Principal Associate, Cyber Security Operations Center (CSOC)

About UsAt PhysicsX, we are revolutionizing the landscape of hardware innovation by leveraging our expertise in numerical physics and our experience in Formula One. Our mission is to expedite the pace of hardware advancements akin to the rapid developments seen in software.We are developing an AI-enhanced simulation software suite aimed at transforming engineering and manufacturing across cutting-edge industries. By facilitating high-fidelity, multi-physics simulations through AI inference throughout the engineering lifecycle, PhysicsX empowers engineers to achieve unprecedented levels of optimization and automation in design, manufacturing, and operational processes. Our clientele includes top-tier innovators in Aerospace & Defense, Materials, Energy, Semiconductors, and Automotive sectors.The RoleAs our Principal Security Engineer, you will collaborate closely with engineering teams to design and implement robust secure development practices, embed security measures within our CI/CD pipeline, and guide security and design reviews.You will leverage your extensive expertise in DevSecOps, application security, and practical experience in securing web applications and APIs, all while possessing a deep understanding of contemporary development workflows. This role presents an exceptional opportunity to influence the direction of our security initiatives within a high-ownership, impactful environment.Your ResponsibilitiesDesign and integrate security tools directly into CI/CD pipelines to automate vulnerability detection and prevention, ensuring scalable 'shift-left' security.Lead threat modeling and secure design reviews for web applications, APIs, and cloud services.Manage the entire product vulnerability lifecycle, from issue triage and prioritization to remediation support, ensuring clear risk communication.Establish secure coding standards, create comprehensive playbooks, and deliver hands-on training and mentorship to foster a security-first culture across the organization.Collaborate cross-functionally with engineering teams to design and scale secure development practices throughout the software lifecycle.Engage with customers during security assessments.Your QualificationsOver 10 years of experience in security, focusing on DevSecOps and security design reviews.Hands-on expertise in secure coding, comprehensive understanding of OWASP Top 10, threat modeling, and SDLC integration.Proficiency with GitHub/GitLab, CI/CD, Infrastructure as Code (IaC), and containerized environments.Experience with deploying and utilizing SAST tools (e.g., Semgrep, Snyk).Strong development skills in Python and Go.A proven track record of balancing pragmatic security solutions with business needs.

HUMAN seeks a Principal Security Engineer to strengthen the security of products, corporate systems, and customer data. This senior individual contributor role operates at the intersection of corporate security, incident response, compliance, and product security. The position collaborates with teams throughout the company to integrate security practices into daily operations. Location: USA East Coast or UK Role overview This position focuses on building technical solutions, automating security processes, and leading the technical delivery of security initiatives. The Principal Security Engineer will work closely with IT, security operations, and compliance teams to ensure strong controls and effective incident response across HUMAN's environments. What you will do Develop scripts and tools (including Python) to automate security controls and workflows. Evaluate and implement security tools to expand capabilities. Design and run automation for compliance programs such as ISO 27001, ISO 27701, SOC 2, and PCI DSS, including evidence collection and report generation. Create and maintain integrations between security, IT, and cloud tools (such as SIEM, EDR/MDR, SOAR, ticketing, asset inventory) using APIs and SDKs. Lead technical delivery of security projects from design through implementation and documentation. Build reusable libraries, scripts, and modules to standardize communication between the security team and IT across common platforms. Design and implement logging and detection content to support investigations. Serve as a senior technical advisor during incident response and provide engineering support to security operations. Enhance controls across endpoint, identity, and SaaS environments, including Okta/Google, Cyera, and CrowdStrike. Define and enforce baseline security configurations for corporate systems, embedding policies as technical guardrails to minimize manual checks. Automate provisioning, hardening, and monitoring for the identity lifecycle in partnership with IT, ensuring secure handling of organizational changes. Collaborate with teams across HUMAN to translate policies and audit requirements into actionable security controls.

HHAeXchange is at the forefront of technology solutions for home and community-based care. Established in 2008, our mission is to create a comprehensive, end-to-end homecare ecosystem that empowers aging individuals and those with disabilities to thrive within their communities. Our dedicated team is passionate about revolutionizing healthcare by seamlessly connecting patients, personal care providers, managed care organizations, and state agencies. We are currently on the lookout for a Principal Cloud Security Engineer to join our expanding Cybersecurity team. In this pivotal role, you will lead initiatives to validate our security posture, manage and implement cutting-edge technical solutions, enhance existing security protocols, and establish robust security standards and policies. As a subject matter expert, you will develop reusable and secure solutions while cultivating strong relationships across HHAeXchange, technical teams, and customers. Your expertise will ensure alignment between our overall security strategy, HHAeXchange’s strategic objectives, and compliance requirements. You will maintain senior-level proficiency across various technical domains, particularly in Cloud and Incident Response, engage in proof-of-concept projects, adopt innovative and business-aligned technology platforms, and expand your areas of expertise as our business evolves. To excel in this role, you must be capable of fulfilling each essential duty satisfactorily. We are committed to providing reasonable accommodations to enable individuals with disabilities to perform essential functions.

