736 joburi disponibile

*Hybrid, 3 days onsite, 2 days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Lead SDET - Java/Kafka Automation Tester. This role will focus on automation testing/development working with Java, Kafka, Microservices, Cucumber, Selenium, Spring boot, etc. Responsibilities: Specific duties and responsibilities include creating, maintaining and executing automation test plans, writing code against software platforms, estimating testing efforts, analyzing and communicating test results, defect tracking and participation in day to day test activities, and contribute to the company's performance and scalability testing efforts Develop, enhance and extend automation frameworks Identify quality tasks during team sprint cycle and implement automation for new features Participate in performance and load test efforts Assist in the planning, creation and control of the test environments and test data Define test strategy, conduct requirements analysis for testability, identify scope, conduct risk and mitigation planning, configuration management planning, write master and detailed test plans for test planning and design Qualifications: BS degree in Computer Science, similar technical field, or equivalent practical experience 7+ years of automation testing experience MUST HAVE: KAFKA, JAVA, MICROSERVICES, SPRINGBOOT Automated Testing framework experience (Cucumber, Selenium, Mocha/Chai, TestNG) Experience working in an Agile environment Hands-on experience with writing automation test code and utilizing leading industry standards tools and frameworks that can simulate complex multi-system scenarios Proficiency with automated testing types (Unit, Functional, Load, Security, Behavioral, Integration, Component, Contract and End to End) Experience working with two or more of the following: web/mobile application development, Unix/Linux environments, event driven systems, transaction processing systems, distributed and parallel systems, large software systems development, security software development, public-cloud platforms Strong testing experience which includes developing test plans, automating test cases, and working with test frameworks Deep analytical skills with ability to describe methods of testing highly sophisticated systems, diagnose systems defects, and clearly communicate to project constituents, key findings and learning Experience working in a SaaS environment Java based software development experience Fluent in object-oriented design, industry best practices, software patterns, and architecture principles

*Hybrid, 3 days onsite, 2 days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Lead SDET - Java/Kafka Automation Tester. This role will focus on automation testing/development working with Java, Kafka, Microservices, Cucumber, Selenium, Spring boot, etc. Responsibilities: Specific duties and responsibilities include creating, maintaining and executing automation test plans, writing code against software platforms, estimating testing efforts, analyzing and communicating test results, defect tracking and participation in day to day test activities, and contribute to the company's performance and scalability testing efforts Develop, enhance and extend automation frameworks Identify quality tasks during team sprint cycle and implement automation for new features Participate in performance and load test efforts Assist in the planning, creation and control of the test environments and test data Define test strategy, conduct requirements analysis for testability, identify scope, conduct risk and mitigation planning, configuration management planning, write master and detailed test plans for test planning and design Qualifications: BS degree in Computer Science, similar technical field, or equivalent practical experience 7+ years of automation testing experience MUST HAVE: KAFKA, JAVA, MICROSERVICES, SPRINGBOOT Automated Testing framework experience (Cucumber, Selenium, Mocha/Chai, TestNG) Experience working in an Agile environment Hands-on experience with writing automation test code and utilizing leading industry standards tools and frameworks that can simulate complex multi-system scenarios Proficiency with automated testing types (Unit, Functional, Load, Security, Behavioral, Integration, Component, Contract and End to End) Experience working with two or more of the following: web/mobile application development, Unix/Linux environments, event driven systems, transaction processing systems, distributed and parallel systems, large software systems development, security software development, public-cloud platforms Strong testing experience which includes developing test plans, automating test cases, and working with test frameworks Deep analytical skills with ability to describe methods of testing highly sophisticated systems, diagnose systems defects, and clearly communicate to project constituents, key findings and learning Experience working in a SaaS environment Java based software development experience Fluent in object-oriented design, industry best practices, software patterns, and architecture principles

Essential Duties and Responsibilities: * Obtain a deep understanding of Finance business area(s) and business processes to be able to recommend solutions and build high-quality requirements. * Shape business requirements by making recommendations and suggesting alternatives to proposed solutions. * Participate in Application Configuration, Analysis, Management, and Maintenance in an Enterprise environment, including (where applicable) * Responsible for hands on functional configuration in SAP FI-CO modules. * Provides functional consulting on complex SAP projects including rollouts * Design and deliver high quality solutions through system configuration and/or development that meet overall business requirements in the areas of responsibility * Interface with COE functional experts and business process owners to facilitate process improvement and develop new functionality * Support user training activities. * Adhere to the Quality System Procedures and Change Control. * Lead and/or participate in delivery of projects. * Provide Application End User support. * Respond, resolve, or escalate reported incidents. * Responsible for coordinating application needs from Back End platforms through user interface. * Ensure stability, integration, and integrity of production systems. * Create artifacts as appropriate, including business case documentation, scope documentation, detailed functional requirements, operational requirements, process flows, and test cases. * Understand technical options, limitations, costs, and risks. * Communicate tradeoffs to business partners and work with them to shape requirements accordingly. * Help resolve competing priorities between stakeholder groups by facilitating stakeholder discussions and escalate issues where appropriate. Additional Duties & Responsibilities: * Familiar with standard concepts, practices, and procedures of cloud technology, including Software as a Service (SaaS), Platform as a Service (PaaS), Infrastructure as a Service (IaaS). * Follow established methodology for the identification and documentation of business requirements. * Create and maintain application operational and instructional documentation, as necessary. * Provide Level 2 and Level 3 on-call coverage support. * Monitor, record, investigate, and diagnose system faults and errors aimed to resolve technical issues and respond to requests for support. * Benchmark current and future processes against industry best practices. * Contribute to the development of roadmaps. * Support the adoption of solutions by sponsoring business departments. * Manage projects with limited scope. * Create functional design documents and other relevant documents maintaining adherence to the software development lifecycle. * Analyze business process potentials for streamlining and improvements in efficiencies. * Run automated test scripts. * Support user acceptance testing. Education/Experience: * Bachelor's degree required (Computer Science or related field preferred) * 2 + years of hands-on experience with SAP FI-CO required * Hands-on experience with SAP ECC required * Accounting background & knowledge preferred * Experience with SAP CO in a manufacturing environment required * Experience in Material Ledger and Product Costing preferred * Experience with SAP Add-ons/Bolt-ons is a plus * Experience with S4 HANA is a plus Specialized Skills: * Excellent communication skills and customer service orientation * Experience working in projects where multiple functions work in a Matrix structure is a plus * Business analysis certification (eg CBAP) is a plus. * Previous involvement in the deployment or optimization of an ERP system is a plus

