You will have an advantage if you also have:

• Proficient with Microsoft Applications
• Holder of COMPTIA Security+, CISA, CISSP, SSCP, CCSK, or related certification
• Knowledge of GDPR, PCI, SOC 2, FedRAMP, IRAP, and HIPAA compliance regulations

What you need to know

• This job is not intended to be all-inclusive, and employees will also perform other reasonable related business duties as assigned
• This organization reserves the right to revise or change job duties as the need arises
• This job may require overtime, including nighttime, early morning, and weekend hours
• This job may require on-call availability

What’s in it for you?

Learn more about the Benefits at NICE

Join an ever-growing, market-disrupting, global company where the teams – comprised of the best of the best – work in a fast-paced, collaborative, and creative environment! As the market leader, every day at NICE is a chance to learn and grow, and there are endless internal career opportunities across multiple roles, disciplines, domains, and locations. If you are passionate, innovative, and excited to constantly raise the bar, you may just be our next NICEr!

About NICE

NICE Ltd. (NASDAQ: NICE) software products are used by 25,000+ global businesses, including 85 of the Fortune 100 corporations, to deliver extraordinary customer experiences, fight financial crime, and ensure public safety. Every day, NICE software manages more than 120 million customer interactions and monitors 3+ billion financial transactions.

Known as an innovation powerhouse that excels in AI, cloud, and digital, NICE is consistently recognized as the market leader, with over 8,500 employees across 30+ countries.

NICE is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, age, sex, marital status, ancestry, neurotype, physical or mental disability, veteran status, gender identity, sexual orientation, or any other category protected by law.

#LI-Hybrid

Requisition ID: 10995 Reporting into: Manager, Information Security, CX

Role Type: Individual Contributor

About NiCE

NICE Ltd. (NASDAQ: NICE) software products are used by 25,000+ global businesses, including 85 of the Fortune 100 corporations, to deliver extraordinary customer experiences, fight financial crime and ensure public safety. Every day, NiCE software manages more than 120 million customer interactions and monitors 3+ billion financial transactions.

Known as an innovation powerhouse that excels in AI, cloud and digital, NiCE is consistently recognized as the market leader in its domains, with over 8,500 employees across 30+ countries.

NiCE is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, age, sex, marital status, ancestry, neurotype, physical or mental disability, veteran status, gender identity, sexual orientation or any other category protected by law.

At NiCE, we don’t limit our challenges. We challenge our limits. Always. We’re ambitious. We’re game changers. And we play to win. We set the highest standards and execute beyond them. And if you’re like us, we can offer you the ultimate career opportunity that will light a fire within you.

At NICE, we don’t limit our challenges. We challenge our limits. Always. We’re ambitious. We’re game changers. And we play to win. We set the highest standards and execute beyond them. And if you’re like us, we can offer you the ultimate career opportunity that will light a fire within you.

So, what’s the role all about?

The Information Security Analyst is primarily responsible for ensuring compliance with information security frameworks such as Cyber Essentials, Cyber Essentials Plus, ISO 27001, ISO 27701, ISO 42001, GDPR, and DORA. This role focuses on internal audits, regulatory compliance, and readiness for external audits while also contributing to Cybersecurity Operations Center (CSOC) activities, including incident monitoring and response.

How will you make an impact?