P-1125 Summary At Databricks, we are dedicated to empowering data teams to tackle the most challenging issues facing the world today, from detecting security threats to developing cancer treatments. Our mission is to create and maintain the premier data and AI infrastructure platform, allowing our clients to concentrate on the critical challenges central to their objectives. Our engineering teams are at the forefront of innovation, delivering highly sophisticated products that meet significant global demands. We relentlessly push the limits of data and AI technology while ensuring the resilience, security, and scalability essential for our customers’ success on our platform. Trust is paramount at Databricks, and our Trust & Safety initiative is dedicated to establishing the most reliable data analytics and machine learning platform globally. Security Engineering plays a crucial role in protecting customer data from malicious threats. We seek experienced leaders like you to craft the vision and outline the strategy in this vital area.

Radar is looking for a Staff or Principal Product Engineer with a focus on security. This position is based in New York and centers on shaping the security architecture for Radar’s products. Role overview This role involves defining and improving security measures across the company’s product line. The engineer will play a key part in maintaining and elevating security standards as Radar’s offerings grow. What you will do Collaborate with teams from different disciplines to strengthen product security. Develop and refine security features that protect users of Radar’s products. Apply technical expertise to maintain high security standards throughout the product lifecycle.

Join our dynamic team at Blacksmith as a Principal Systems Engineer, where you will play a crucial role in designing, developing, and implementing innovative systems solutions. Your expertise will guide projects from conception to execution, ensuring they meet both technical and user requirements.

About UsAt DriveWealth, our mission is to simplify investing for everyone. We advocate for universal access to financial markets, regardless of geography, wealth, or outdated systems. As a global B2B fintech leader, we aim to democratize financial independence through our innovative API-based platform that allows partners to offer seamless investing experiences to clients worldwide via mobile devices. Our technology provides a modern toolkit for partners, enabling traditional investment workflows alongside innovative solutions such as fractional share ownership. DriveWealth has transformed into a global trading platform for US equities, mutual funds, ETFs, fixed income, and options.Now is an exciting time to join us in building a category-defining business. Our culture combines the agility of a fintech startup with the stability and impact of Wall Street. We foster creativity and experimentation while ensuring top-tier execution and compliance. Come aboard and help shape the future of global investing!About the RoleWe are on the lookout for an accomplished Principal Engineer to join our Engineering team. In this pivotal role, you will spearhead the design, development, and implementation of our brokerage systems. Collaborating closely with our engineering team and various stakeholders, you will create scalable, low-latency, and highly available trading systems.

Join Nagarro as an Associate Principal Engineer, where you will play a vital role in delivering innovative engineering solutions and driving technical excellence.In this position, you will collaborate with cross-functional teams, mentor junior engineers, and contribute to the development of cutting-edge technologies. Your expertise will help shape the future of our projects and ensure the highest quality standards are met.

CoreWeave is seeking a Security Engineering Manager to lead the Platform Security team. This position is based in Livingston, NJ, New York, NY, Sunnyvale, CA, Bellevue, WA, or San Francisco, CA. The team’s mission is to embed security into CoreWeave’s Kubernetes-based platform and public cloud environments, supporting high-performance infrastructure for AI and machine learning workloads. Role overview This manager will oversee and expand the Platform Security engineering team, reporting to the Senior Director of Security Foundations. The focus is on hands-on leadership and technical execution, with an emphasis on building and implementing security controls rather than policy development. The role requires close collaboration with Infrastructure, Platform Engineering, Site Reliability Engineering, and other security teams to ensure security measures keep pace with business growth and evolving needs. What you will do Lead and grow the Platform Security engineering team. Integrate security into Kubernetes infrastructure and public cloud platforms such as AWS, GCP, and Azure. Define and execute strategies for cloud security posture, workload isolation, platform guardrails, image integrity, and multi-cloud security. Develop and implement security controls across CoreWeave’s infrastructure. Work closely with other technical teams to align platform security with business needs. The Platform Security team The Platform Security team at CoreWeave engineers systems that enforce security at the infrastructure layer. Their work spans both CoreWeave’s own Kubernetes-based platform and third-party public cloud environments. The team supports GPU-accelerated infrastructure for demanding AI and machine learning workloads, ensuring that both customer and internal services remain secure as CoreWeave’s global presence expands.