*Position is bonus eligible* Prestigious Financial Company is currently seeking a Senior DevOps CI/CD Engineer with strong AWS experience. Candidate will provide subject matter expertise for ongoing support of applications deployed to non-production AWS environments and supporting 3rd party applications. Identify root causes and automate solutions in support of development. Candidate will have a deep understanding of DevOps practices, leadership skills, and expertise in various tools and technologies. You will be working in a fast-paced, dynamic environment, using cutting-edge tools and cloud technologies. Manage day to day activities when called upon. Responsibilities: Desing Develop release and support, Cloud Native applications running on Containers Kubernetes and Docker within AWS. DevOps Strategy: Develop and implement DevOps strategies and best practices to enhance development, testing, and deployment processes. Possess in-depth knowledge and hands-on experience with DevOps tools and technologies, including but not limited to GitHub, Jenkins, Terraform, Ansible, Kafka, AWS, Apigee. Support the lower environments for incident and problem management. Resolve complex support issues in non-production environments. Create procedural and troubleshooting documentation related to cloud native applications. Write complex automation scripts using common automation tools, such as yaml, Json, Bash, Groovy, Ansible, Terraform and python, Perform other duties as assigned Qualifications: Excellent problem-solving skills. Ability to work independently. Ability to work with management to prioritize tasks. Demonstrate strong confidence in abilities and knowledge. Ability to work well in crisis situations. Ability to work under minimal supervision. Flexibility to be on call from 5 PM to 7 AM for 3 months per year. Good written and oral communication skills. Technical Skills: Expertise on Kubernetes and Docker, including best practices Expertise in cloud containerization; design, develop and troubleshoot Strong programming or Scripting skills in yaml, Helm Charts, Json, Bash, Groovy, Ansible, Terraform, python or Java. Advance level on Networking technologies CI/CD tools such as Artifactory, Jenkins, and GIT, SonarQube Experience with cloud-based systems such as AWS, Azure, or Google Cloud, including expertise in IaC and CaC; Ansible, Terraform Experience with Kafka infrastructure and processes Understanding of software development methodologies and Agile practices Excellent analytical and problem-solving skills, with the ability to troubleshoot and identify the root cause of issues Good verbal and written communication skills, with the ability to collaborate effectively with cross-functional teams. Familiarity with monitoring and logging tools such Elk stack, Splunk. Familiarity with Technologies used to support microservices. Minimum 7 years experience working in a distributed multi-platform environment. Minimum 3 years experience working with Kubernetes. Minimum 3 years experience working on Scripting or Programming Bachelor's degree in a related area Cloud Certification a plus

*Position is bonus eligible* Prestigious Financial Company is currently seeking a Senior DevOps CI/CD Engineer with strong AWS experience. Candidate will provide subject matter expertise for ongoing support of applications deployed to non-production AWS environments and supporting 3rd party applications. Identify root causes and automate solutions in support of development. Candidate will have a deep understanding of DevOps practices, leadership skills, and expertise in various tools and technologies. You will be working in a fast-paced, dynamic environment, using cutting-edge tools and cloud technologies. Manage day to day activities when called upon. Responsibilities: Desing Develop release and support, Cloud Native applications running on Containers Kubernetes and Docker within AWS. DevOps Strategy: Develop and implement DevOps strategies and best practices to enhance development, testing, and deployment processes. Possess in-depth knowledge and hands-on experience with DevOps tools and technologies, including but not limited to GitHub, Jenkins, Terraform, Ansible, Kafka, AWS, Apigee. Support the lower environments for incident and problem management. Resolve complex support issues in non-production environments. Create procedural and troubleshooting documentation related to cloud native applications. Write complex automation scripts using common automation tools, such as yaml, Json, Bash, Groovy, Ansible, Terraform and python, Perform other duties as assigned Qualifications: Excellent problem-solving skills. Ability to work independently. Ability to work with management to prioritize tasks. Demonstrate strong confidence in abilities and knowledge. Ability to work well in crisis situations. Ability to work under minimal supervision. Flexibility to be on call from 5 PM to 7 AM for 3 months per year. Good written and oral communication skills. Technical Skills: Expertise on Kubernetes and Docker, including best practices Expertise in cloud containerization; design, develop and troubleshoot Strong programming or Scripting skills in yaml, Helm Charts, Json, Bash, Groovy, Ansible, Terraform, python or Java. Advance level on Networking technologies CI/CD tools such as Artifactory, Jenkins, and GIT, SonarQube Experience with cloud-based systems such as AWS, Azure, or Google Cloud, including expertise in IaC and CaC; Ansible, Terraform Experience with Kafka infrastructure and processes Understanding of software development methodologies and Agile practices Excellent analytical and problem-solving skills, with the ability to troubleshoot and identify the root cause of issues Good verbal and written communication skills, with the ability to collaborate effectively with cross-functional teams. Familiarity with monitoring and logging tools such Elk stack, Splunk. Familiarity with Technologies used to support microservices. Minimum 7 years experience working in a distributed multi-platform environment. Minimum 3 years experience working with Kubernetes. Minimum 3 years experience working on Scripting or Programming Bachelor's degree in a related area Cloud Certification a plus