• Internal Audit Execution: Conduct internal audits to evaluate and enhance IT controls, compliance with standards, and risk management processes.
• Audit Preparation: Assist internal control owners in scoping appropriate evidence and preparing for external audits.
• Gap Assessments: Facilitate and/or conduct internal gap assessments and audit readiness evaluations for frameworks such as ISO 27001, GDPR, and DORA.
• Framework Tracking: Monitor updates to Cyber Essentials, ISO, and regulatory frameworks and ensure internal alignment.
• Control Documentation: Develop and maintain control narratives, walkthroughs, and documentation of compliance processes.
• Audit Findings: Identify control deficiencies and work with stakeholders to recommend cost-effective, value-added remediation actions.
• Compliance Reporting: Draft audit reports and present findings to management during status updates and closing meetings.
• External Audit Coordination: Collaborate with external audit teams to streamline processes and provide requested documentation and evidence.
• Security Monitoring: Use tools such as Rapid7 InsightIDR or other SIEM solutions to assist with security monitoring and incident detection.
• Incident Response Support: Participate in incident response efforts, documenting security incidents and assisting in containment and recovery actions.
• Threat Identification: Contribute to analyzing cybersecurity threats and implementing recommendations to improve the security posture.
• Policy and Procedure Development: Assist in creating and refining cybersecurity policies and operational procedures to align with audit and compliance objectives.
• Vulnerability Management: Support the tracking and remediation of vulnerabilities in coordination with IT and Security Operations teams.

Have you got what it takes?

• Strong expertise in audit and compliance frameworks, including ISO 27001, ISO 27701, ISO 42001, GDPR, DORA, Cyber Essentials, and Cyber Essentials Plus.

• Familiarity with CSOC tools such as Rapid7 InsightIDR or other SIEM solutions.

• Hands-on experience in internal and external audits, compliance assessments, and process improvement.

• Basic understanding of incident response frameworks and cybersecurity best practices.

• Exceptional analytical, organizational, and communication skills.

• Commitment to continuous learning and professional development in audit, compliance, and security.

You will have an advantage if you also have:

• A Master’s degree in Cybersecurity, Risk Management, or related fields is a plus.

• Certifications (preferred or required):

• Certified Information Systems Auditor (CISA)

• Certified Information Security Manager (CISM)

• Certified Information Systems Security Professional (CISSP)

• ISO 27001 Lead Auditor or Implementer

• Cyber Essentials Assessor (or equivalent)

• GIAC certifications (e.g., GIAC Certified Incident Handler - GCIH or GIAC Security Essentials - GSEC)

What’s in it for you?

Join an ever-growing, market disrupting, global company where the teams – comprised of the best of the best – work in a fast-paced, collaborative, and creative environment! As the market leader, every day at NICE is a chance to learn and grow, and there are endless internal career opportunities across multiple roles, disciplines, domains, and locations. If you are passionate, innovative, and excited to constantly raise the bar, you may just be our next NICEr!

Enjoy NICE-FLEX!

At NICE, we work according to the NICE-FLEX hybrid model, which enables maximum flexibility: 2 days working from the office and 3 days of remote work, each week. Naturally, office days focus on face-to-face meetings, where teamwork and collaborative thinking generate innovation, new ideas, and a vibrant, interactive atmosphere.

About NICE

NICE Ltd. (NASDAQ: NICE) software products are used by 25,000+ global businesses, including 85 of the Fortune 100 corporations, to deliver extraordinary customer experiences, fight financial crime and ensure public safety. Every day, NICE software manages more than 120 million customer interactions and monitors 3+ billion financial transactions.

Known as an innovation powerhouse that excels in AI, cloud and digital, NICE is consistently recognized as the market leader in its domains, with over 8,500 employees across 30+ countries.

NICE is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, age, sex, marital status, ancestry, neurotype, physical or mental disability, veteran status, gender identity, sexual orientation or any other category protected by law.

Requisition ID: 10993

Reporting into: Director Information

Role Type: Individual Contributor

About NiCE

NICE Ltd. (NASDAQ: NICE) software products are used by 25,000+ global businesses, including 85 of the Fortune 100 corporations, to deliver extraordinary customer experiences, fight financial crime and ensure public safety. Every day, NiCE software manages more than 120 million customer interactions and monitors 3+ billion financial transactions.

Known as an innovation powerhouse that excels in AI, cloud and digital, NiCE is consistently recognized as the market leader in its domains, with over 8,500 employees across 30+ countries.

NiCE is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, age, sex, marital status, ancestry, neurotype, physical or mental disability, veteran status, gender identity, sexual orientation or any other category protected by law.