Top Cybersecurity Jobs

Design and maintain enterprise security architecture for endpoints, identity, MDM, and PKI. Implement endpoint hardening, certificate lifecycle, Okta-based access controls, and compliance-aligned controls (CMMC/NIST). Integrate telemetry, produce standards and documentation, and partner with infrastructure, compliance, and engineering teams to reduce device-related risk.

The Cybersecurity Lead is responsible for safeguarding information systems, managing the security posture, conducting risk assessments, and leading a team in incident response.

The Manager will lead the Cybersecurity Policy, Risk & Governance strategy, ensuring compliance with regulations and effective execution of cybersecurity initiatives.

The role involves developing, reviewing, and disseminating Cybersecurity policies, providing expertise on planning and operations, and coordinating with various military commands.

The Senior Cybersecurity Analyst will support a defense program focusing on cybersecurity for systems, conduct assessments, and integrate emerging technologies.

Design, implement, and automate security controls across SOC, vulnerability management, and DLP. Lead incident response, integrate Microsoft security stack and SIEM, automate SOC workflows and remediation using SOAR, IaC, and AI/LLM techniques. Collaborate with IT and cross-functional teams to reduce MTTD/MTTR and ensure compliance with security frameworks.

Lead and develop Business Wire's cybersecurity and GRC strategy, oversee security architecture and cloud/application security (AWS/Azure), manage risk assessments, vulnerability and penetration testing, and ensure compliance with PCI DSS, SOC 2, and ISO 27001. Serve as executive incident response lead, manage external security partners, mentor security/GRC staff, and translate technical risk into business decisions while driving security awareness and governance.

Lead proactive threat engineering by running offensive and purple-team operations, managing enterprise vulnerability and remediation programs, integrating automated scanning and intelligence into CI/CD and asset systems, translating adversary emulation into detections, and partnering with incident response to improve detection, playbooks, and organizational security posture.

Manage day-to-day identity and access operations including provisioning/de-provisioning, access requests, entitlement management, access reviews, and IAM governance. Support automation, RBAC models, audit readiness, incident response, and cross-functional initiatives such as M&A integrations and system migrations to maintain secure, auditable access aligned with business needs.

Designs, tests, and deploys data protection and security solutions (focus on Privacera) across Azure and GCP. Builds CI/CD pipelines, performs risk assessments and proofs-of-concept, supports incident response, and drives security R&D and integrations into cloud environments. Collaborates with stakeholders and influences security strategy.

Lead and mature the healthcare organization's cybersecurity GRC programs including governance, risk management, compliance (HIPAA/NIST), third-party risk, incident response, and business continuity. Build and mentor a team, run risk analyses and registers, author policies, oversee vendor security and BAAs, coordinate incident response and recovery, and deliver executive-level reporting to align security with clinical, research, and business objectives.

Lead Coastal's 24x7 security operations: run SIEM/SOAR and detection engineering, command incident response, manage vulnerability lifecycle and MSSP governance, build threat hunting/purple team capability, and produce audit-ready documentation and KPIs for risk reduction.

Execute end-to-end third-party risk management including intake, risk tiering, questionnaire administration, evidence review, scoring, and risk decisioning. Review cybersecurity contract provisions and coordinate redlines. Assess supply-chain, geopolitical, and AI vendor risks. Serve as liaison to OpCo coordinators to ensure consistent vendor risk handling. Operate and maintain enterprise risk register, ensure data quality, aggregate cross-OpCo risk, and produce executive-grade reporting.

The Director of Cybersecurity manages security operations, incidents, and technology risk in a leadership role while implementing security technologies and strategies.

The ISSM will provide cybersecurity support, monitor risks, ensure compliance with standards, assess configuration changes, and manage security documentation.

The Cybersecurity Architect formulates and reviews security architecture, ensuring compliance for bank technology initiatives, and assesses risks while implementing secure solutions.

The Senior Principal Cybersecurity Architect will assess risks, develop security programs, create security requirements, and supervise cybersecurity testing initiatives to enhance security controls across technologies.

Lead cybersecurity initiatives for cloud environments, mentor teams, ensure compliance, manage risk, and integrate security controls.

The SME Cybersecurity Systems Engineer will design, implement, and maintain cybersecurity plans and architectures while ensuring compliance with security policies across the Department of War data and analytics program.

Lead end-to-end third-party risk management across vendor lifecycle, review vendor security evidence and contracts, assess supply-chain and AI vendor risks, ensure consistent scoring and escalation, and support enterprise risk register operations and executive reporting.

Investigate and respond to escalated cybersecurity incidents across endpoint, network, cloud, and identity systems. Perform threat hunting, correlate telemetry from EDR/SIEM, improve detections and playbooks, document findings, coordinate incident response, and produce technical and executive reports.

Design, implement, and maintain secure cloud and on-premises infrastructure; define security standards and deployment templates; integrate cybersecurity best practices across IT; perform escalated incident response and investigations; mentor IT peers and ensure controls, logging, and monitoring meet risk appetite.

Manage end-to-end third-party risk lifecycle: vendor intake, questionnaires, evidence review and scoring, and risk decisioning. Review cybersecurity contract language with Legal/Privacy/Procurement, assess supply-chain and AI vendor risks, coordinate consistency across operating companies, and maintain enterprise risk register and executive reporting.

This role involves designing, implementing, and managing cryptographic solutions, including PKI and HSM, ensuring security compliance and operational effectiveness.

Lead RMF initiatives and manage eMASS/Xacta authorization packages for CDES/MSL-ITF. Produce and maintain RMF documentation (SSPs, POA&Ms, SARs, BOE), support continuous monitoring, vulnerability remediation tracking, audits, and compliance with NIST SP 800-53. Collaborate with ISSOs/ISSMs, DevSecOps, and engineering teams and participate in SAFe ceremonies to ensure cybersecurity requirements are integrated across the system lifecycle.