*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Company is currently seeking a Senior SDET Software Development Engineer with Financial Services industry experience. Candidate will lead the manual and automated integration testing at the program level. Responsibilities: Develop and execute integration test strategy for assigned products Develop and execute test plans, develop test automation Lead the testing and automation function in collaboration with other team members Execute test plans and prepare clearly documented results, demonstrate the results to the product teams and management Review release notes of delivered functionality and create test plans focused on integration tests Work with the product teams on resolution of any outstanding issues within the release and post-release Categorize issues based on severity, clearing documents details of the issues in the tracking system Develop and execute functional and non-functional testing plans Keep track of open issues and retest closed issues. Provide direction to the other team members for testing integrated systems. Build new automation capabilities for integration testing, reconciliation testing, and data testing. Partner with internal business users and stakeholders to prioritize and develop requirements and testing for implementing new features and functionality including, but not limited to, Risk Platform applications. Manage Ovation system releases, identifying impact and enhancement opportunities, and communicating appropriately Support regression testing and introduction of required changes as new releases are introduced Provide support for the Ovations systems including, but not limited to, research and resolution of system issues, user support, and scheduled activities Create and maintain reports for ongoing business needs Lead day-to-day activities and delivery schedule of implementation partners engaged for various initiatives, when applicable Build upon/maintain professional relationships with key colleagues and vendors to ensure that the services and solutions provided meet the current and future needs Manage and communicate status reports and other key metrics Maintain documentation and process related requirements Assist with compliance and regulatory related activities Perform other duties as required Qualifications: Strong testing and QA automation background Strong technical background Strong customer orientation and excellent communication skills Ability to work in a fast-paced, confidential environment Understanding of systems development life cycle (SDLC), including proven experience in implementing software applications Exceptional attention to detail Must maintain high level of confidentiality and professionalism Consistent in performance and practices ethical, professional behavior Experience operating within an Agile delivery team Work well independently, yet is cooperative in working with team members Proficiency in test automation tools - like Gherkin, Cucumber, Selenium, or other automation frameworks. API and high-volume data testing experience Development of data testing and transformation tools Programming in Python, Java, other programming languages Strong data experience including SQL, databases Streaming and event driven system experience a plus. Message queuing and event sourcing tools like IBM MQ, Kafka Proficiency with MS word, PowerPoint, Excel, and Visio is preferred Experience with implementing and configuring business processes Deep understanding of data and structure, reporting, dashboards, strongly preferred Experience with Security testing preferred Clearing and Risk systems functional expertise and familiarity with technical offerings such as integrations and Core Connectors is preferred Education and/or Experience: Undergraduate Degree (or equivalent) Minimum of seven (7) years' experience working with manual and automation technologies as an expert with a clear understanding of core practices, processes, and terminology Minimum of five (5) years' experience implementing, enhancing, and supporting integration testing to address business problems and requirements in multiple functional areas Minimum of two (2) year of experience in financial services or capital markets

*This is a 3rd shift role, 10:30pm-7:00am, Monday thru Friday each week* *Position is bonus eligible* Prestigious Financial Company is currently seeking a Production Server Operations Administrator. Candidate will be responsible for monitoring the production server environment. Candidate will be reviewing processes and procedures throughout the Production environment and driving improvements throughout. This role will reside in Technology Operations and will work closely with a broad cross-section of the organization including the following teams: Production Control, Production Support, Release Management, Platform Services, Storage, Cloud, Linux/Unix, Networking, Business Operations, Change/Problem/Incident Management. Responsibilities: Focus on shifting the overall operational posture from re-active to pro-active Analyze and report upon Production performance CI opportunities Analyze and report upon Production capacity CI opportunities Analyze and report upon Production critical-path processing CI opportunities Stand-up SWAT's if when needed to drive resolution of ongoing Production issues Identifies and diagnoses complex problems and factors affecting Production performance Troubleshoot hardware and software problems, take appropriate corrective actions and/or interact with IT-staff/vendors in performing complex testing, support, and troubleshooting functions Move between tactical & strategic (ie. Forecast system demands and recommend upgrades, expansions and reconfigurations if/when needed) Consult & evangelize for operational best practices Collaborate across domains (ie. network, DB etc) to assist with application tuning Adhere to any/all Production security requirements and best practices Adhere to any/all processes to align with regulatory requirements Adhere to, and advocate for, all ITIL processes (ie. Incident, Problem, & Change) Actively participate in Incident, Problem & Change as a shepherd' for all things Production Analyze repeating alerts to pro-actively identify environmental issues Surface any/all environmental & operational risks identified Prioritizes and align efforts to Production availability requirements and business priorities After hours, weekend work may be required during off hours maintenance windows. Employ first-level Incident identification and resolution techniques to interruptions across Mainframe, Linux/UNIX, Windows, Storage and Network platforms. Monitor multiple applications and systems using approved software. Monitor and respond to applications/systems alerts across all platforms in accordance with Quality Standards and/or Security Policies. Report and document any processing anomalies utilizing approved software. (Service Now/Remedy) Qualifications: [Required] Basic knowledge of ITIL principles [Required] Working knowledge of Scheduling applications/tools (UC4/Control M) [Required] Basic understanding of Network [Required] Basic understanding of Unix/Linux [Required] Basic understanding Windows [Required] Basic understanding Storage [Required] Basic knowledge of IBM JCL [Required] Understands technical monitoring and metrics [Required] Sophisticated understanding of enterprising technology [Required] Mature understanding of the relationship between software and hardware [Nice to have] Knowledge of Clearing and Finance industry [Required] Basic Knowledge of Application life cycle and deployment [Required] Knowledge of MQ (stop/start/recycle) [Required] Problem/Incident management applications and tools experience [Required or in process of acquiring] Bachelor's degree in Computer Information Systems or a related discipline 3+ years of OS390 JCL and IBM utilities 3+ years working in a multi-platform environment including Windows, Linux/Unix and Storage. Strong network knowledge heavily favoured. 3+ years working knowledge of an open systems scheduling product (UC4). Some knowledge of cloud environment [Preferred] Industry certifications in the areas of ITIL

