Open Raleigh-Durham Cybersecurity jobs

Summary

This is a cloud security compliance analyst role at Cisco. The person supports audit readiness and regulatory compliance for cloud solutions, working across SOC 2, ISO, CSA STAR, cloud platforms, IAM, vulnerability management, secure SDLC, backup, disaster recovery, and compliance reporting.

Summary

A senior cybersecurity-analyst role at First Citizens Bank focused on detection engineering — analyzing security events from SIEM and EDR platforms and developing and improving threat-detection capabilities at a high level of complexity. The work involves deep SIEM log analysis (Splunk at Power User level or higher), reviewing and strengthening detection strategies, applying the MITRE ATT&CK framework to expand detection coverage, and collaborating with IT and application owners to close gaps. A fit for someone with around 8 years in information security, strong Splunk and security-tool experience (CrowdStrike, UEBA), and a detection-engineering background; remote in NC, AZ, TX, or VA.

Summary

An early-career security engineering role helping Cisco secure its software delivery lifecycle. The work is DevSecOps and application-security plumbing: CI or CD pipelines, security controls, vulnerability scanning, container and artifact security, and infrastructure automation with tools like GitHub Actions, Kubernetes, Terraform, and Snyk.

Summary

An application penetration-testing role at First Citizens Bank, identifying the bank's exposure to cyber threats by planning and conducting pentest assessments of complex applications and coordinating third-party vendor testing. The work is hands-on offensive security — testing web applications and databases with and without scanners using Kali Linux, Burp Suite, and frameworks like OWASP and PTES — plus clearly documenting results and conveying technical findings to application owners, sometimes as lead tester. A fit for someone with several years in systems engineering, network, or information security and application-pentest expertise (OSWE, GPEN, or GWAPT a plus); remote in NC, AZ, or TX.

Summary

An entry-to-mid privileged-access-management security engineering role for First Citizens. The work supports PAM deployment, configuration, privileged account and credential management, documentation, upgrades, patching, and troubleshooting with tools such as CyberArk, HashiCorp Vault, Delinea, PowerShell or Python, Windows Server, Active Directory, LDAP, Linux/Unix, and core networking protocols.

Summary

An information-security engineering role focused on data protection and cloud security. The work supports data discovery, data-loss prevention, Microsoft Purview and Defender, CIS/NIST controls, CASB, cloud security across Azure/GCP/AWS, Python and TypeScript automation, and AI-security posture.

Summary

A senior Linux security role for Cisco cloud infrastructure. The job hardens compute, storage, and AI systems through SELinux, sudoers, CI/CD security, scanning, Ansible, Python, Podman, infrastructure as code, privileged-access controls, and firewall or directory integrations.

Summary

This is a frontline security operations role for Abrigo's corporate and cloud environments. The person monitors SIEM, EDR, and email-security alerts, performs first-tier triage and escalation, and supports access reviews, phishing reporting, metrics, and audit evidence from the Raleigh hybrid office.

Summary

Despite sitting in the Security & Trust organization, this is a legal role: a Principal Corporate Counsel at Cisco advising on risk management, compliance, policy development, and incident response, including AI regulatory compliance. It suits an attorney with security and privacy expertise, not a security engineer.

Summary

A senior security-engineering role on Epic's Anti-Cheat team, writing robust low-level software that protects millions of players a day across Epic's titles and many other games in a fast-paced environment.

Summary

A cybersecurity engineering role focused on data security and sensitive-data protection. The work administers security tools, evaluates data-exfiltration risk, supports audits and remediation, and works with DLP, encryption, Splunk/SCCM/SCOM-style monitoring, Active Directory, file shares, SharePoint, LDAP, IAM, and single sign-on technologies.

Summary

A cybersecurity engineering role focused on IAM, SSO, and security automation. The work administers and improves security controls, assesses networks and systems for vulnerabilities, builds or supports automation with PowerShell/Python, and works with SAML, OIDC, Okta/Ping-style platforms, Terraform, and identity workflows.

Summary

A principal cybersecurity engineering role focused on identity and access security for First Citizens. The job leads security engineering and automation across federated authentication, SAML/OIDC, enterprise IAM/SSO platforms, Python/PowerShell, Terraform, adaptive authentication, and identity threat protection patterns.

Summary

This is an application-security engineering role for Labcorp's secure-development program. The work enables secure SDLC practices across OWASP, NIST, CIS, ISO 27001, API security, OAuth/OIDC/SAML, DevSecOps, SAST/DAST/SCA, cloud security, and identity platforms.

Summary

A principal privileged-access-management security engineering role. The job deploys and supports PAM and identity-governance solutions, designs operating procedures and deployment plans, manages privileged credentials and service accounts, provides on-call production support, and uses tools such as CyberArk, HashiCorp, Delinea, SailPoint, PowerShell, Python, Windows Server, Active Directory, LDAP, and Unix/Linux.

Summary

A senior application-security role for Cisco AI platforms. The job integrates security into SDLC and CI/CD, improves container and cloud security, runs threat modeling and secure design reviews, and works across SAST, DAST, SCA, secrets scanning, IAM, and API security.

Summary

An AI security-engineering role securing Cisco generative-AI platforms. The work designs security controls for LLM systems, RAG pipelines, agents, Kubernetes, APIs, authentication, authorization, data protection, threat modeling, and automated detection or response.

Summary

A senior-manager role owning Advance Auto Parts' enterprise third-party (vendor) cybersecurity risk program, identifying, assessing, and mitigating supplier risk and driving governance, regulatory compliance, and executive visibility. It centers on third-party-risk frameworks (NIST CSF 2.0, NIST 800-161, SOC 2, PCI DSS, ISO 27001) and GRC tooling; a program-leadership role.

Summary

A senior-manager role leading cybersecurity compliance programs at Advance Auto Parts, aligning to NIST CSF, PCI DSS, and U.S. privacy regulations in a retail environment. The focus is GRC and compliance strategy, controls monitoring, and third-party and vendor compliance (including point-of-sale and ecommerce), a governance-and-leadership seat rather than hands-on engineering.

Summary

A SOC manager role at Labcorp (Durham, NC) leading incident handlers and responders and helping evolve the security-operations program, with tools like ServiceNow, Tines, and AlertMedia and KPI/KRI reporting. It is a people-leadership seat over security operations in a healthcare and diagnostics environment handling PHI and PII.

Summary

A principal security-architect role on Spreedly's information-security team, designing and maintaining the security architecture that protects its payments systems, networks, and data and influencing strategic security initiatives. Remote US, tied to Spreedly's Durham HQ.

Summary

A senior security-engineering role building anti-cheat capabilities for Fortnite and Epic's games, combining gameplay-feature and backend-service experience to protect players and the creators who depend on the platform.

Summary

A lead network-security engineering role at Labcorp (Durham, NC), owning Palo Alto firewall infrastructure (plus Panorama and Cisco Firepower) through configuration, optimization, troubleshooting, and policy across the enterprise, with cloud (AWS/Azure/GCP) and compliance (PCI, NIST CSF, ISO 27001) context. It is a hands-on, vendor-specialized network-security seat requiring local presence near Durham.

Summary

An application security engineering role for SAS's internal application portfolio. The work guides secure design, threat modeling, vulnerability triage, compliance alignment, and security-program maturity across R&D, IT, and SAS Managed Cloud Services teams.