Join Nagarro as an Associate Principal Engineer in Delivery, where you will play a pivotal role in driving innovative engineering solutions that enhance our service delivery. Our commitment to excellence requires a strategic thinker with a passion for technology and a collaborative spirit.

Role Overview Claylabs is hiring a Security Engineer in New York to help protect our digital infrastructure. This role focuses on finding vulnerabilities, putting security measures in place, and maintaining the integrity of our systems. What You Will Do Identify security vulnerabilities across systems and networks Implement technical safeguards to protect company assets Monitor and support the ongoing integrity of digital infrastructure Location This position is based in New York.

At January, we are on a mission to revolutionize consumer finance from the ground up. By personalizing interactions and optimizing decision-making throughout all stages of consumer credit, we empower both consumers and creditors, ensuring that credit is fair, accessible, and tailored to individual needs.As a Lead Security Engineer, you will redefine security standards in an industry where trust has been significantly compromised. This is a unique opportunity to join us at a pivotal moment: we have established the hard-earned trust of leading financial institutions, and now you will create the security framework that extends this trust to millions of consumers.You will design and implement a dual trust architecture, safeguarding both consumer-facing experiences and robust enterprise systems. You will tackle technical challenges that are unparalleled in the industry, such as privacy-preserving data systems, compliance automation across multiple jurisdictions, and AI-driven decision-making processes. Your influence will shape our security strategy and culture from the ground up, demonstrating that security is not merely an overhead cost, but a competitive advantage that drives enterprise partnerships and market growth.Your ImpactTransform security into a competitive edge: Position January's security as a key differentiator that attracts banks and enterprises, unlocking Tier 1 partnerships and deals that competitors cannot secure.Promote security-by-design in product and application development: Collaborate with product and engineering teams to identify critical risks early in the process, focusing on application security across frontend, Flask services, and databases. Integrate security into the discovery and design phases, ensuring secure development patterns are embedded in workflows.Design systems for bank-grade data protection: Create and enforce data classification, encryption, and access control mechanisms that comply with regulatory standards, ensuring sensitive data remains within authorized boundaries.Foster a security-first engineering culture: Advocate for security-centric thinking within engineering teams without hindering progress. Lead incident responses decisively, ensuring that January emerges stronger from security events through thorough post-incident analyses.Streamline compliance with minimal overhead: Maintain SOC 2, PCI-DSS, and financial compliance using automated systems and build infrastructure that generates audit evidence seamlessly, eliminating compliance bottlenecks.

Role Overview NBCUniversal is looking for a Principal Data Engineer in New York to help design and build data solutions that support business goals. This position focuses on developing and optimizing data pipelines, ensuring data quality, and collaborating with teams across the company to deliver practical solutions. Key Responsibilities Design, build, and maintain data pipelines that support business operations and analytics. Work with cross-functional teams to understand data needs and deliver scalable solutions. Apply expertise in data engineering, cloud platforms, and data architecture to improve system performance and reliability. Champion data integrity and best practices throughout the data lifecycle. What We’re Looking For Deep experience in data engineering and data architecture. Strong knowledge of cloud technologies. Ability to collaborate effectively with technical and non-technical partners. Motivation to solve complex problems and deliver results that move the business forward. This role offers the chance to shape how NBCUniversal uses data and to make a visible impact on the company’s technology landscape.

CLEAR builds secure identity technology for both digital and physical spaces. With more than 38 million members and a growing global partner network, CLEAR’s platform helps people move through airports, stadiums, workplaces, and daily routines with greater safety and ease. Role Overview The Senior Security Engineer on the Infrastructure Security Engineering (ISE) team protects CLEAR’s core platforms. This position focuses on cloud security, identity management, and endpoint controls. The work centers on AWS and Kubernetes environments, using infrastructure-as-code to scale and automate security practices. What You Will Do Strengthen security across AWS and Kubernetes infrastructure Develop and implement security controls using infrastructure-as-code Work closely with Engineering, CorpIT, and Security teams to make security a default part of CLEAR’s systems Location This role is based in New York, New York, United States.