*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Enterprise Security Services Company is currently seeking a Principal Kernel Ransomware Engineer. Candidate will contribute to the Windows agent's ability to prevent, detect, respond, and remediate attacks. In this role, you will drive enhancements in multiple product domains. This development will allow the product to better protect customers from the threat of ransomware. Responsibilities: Develops prototypes for new features, transforms prototypes into production quality code Translates learnings from prototyping effort into crisp functional specifications and project plans for new product features with minimal direction Independently drives new features, bug fixes, and performance enhancements Qualifications: Writes high-quality multithread-safe code in C++ in both Kernel-mode and user-mode Always makes sound decisions with respect to best engineering practices Develops high-quality code in Rust or a strong desire and capacity to learn quickly (Rust) Has shipped at least one production quality driver for Windows NT Strong knowledge of Win32 APIs and NT Kernel Internals Debugs memory corruption issues and improves end-to-end system performance Strong written and verbal communication skills Highly collaborative with a strong ability and desire to mentor and inspire others Practical professional experience in dealing successfully with ambiguity Knowledge and experience with Portable Executable format, Reverse Engineering Experience with Windows Mini-Filter drivers and Windows Filter Platform callout drivers Experience with SQL/Databricks and prior experience developing automated telemetry Familiarity with tools for Rust/C++ interoperability

*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Enterprise Security Services Company is currently seeking a Principal Security Researcher. Candidate will contribute to a number of strategic research initiatives to develop the product and services catalogue. Primary focus for this role is to analyze ransomware samples and threat actor tools to gain insights for future product features, threat actor insights, and assist in the validation of our current capabilities. The ideal candidate will be a proficient reverse engineer with experience in analysing malware, have a strong understanding of cryptography used in ransomware, and the ability to develop tools to augment existing capabilities. Responsibilities: Technical: Reverse engineer malicious or unknown binaries to find insights and intelligence in ransomware samples and threat actor toolkits Use and develop tools to bypass software protection and binary packing techniques. Identify & develop proof-of-concept tools leveraging your security research background to help assist and scale threat research related tasks Partner with applied researchers to enable the development of new products and tools Develop tools for the community, enabling access to our research and best practices, fostering knowledge sharing, and empowering others to conduct their own experiments and learn from our threat research methodology Collaboration: Collaborate with partner Research and Data Science teams on projects and to bring new ideas and technology to customers Cultivate global collaborations with security researchers to exchange knowledge, stay updated on emerging threats, and build partnerships with offensive security researchers to enhance our defensive capabilities and embrace cutting-edge offensive security research. Share knowledge with the community through engaging presentations, blog posts, papers, and active participation on social media channels, contributing to the broader information security ecosystem. Communication: Write high quality technical reports to enable our business to utilize the research effectively across the organization Articulate technical requirements and details to both highly technical and non-technical audience Qualifications: Strong capabilities in reverse-engineering Windows binaries and applications. Strong familiarity with Windows development practices, low level operating system concepts, and networking. Proficiency with development in Scripting languages such as Python or Ruby. Proficiency with development in compiled languages such as C, C++ and/or Rust. Experience in auditing implementations of cryptographic algorithms to identify security issues A willingness to lead by example and participate actively in the workload Excellent English verbal and written communication and presentation skills Maintains a positive attitude and quickly adapts to change Passionate about information security Participation in security-focused communities, open-source development, and Intel sharing communities is a plus. Proficiency with development in CUDA Advanced degree in a technical field (Computer Science, Electrical Engineering, Math, Physics, etc.) Track record of advancing offensive security research field through vulnerability discoveries, research publications, and/or developing security tools

*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a strong Application Security Engineer. Candidate will work closely with other members of the Security Services, IT Development Teams, and Development teams to support application and software security initiatives, projects, and operations. Responsibilities: Application Security/Secure SDLC Build and optimize our security tooling stack, including SAST, DAST, SCA, and IaC. Implement DevSecOps principles and integrate tools into CI/CD pipelines and developer workflows. Define and improve secure SDLC processes designing and implementing a developer friendly secure SDLC framework tailored to the delivery model. Automate security checks in CI/CD pipelines and developer tools to ensure continuous visibility and successful delivery. Build out process for threat modelling and secure design review process. Implement security for supply chain security, AI/ML application security, Open source etc. Review reports of the testing and conduct security risk assessments of the vulnerabilities. The use and maintenance of cloud and self-managed security scanning tools, manual source code reviews, and manual penetration assessments. Conduct IT/Security code review meetings to eliminate false positives and encourage collaboration between Security and IT development teams. Assist with application security vulnerability management including implementation of new vulnerability management tools. Debrief users and provide remediation strategy on findings. Ensure alignment of security controls in testing program and supporting services and related policies and procedures with applicable regulations and industry standard best practices. Perform ongoing reviews of application releases to ensure only secure and reviewed code is pushed to prod, with automation tasks as necessary. Develop scripts/automation to assist development teams with interpreting results from pipeline vulnerability verification reports to facilitate vulnerability remediation. Qualifications: Experience with CI/CD pipelines and software development/coding: Docker, Jenkins, GitHub, SVN, Terraform, and others. Exceptional analytical, problem solving and troubleshooting skills with the ability to exercise good judgment while developing creative solutions. Strong familiarity with enterprise technologies; strong technical background and understanding of security-related technologies; prefer operational experience as an administrator, engineer, or developer and direct experience testing in commercial cloud environments (AWS, Azure, Google Cloud Platform, IaaS/PaaS/SaaS). Good applicable knowledge of policy and procedure development, systems analysis, Information Assurance (IA) policy, vulnerability management, and risk management Good understanding of regulatory standards including CSF, NIST, PCI, SSAE 16, SAS 70, HIPPA, FIPS 199, COBIT 5 and others as needed. Strong knowledge of cryptography (symmetric, asymmetric, hashing) and its various applications. Strong knowledge of common enterprise infrastructure technology stacks and network configurations. Exhibit ability to understand and modify code in a diverse range of programming languages and frameworks; must have direct practical experience with one or more high level programming languages. Technical Skills: Deep knowledge of common web, API and cloud vulnerabilities (eg OWASP Top 10, CWE, auth flaws etc.). Deep understanding of vulnerabilities, reachability, exploitability and how they affect applications. Familiarity with secure coding principles across multiple languages (eg python, Java, JavaScript etc.). Knowledge of how security fits into platform engineering and cloud native stacks. Deep understanding of application layer attacks and defense mechanisms (CCS, CSRF, SQLi, XXE, SSRF, broken access control etc.). Familiarity with API security (REST & GraphQL), Postman, OOWASP top 10). Proficiency with artifact repositories and implementing security controls around component ingestion. Knowledge of shift-left strategies and embedding controls early in the development life cycle. Familiarity with Kubernetes security, container scanning and cloud infrastructure as code. Ability to triage and prioritize vulnerabilities based on exploitability, impact and business context. Strong proficiency application security and vulnerability management. Strong experience with custom Scripting (python, C++, PowerShell, bash, etc.) and process automation. Some proficiency with common penetration testing tools (Kali, Armitage, Metasploit, Cobalt Strike, Nmap, Qualys, Nessus, Burp Suite, Wireshark etc.). Experience with Mainframes, Windows, Unix, MacOS, Cisco, platforms and controls. Experience with dedicated document management tools (eg, DMS, PolicyTech) a plus. Familiarity with application frameworks and their built-in security services and API s (ie, Sun J2EE, MS .NET, OMG CORBA, Spring, etc.). Knowledge of security architecture design and principles including confidentiality, integrity and availability. Knowledge of automated code scanning tools and development pipeline tools. Understanding of security concepts and practices, including those for authentication, authorization, access control and auditing as well as best practices (eg OWASP). Familiarity with application authentication and authorization systems (ie, CA SiteMinder, RSA SecurID/ACE, Active Directory, and LDAP). Fundamental understanding of network and data communications technologies Knowledge of (AWS, Azure, Google Cloud Platform) Cloud security concepts, best practices, and environments. Knowledge of Secure DevOps concepts. Education and/or Experience: BS in Computer Science, Information Management, Information Security or other comparable technical degree from an accredited college/university desired. 5+ Years experience in Application Security or Information Security environment. Experience writing scripts and working with containers in a CI/CD pipeline. Exposure to security architecture design through application development or knowledge of security concepts/best practices. Certificates or Licenses: Security-related certifications (CISSP, CISA, CRISK, ISSAP, GSLC, OSCP, OSCE, GPEN, or GXPN, etc.) highly desired. Professional network and/or security certifications a plus (ie, GIAC, CISSP, CISA, CISM, CRISC) Cloud security automation certifications a plus (ie GCSA) Penetration testing certifications a plus (ie OSCP, GWAPT)

Lead Associate Principal, Software Engineering Middleware SALARY: $150k - 170k plus 15% bonus LOCATION: Chicago, IL Open to h1b transfer, 3 days onsite and 2 days remote Looking for a candidate that is strong in Middleware integration Proxy/reverse Proxy. Oriented Middleware working with apigee, nginx, Apache in containers a must. system administration j2ee application services in containers message Kafka MQ cicd strong ansible terraform cloud formation sftp pki infrastructure multi platform unix linux windows aws Provide subject matter expertise for implementation and ongoing support of Middleware integration technologies in production, non-production Legacy and container-based environments. Responsibilities: Install, configure and maintain 3rd party software components classified as Middleware on multiple operating system platforms. Use subject matter expertise with products to advise on design and assist with development of applications using these tools. Configure production, development and testing environments and ensure the availability of these application services Write complex automation scripts using common automation tools, such as Jenkins and Ansible Provide performance tuning of components and services Design disaster recovery solutions for Middleware technologies to comply with business continuity objectives Resolve configuration related problems Resolve complex support issues in both production and non-production environments. Assist production support and development staff in debugging Middleware application defects. Create procedural and troubleshooting documentation related to Middleware products Participate in or lead moderately or high complex projects. Properly secure Middleware technologies Advise on industry best practices as it relates to new product selection. Manage day to day activities of the Middleware staff when called upon to do so. Management of Vulnerabilities, SORT's, Password rotations and Certificate renewals Qualifications: Expert understanding of: Proxy/Reverse Proxy-oriented Middleware (tools such as Apigee, Nginx, Apache in containers is a must) Systems administration and change management practices J2EE application services in containers and Legacy systems Message-oriented Middleware (tools such as Kafka, MQ) Internet/Web based technologies ITLT Best Practices Scripting and coding Network technologies CI/CD tools ( Strong on Ansible, Terraform and Cloud Formation) Cloud native applications Technologies used to support microservices (like RKE) File transfer protocols including SFTP Encryption technologies (SSL/TLS, PKI Infrastructure management) Security controls as applied to software technologies. Education and/or Experience: Bachelor's degree in a related area 7-10 years of related experience with Minimum 7 years experience working in a distributed multi-platform environment. Minimum 3 supporting Middleware technologies

Lead Associate Principal, Software Engineering Middleware SALARY: $150k - 170k plus 15% bonus LOCATION: DALLAS Open to h1b transfer, 3 days onsite and 2 days remote Looking for a candidate that is strong in Middleware integration Proxy/reverse Proxy. Oriented Middleware working with apigee, nginx, Apache in containers a must. system administration j2ee application services in containers message Kafka MQ cicd strong ansible terraform cloud formation sftp pki infrastructure multi platform unix linux windows aws Provide subject matter expertise for implementation and ongoing support of Middleware integration technologies in production, non-production Legacy and container-based environments. Responsibilities: Install, configure and maintain 3rd party software components classified as Middleware on multiple operating system platforms. Use subject matter expertise with products to advise on design and assist with development of applications using these tools. Configure production, development and testing environments and ensure the availability of these application services Write complex automation scripts using common automation tools, such as Jenkins and Ansible Provide performance tuning of components and services Design disaster recovery solutions for Middleware technologies to comply with business continuity objectives Resolve configuration related problems Resolve complex support issues in both production and non-production environments. Assist production support and development staff in debugging Middleware application defects. Create procedural and troubleshooting documentation related to Middleware products Participate in or lead moderately or high complex projects. Properly secure Middleware technologies Advise on industry best practices as it relates to new product selection. Manage day to day activities of the Middleware staff when called upon to do so. Management of Vulnerabilities, SORT's, Password rotations and Certificate renewals Qualifications: Expert understanding of: Proxy/Reverse Proxy-oriented Middleware (tools such as Apigee, Nginx, Apache in containers is a must) Systems administration and change management practices J2EE application services in containers and Legacy systems Message-oriented Middleware (tools such as Kafka, MQ) Internet/Web based technologies ITLT Best Practices Scripting and coding Network technologies CI/CD tools (Strong on Ansible, Terraform and Cloud Formation) Cloud native applications Technologies used to support microservices (like RKE) File transfer protocols including SFTP Encryption technologies (SSL/TLS, PKI Infrastructure management) Security controls as applied to software technologies. Education and/or Experience: Bachelor's degree in a related area 7-10 years of related experience with Minimum 7 years experience working in a distributed multi-platform environment. Minimum 3 supporting Middleware technologies