Join our dynamic team at Nagarro as an Associate Principal Engineer focusing on delivery excellence. In this role, you will leverage your engineering expertise to drive innovative solutions and ensure the successful execution of projects. You will collaborate with cross-functional teams and play a critical role in delivering value to our clients.

Wehrtyou seeks a Security Engineer based in New York, NY. This role centers on protecting information systems and supporting secure business operations. The position involves defending sensitive company data and helping maintain the integrity of daily processes. Key responsibilities Design and implement security measures for company information systems Monitor systems to detect and respond to security threats Safeguard sensitive data against both internal and external risks Support the security and reliability of company operations Role focus This position requires a proactive approach to identifying vulnerabilities and ensuring that the company’s data and systems remain secure.

Join Ramp as a Cloud Security Engineer and be part of a dynamic team dedicated to safeguarding our cloud infrastructure. In this role, you will leverage your expertise to design, implement, and maintain robust security measures that protect our clients' data and ensure compliance with industry standards.

Join Our Innovative Security TeamAt OpenAI, security is paramount to our mission of ensuring that artificial general intelligence serves the best interests of humanity. Our dedicated Security team safeguards OpenAI’s technology, personnel, and products. We are technical in our solutions and operational in our approach, committed to supporting all aspects of our products and research. Our guiding principles include prioritizing impactful initiatives, empowering our researchers, preparing for future technological advancements, and fostering a robust security culture.Your Role as an Application Security EngineerIn the role of Application Security Engineer, you will play a vital part in identifying and mitigating security vulnerabilities within our software applications. This involves creating security tools, conducting code reviews, performing penetration testing, and executing comprehensive security assessments.We seek individuals who will collaborate closely with development teams to embed secure coding practices throughout the software development lifecycle, preemptively addressing security risks. You will also offer security guidance to developers and stakeholders, promoting a culture of security awareness across the organization.This position is based in New York City, but we also consider candidates for remote work. Our hybrid work model requires three days in the office each week, and we offer relocation assistance for new employees.Key ResponsibilitiesConduct Security Assessments: Regularly perform security assessments, code reviews, and penetration tests to identify vulnerabilities in applications and software.Create and Implement Security Tools: Design and develop security tools, frameworks, and methodologies to defend applications against potential threats.Collaborate with Development Teams: Work hand-in-hand with development teams to ensure security best practices are integrated throughout the software development lifecycle, including secure coding standards.Threat Modeling and Risk Assessment: Carry out threat modeling and risk assessments to proactively identify potential risks and devise effective mitigation strategies.Manage Vulnerabilities: Track, analyze, and manage vulnerabilities within applications, providing guidance and support for remediation efforts.Incident Response Support: Assist in incident response efforts and contribute to the development of incident response protocols.

Join Scale AI as a highly skilled Security Engineer in our Product Security team, where you will play a pivotal role in safeguarding the security and integrity of our products and services. This position involves conducting comprehensive code reviews, implementing security best practices, and shaping our overarching security strategy. Your proficiency in TypeScript, Python, AWS, CI/CD, SAST, DAST, and Terraform orchestration will be vital in detecting and addressing potential security threats. You will have the opportunity to analyze complex issues, identify root causes independently, and articulate the complexities and implications of security vulnerabilities, including their potential for exploitation and impact. Your responsibilities will include:Utilizing extensive product security knowledge to design and maintain software tools that secure every layer of the modern AI/ML software ecosystem.Conducting thorough code reviews to identify and rectify security vulnerabilities.Assessing and improving the security of our product offerings through RFC and service evaluations.Establishing and sustaining CI/CD pipelines with a strong emphasis on security.Executing Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) to uncover vulnerabilities in production code.Employing Terraform orchestration to maintain secure and efficient infrastructure management.Advising engineering teams on developing robust, long-term solutions that prioritize security and privacy.Clearly communicating the mechanics and significance of security vulnerabilities, including their exploitability and potential consequences.Contributing to the security strategy and direction of the team, advocating for best practices and ongoing enhancements. Ideal candidates will possess:A proven track record of independently driving multi-month security initiatives, from problem identification to execution, with minimal oversight.Significant experience as a Security Engineer with an emphasis on product security.Proficiency in NodeJS, TypeScript, Python, and/or Kubernetes.A strong grasp of modern JavaScript application design.Practical experience in operating and securing AWS infrastructure at scale.Hands-on experience with SAST and DAST tools and methodologies.Familiarity with Terraform orchestration for managing infrastructure.Capability to analyze complex problems and identify root causes independently, providing actionable insights without managerial input.Exceptional communication skills, enabling clear presentation of technical concepts to diverse audiences.