NO SPONSORSHIP Associate Principal, Security Engineering (Application Security) SALARY: $160k - $170k plus 15% bonus LOCATION: DALLAS, TX On site 3 days a week Application security, web applications, network applications. This position works closely with other members of the Security Services, IT Development Teams, and Development teams to support application and software security initiatives, projects, and operations. Responsibilities include: Candidate would perform Network/Application and Web Application security. Also create custom scripts and perform automation while also perform security assessments on both Legacy on prem and cloud environments. Candidate would also Identify, document and communicate vulnerabilities. Primary Duties and Responsibilities: Application Security/Secure SDLC Build and optimize our security tooling stack, including SAST, DAST, SCA, and IaC. Implement DevSecOps principles and integrate tools into CI/CD pipelines and developer workflows. Define and improve secure SDLC processes - designing and implementing a developer friendly secure SDLC framework tailored to the delivery model. Automate security checks in CI/CD pipelines and developer tools to ensure continuous visibility and successful delivery. Build out process for threat modelling and secure design review process. Implement security for supply chain security, AI/ML application security, Open source etc. Review reports of the testing and conduct security risk assessments of the vulnerabilities. The use and maintenance of cloud and self-managed security scanning tools, manual source code reviews, and manual penetration assessments. Conduct IT/Security code review meetings to eliminate false positives and encourage collaboration between Security and IT development teams. Assist with application security vulnerability management including implementation of new vulnerability management tools. Qualifications: The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions. Experience with CI/CD pipelines and software development/coding: Docker, Jenkins, GitHub, SVN, Terraform, and others. Exceptional analytical, problem solving and troubleshooting skills with the ability to exercise good judgment while developing creative solutions. Strong familiarity with enterprise technologies; strong technical background and understanding of security-related technologies; prefer operational experience as an administrator, engineer, or developer and direct experience testing in commercial cloud environments (AWS, Azure, GCP, IaaS/PaaS/SaaS). Good applicable knowledge of policy and procedure development, systems analysis, Information Assurance (IA) policy, vulnerability management, and risk management Good understanding of regulatory standards including CSF, NIST, PCI, SSAE 16, SAS 70, HIPPA, FIPS 199, COBIT 5 and others as needed. Strong knowledge of cryptography (symmetric, asymmetric, hashing) and its various applications. Strong knowledge of common enterprise infrastructure technology stacks and network configurations. Exhibit ability to understand and modify code in a diverse range of programming languages and frameworks; must have direct practical experience with one or more high level programming languages. Technical Skills: Deep knowledge of common web, API and cloud vulnerabilities (eg OWASP Top 10, CWE, auth flaws etc.). Deep understanding of vulnerabilities, reachability, exploitability and how they affect applications. Familiarity with secure coding principles across multiple languages (eg python, Java, JavaScript etc.). Knowledge of how security fits into platform engineering and cloud native stacks. Deep understanding of application layer attacks and defense mechanisms (CCS, CSRF, SQLi, XXE, SSRF, broken access control etc.). Familiarity with API security (REST & GraphQL), Postman, OOWASP top 10). Proficiency with artifact repositories and implementing security controls around component ingestion. Knowledge of shift-left strategies and embedding controls early in the development life cycle. Familiarity with Kubernetes security, container scanning and cloud infrastructure as code. Ability to triage and prioritize vulnerabilities based on exploitability, impact and business context. Strong proficiency application security and vulnerability management. Strong experience with custom Scripting (python, C++, PowerShell, bash, etc.) and process automation. Some proficiency with common penetration testing tools (Kali, Armitage, Metasploit, Cobalt Strike, Nmap, Qualys, Nessus, Burp Suite, Wireshark etc.). Experience with Mainframes, Windows, Unix, MacOS, Cisco, platforms and controls. Experience with dedicated document management tools (eg, DMS, PolicyTech) a plus. Familiarity with application frameworks and their built-in security services and API's (ie, Sun J2EE, MS .NET, OMG CORBA, Spring, etc.). Knowledge of security architecture design and principles including confidentiality, integrity and availability. Knowledge of automated code scanning tools and development pipeline tools. Understanding of security concepts and practices, including those for authentication, authorization, access control and auditing as well as best practices (eg OWASP). Familiarity with application authentication and authorization systems (ie, CA SiteMinder, RSA SecurID/ACE, Active Directory, and LDAP). Fundamental understanding of network and data communications technologies Knowledge of (AWS, Azure, GCP) Cloud security concepts, best practices, and environments. Knowledge of Secure DevOps concepts. Education and/or Experience: BS in Computer Science, Information Management, Information Security or other comparable technical degree from an accredited college/university desired. 5+ Years' experience in Application Security or Information Security environment. Experience writing scripts and working with containers in a CI/CD pipeline. Exposure to security architecture design through application development or knowledge of security concepts/best practices. Certificates or Licenses: Security-related certifications (CISSP, CISA, CRISK, ISSAP, GSLC, OSCP, OSCE, GPEN, or GXPN, etc.) highly desired. Professional network and/or security certifications a plus (ie, GIAC, CISSP, CISA, CISM, CRISC) Cloud security automation certifications a plus (ie GCSA) Penetration testing certifications a plus (ie OSCP, GWAPT)

*Hybrid, 3 days onsite, 2 days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a DevOps Engineer. This engineer will focus heavily on automation, DevOps, CI/CD, Scripting, Terraform, AWS, etc. Responsibilities: Identify, analyze, and automate repetitive or manual tasks across infrastructure and deployments. Design, implement, and manage CI/CD pipelines to support agile development and rapid releases. Script solutions using Bash, Python, or similar tools to streamline DevOps processes. Advocate for and enforce DevOps and security best practices in infrastructure and deployment processes. Collaborate with development teams to identify opportunities for automation and implement solutions to improve quality and efficiency. Lead automation efforts in an Agile development environment, including planning, estimating, and reporting automation progress Participate in code reviews, defect triage, and other software development activities Continuously research and evaluate emerging technologies and industry trends to improve automation strategies and tools Work with the DevOps team to integrate automation tools into the CI/CD pipeline and automate deployment processes Understand Cloud Native applications running on Kubernetes within AWS. Create procedural and troubleshooting documentation related to cloud native applications. Qualifications: Bachelor's degree in a related area 7-10 years of related experience Minimum 5 years experience on Scripting/devOps Automation Minimum 3 years experience working with AWS services Minimum 3 supporting and maintaining Flexibility to be on call from 5 PM to 7 AM for 3 months per year Proven experience as a DevOps Engineer with a strong automation background Deep knowledge of CI/CD tools (eg, GitHub Actions, GitHub, Jenkins - Groovy, K8s, helm, etc.). Strong hands-on experience with Terraform for cloud infrastructure provisioning. Proficiency in Linux administration and Shell Scripting (Bash, Python, or similar). Solid understanding of AWS services (eg, EC2, S3, RDS, Lambda, CloudWatch, IAM, etc.). Strong understanding of software development methodologies, testing concepts, and Agile development practices, including Scrum and Kanban

*Hybrid, 3 days onsite, 2 days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Principal, Research Technology Engineer. This engineer will focus on strategy, research, and development of new technologies for observability/enterprise level monitoring. This role will be in an R&D lab, doing testing and engineering of new technologies within containerization, Cloud, and DevOps practices. Responsibilities: Key contributor to technology platform design, testing, and implementation process to introduce new technology and improve existing technology initiatives for hybrid cloud and on-premises infrastructure within company Data Centers. Define and implement testing and success criteria for platforms, products, and technologies to ensure alignment with business, security, and architecture objectives. Lead and participate in exploratory proof-of-concept engagements and technology stress testing to determine solution feasibility and stability. Collaborate with various partner teams across technology, security, and business to provide technical consultation as part of projects and daily business activities. Create technical knowledge and guideline documentation for new and existing technologies to assist partner teams with knowledge transfer for execution and operations. Develop and maintain scalable DevSecOps pipelines, including CI/CD, Infrastructure as Code, and automated security scanning. Qualifications: Bachelor's degree or higher in a technical field 10+ years of progressive experience as a senior/lead engineer in a DevOps, SRE or infrastructure-focused role Deep expertise in cloud computing platforms (AWS, Azure, GCP, etc.) and infrastructure as code using tools like Terraform, Ansible, etc. Strong background in designing and maintaining CI/CD pipelines, with experience integration security testing and compliance Proficient in Scripting and programming languages such as Python, Bash or Go Understanding of traditional on-premises data center technologies and hybrid cloud architecture Experience developing CI/CD workflows using tools like Github Actions, Jenkins, Azure DevOps Pipelines, AWS CodePipeline, etc Familiarity with GitOps driven deployment tooling with solutions using tools like ArgoCD, FluxCD, etc In-depth knowledge of Observability and enterprise-level monitoring, logging, and alerting solutions through tools like Prometheus, Elasticsearch, Grafana, etc Experience with Cloud native technologies such as Kubernetes, ECS or Azure Container instances. Understanding of enterprise-grade networking technologies, including Routers, Switches, Firewalls and load balancers. Knowledge of network security protocols and certificate-based authentication Deeply experienced with infrastructure as code, like Terraform, OpenTofu or Pulumi Experience working with authentication protocols and suites ( LDAP, Kerberos, SAML, etc.), multi-factor authentication and password-less platforms and technologies, role-based access control and entitlements, etc. Solid understanding of common database technologies on-premises and in the cloud (PostgreSQL, MongoDB, Redis, MSSQL, etc ), data field hardening and encryption, access controls, high-availability, etc.

*Hybrid, 3 days onsite, 2 days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Principal, Research Technology Engineer. This engineer will focus on strategy, research, and development of new technologies for observability/enterprise level monitoring. This role will be in an R&D lab, doing testing and engineering of new technologies within containerization, Cloud, and DevOps practices. Responsibilities: Key contributor to technology platform design, testing, and implementation process to introduce new technology and improve existing technology initiatives for hybrid cloud and on-premises infrastructure within company Data Centers. Define and implement testing and success criteria for platforms, products, and technologies to ensure alignment with business, security, and architecture objectives. Lead and participate in exploratory proof-of-concept engagements and technology stress testing to determine solution feasibility and stability. Collaborate with various partner teams across technology, security, and business to provide technical consultation as part of projects and daily business activities. Create technical knowledge and guideline documentation for new and existing technologies to assist partner teams with knowledge transfer for execution and operations. Develop and maintain scalable DevSecOps pipelines, including CI/CD, Infrastructure as Code, and automated security scanning. Qualifications: Bachelor's degree or higher in a technical field 10+ years of progressive experience as a senior/lead engineer in a DevOps, SRE or infrastructure-focused role Deep expertise in cloud computing platforms (AWS, Azure, GCP, etc.) and infrastructure as code using tools like Terraform, Ansible, etc. Strong background in designing and maintaining CI/CD pipelines, with experience integration security testing and compliance Proficient in Scripting and programming languages such as Python, Bash or Go Understanding of traditional on-premises data center technologies and hybrid cloud architecture Experience developing CI/CD workflows using tools like Github Actions, Jenkins, Azure DevOps Pipelines, AWS CodePipeline, etc Familiarity with GitOps driven deployment tooling with solutions using tools like ArgoCD, FluxCD, etc In-depth knowledge of Observability and enterprise-level monitoring, logging, and alerting solutions through tools like Prometheus, Elasticsearch, Grafana, etc Experience with Cloud native technologies such as Kubernetes, ECS or Azure Container instances. Understanding of enterprise-grade networking technologies, including Routers, Switches, Firewalls and load balancers. Knowledge of network security protocols and certificate-based authentication Deeply experienced with infrastructure as code, like Terraform, OpenTofu or Pulumi Experience working with authentication protocols and suites ( LDAP, Kerberos, SAML, etc.), multi-factor authentication and password-less platforms and technologies, role-based access control and entitlements, etc. Solid understanding of common database technologies on-premises and in the cloud (PostgreSQL, MongoDB, Redis, MSSQL, etc ), data field hardening and encryption, access controls, high-availability, etc.

*We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Principal Security Researcher. This principal will reverse engineer malicious binaries to find ransomware samples. The principal must have experience with languages such as Python, Ruby, C++, Rust, and cryptographic algorithms. Responsibilities: Reverse engineer malicious or unknown binaries to find insights and intelligence in ransomware samples and threat actor toolkits Use and develop tools to bypass software protection and binary packing techniques. Identify & develop proof-of-concept tools leveraging your security research background to help assist and scale threat research related tasks Partner with applied researchers to enable the development of new company products and tools Develop tools for the community, enabling access to our research and best practices, fostering knowledge sharing, and empowering others to conduct their own experiments and learn from our threat research methodology Collaborate with partner Research and Data Science teams on projects and to bring new ideas and technology to customers Cultivate global collaborations with security researchers to exchange knowledge, stay updated on emerging threats, and build partnerships with offensive security researchers to enhance our defensive capabilities and embrace cutting-edge offensive security research. Write high quality technical reports to enable our business to utilize the research effectively across the organization Qualifications: Strong capabilities in reverse-engineering Windows binaries and applications. Strong familiarity with Windows development practices, low level operating system concepts, and networking. Proficiency with development in Scripting languages such as Python or Ruby. Proficiency with development in compiled languages such as C, C++ and/or Rust. Experience in auditing implementations of cryptographic algorithms to identify security issues Proficiency with development in CUDA Advanced degree in a technical field (Computer Science, Electrical Engineering, Math, Physics, etc ) Track record of advancing offensive security research field through vulnerability discoveries, research publications, and/or developing security tools

*We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Principal Kernel System Engineer. This engineer will focus on stopping ransomware, bug fixes, performance enhancements, etc. This engineer will write high quality multithread safe code. Responsibilities: Develops prototypes for new features, transforms prototypes into production quality code Translates learnings from prototyping effort into crisp functional specifications and project plans for new product features with minimal direction Independently drives new features, bug fixes, and performance enhancements Qualifications: Writes high-quality multithread-safe code in C++ in both Kernel-mode and user-mode Develops high-quality code in Rust or a strong desire and capacity to learn quickly (Rust) Has shipped at least one production quality driver for Windows NT Strong knowledge of Win32 APIs and NT Kernel Internals Debugs memory corruption issues and improves end-to-end system performance Knowledge and experience with Portable Executable format, Reverse Engineering Experience with Windows Mini-Filter drivers and Windows Filter Platform callout drivers Experience with SQL/Databricks and prior experience developing automated telemetry

*We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Senior Product Security Engineer. This role is focused on reverse engineering, analysing malware, ransomware, ability to develop tools to augment existing capabilities, etc. Responsibilities Design and implement security test harnesses from scratch to simulate real-world ransomware behavior Develop and integrate fuzzers (libFuzzer, AFL/WinAFL, or custom tools) for automated crash and vulnerability discovery Build user-mode hooking instrumentation and explore EDR bypass techniques to exercise agent internals Triage, reproduce, and analyze security findings against our agent and libraries Perform root-cause analysis on crashes or logic flaws; build minimal PoC exploits or reproducer cases Deep understanding of Windows internals (ring transitions, memory management, Win32 API) with focus on user-mode security hooks Collaborate on driver-level or API-level integrations when necessary (no Kernel-driver dev required) Qualifications 5+ years in product security or endpoint-focused consulting, with hands-on testing of Windows-based agents or EDR/AV products Experience building fuzzers or integrating existing fuzzing frameworks for native code Experience and capability in building automated test harnesses from the ground up Strong Windows OS internals knowledge, especially user-mode hooking and Win32 API behaviors Proficient in C/C++ and Python, with solid experience calling with Windows APIs Experience reviewing and validating security findings Comfortable researching and suggesting security features end-to-end and creating technical content Rust development experience, particularly around FFI or unsafe code Published tooling or research in vulnerability discovery, fuzzing, and/or automated test frameworks Hands-on experience with CI platforms (GitHub Actions, Jenkins) to automate security workflows

*Hybrid, 3 days onsite, 2 days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Azure Cloud Infrastructure Administration (Tenant, Intune). This Azure administrator will need to have 5+ years of experience working with Azure Tenant, Intune, Microsoft Endpoint Manager, etc. Responsibilities: Azure tenant/cloud infrastructure administration Troubleshooting networks, network appliances, using common network tools to identify issues Microsoft Endpoint Manager/Intune administration Support Enterprise secure printing by leveraging Embedded technologies Work with internal teams to properly identify, remediate and take ownership of and identify concerns related to vulnerabilities and security findings Proactive approach to End of Life technologies/Applications/Systems to keep systems compliant Adhere to internal Change Management requirements for each change in a production environment Manage vendor relationships on all responsible products, ongoing license planning, creation of statement of work documents, budgeting, NDA's, and contract renewals. Qualifications: Bachelor of Science in Computer Science or related degree or equivalent experience Microsoft Azure Administrator Associate (AZ-104) certification or equivalent experience Minimum 5 years experience supporting Corporate Azure tenant, across all technology stacks Experience utilizing common network troubleshooting tools such as Netmon, Wireshark, Fiddler, and Splunk in a complex enterprise environment Experience supporting an Azure cloud environment including virtual machines, networking, storage, and security. Ability to protect Azure data and its dependencies using Named Locations, Conditional Access Policies, and tenant restrictions Experience operating in a DevOps culture Familiarity with working in a highly regulated environment including NIST-CSF, COBIT, CIS