Waste Management
Houston, Texas
Waste Management is embarking on an ambitious, enterprise wide technology transformation designed to fuel our continued leadership in an industry rapidly evolving through innovation. We're looking for exceptional Information Technology professionals who are energized by the opportunity to shape what the future of technology looks like at scale. In this role, you won't just support change, you'll help build programs from the ground up, defining new standards and leading initiatives that modernize how we design, develop, and deploy technology across the business. Your technical expertise, paired with industry best practices, will directly influence how technology aligns with and advances our broader business strategy. If you're driven to lead, innovate, and leave a lasting impact, you'll find the opportunity to do your most meaningful work here. I. Job Summary The Principal Application Security Engineer is responsible for defining and driving the application security strategy across the organization. This role ensures secure design and development practices are embedded within the software development lifecycle (SDLC) and DevSecOps pipelines. The architect will lead efforts to implement security tooling, establish reporting frameworks, and collaborate with developers, infrastructure teams, vendors, and security stakeholders to maintain a robust application security posture. II. Duties and Responsibilities To perform this job successfully, an individual must be able to perform each duty satisfactorily. Other ancillary duties may be assigned. Lead the design and implementation of application security architecture and engineering across enterprise applications, partnering with software development, infrastructure, and platform teams to secure cloud-native and on-prem environments. Embed security controls and best practices into CI/CD pipelines and DevSecOps workflows, driving adoption of secure coding standards and threat modeling across engineering teams. Evaluate, implement, and operate application security tooling (e.g., SAST, DAST, IAST, container security and related capabilities), ensuring solutions are effective, scalable, and well-integrated. Define, develop, and maintain application security metrics, reporting, and dashboards to provide visibility to leadership and key stakeholders. Engage and collaborate with third-party vendors to assess and validate the security capabilities of applications and services. Provide guidance and mentorship on application security standards, risk management, and compliance requirements to elevate security maturity across teams. Participate in occasional off-hours support as needed to support troubleshooting or emerging threats. Provides day-to-day management for the Information Protection function, responsible for security technologies utilized to protect WM's data and networks. Participates in WM's Information Security Office leadership team to drive innovative security solutions, and collaboration with other IT and global functions. Responsible for managing the work environment, identifying workforce needs and ensuring performance against expectations, values and vision. Manages security audit and intrusion detection system logs for system and network anomalies and provides highest level analysis. Responds to unique, highly complicated, suspicious or malicious events detected through collection or reported by Help Desk or users. Provides technically advanced remediation and application event support to IT operations and engineering teams Performs initial computer system forensic investigations and supports fraud investigations. Provides top level analysis, design and support for log collection of firewalls, routers, networks and operating systems. Communicates technical and event assessment results, evaluates engineering and integration initiatives and provides technical expertise to assess security policies, standards and guidelines. Develops, collects and analyzes logs from firewalls, intrusion detection systems, enterprise anti-virus systems and software deployment tools. Reviews and recommends the installation, modification or replacement of hardware or software components Identifies and addresses any configuration change(s) that impact event collection. III. Supervisory Responsibilities Will coach and mentor less experienced analysts and act as team leader on more complicated systems projects. IV. Qualifications A. Education and Experience Education: Bachelor's Degree (accredited) in Computer Science, MIS, Business Administration or similar area of study or in lieu of degree, High School Diploma or GED (accredited) and four years of relevant work experience. Experience: Seven years of prior work experience (in addition to education requirement). B. Certificates, Licenses, Registrations or Other Requirements One or more of the following is required: Certified Information Systems Security Professional (CISSP). Certified Information Systems Auditor (CISA). Certified Information Security Manager (CISM). C. Other Knowledge, Skills or Abilities Required Technically advanced or in-depth knowledge or skills in one or more of the following is required: Fortune 500 experience. Deep understanding of application security principles and secure coding practices Ability to design and implement security controls in CI/CD pipelines Strong analytical and problem-solving skills with attention to detail Excellent communication and collaboration skills to work with cross-functional teams Ability to produce clear and actionable security reports and dashboards for stakeholders Ability to create and deliver presentations targeted to either end users or senior management Experience in several or more of the following application security technologies: SAST (Static Application Security Testing), DAST (Dynamic Application Security Testing), IAST (Interactive Application Security Testing), SCA (Software Composition Analysis / open-source dependency scanning), API security (API discovery, auth testing, schema validation, runtime protection), RASP (Runtime Application Self-Protection), Pen-test automation / BAS for apps (continuous validation of controls) and SBOM (software bill of materials) & supply chain security provenance/attestation Experience in the areas of change control, problem management, incident management troubleshooting security solutions Ability to handle successfully multiple projects at one time V. Work Environment Listed below are key points regarding environmental demands and work environment of the job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of the job. Normal setting for this job is: office setting This position is required to be onsite Monday through Thursday at our downtown Houston HQ with a flexible work from home day on Fridays. Benefits At Waste Management, each eligible employee receives a competitive total compensation package including Medical, Dental, Vision, Life Insurance and Short Term Disability. As well as a Stock Purchase Plan, Company match on 401K, and more! Our employees also receive Paid Vacation, Holidays, and Personal Days. Please note that benefits may vary by site. If this sounds like the opportunity that you have been looking for, please click "Apply".
Waste Management is embarking on an ambitious, enterprise wide technology transformation designed to fuel our continued leadership in an industry rapidly evolving through innovation. We're looking for exceptional Information Technology professionals who are energized by the opportunity to shape what the future of technology looks like at scale. In this role, you won't just support change, you'll help build programs from the ground up, defining new standards and leading initiatives that modernize how we design, develop, and deploy technology across the business. Your technical expertise, paired with industry best practices, will directly influence how technology aligns with and advances our broader business strategy. If you're driven to lead, innovate, and leave a lasting impact, you'll find the opportunity to do your most meaningful work here. I. Job Summary The Principal Application Security Engineer is responsible for defining and driving the application security strategy across the organization. This role ensures secure design and development practices are embedded within the software development lifecycle (SDLC) and DevSecOps pipelines. The architect will lead efforts to implement security tooling, establish reporting frameworks, and collaborate with developers, infrastructure teams, vendors, and security stakeholders to maintain a robust application security posture. II. Duties and Responsibilities To perform this job successfully, an individual must be able to perform each duty satisfactorily. Other ancillary duties may be assigned. Lead the design and implementation of application security architecture and engineering across enterprise applications, partnering with software development, infrastructure, and platform teams to secure cloud-native and on-prem environments. Embed security controls and best practices into CI/CD pipelines and DevSecOps workflows, driving adoption of secure coding standards and threat modeling across engineering teams. Evaluate, implement, and operate application security tooling (e.g., SAST, DAST, IAST, container security and related capabilities), ensuring solutions are effective, scalable, and well-integrated. Define, develop, and maintain application security metrics, reporting, and dashboards to provide visibility to leadership and key stakeholders. Engage and collaborate with third-party vendors to assess and validate the security capabilities of applications and services. Provide guidance and mentorship on application security standards, risk management, and compliance requirements to elevate security maturity across teams. Participate in occasional off-hours support as needed to support troubleshooting or emerging threats. Provides day-to-day management for the Information Protection function, responsible for security technologies utilized to protect WM's data and networks. Participates in WM's Information Security Office leadership team to drive innovative security solutions, and collaboration with other IT and global functions. Responsible for managing the work environment, identifying workforce needs and ensuring performance against expectations, values and vision. Manages security audit and intrusion detection system logs for system and network anomalies and provides highest level analysis. Responds to unique, highly complicated, suspicious or malicious events detected through collection or reported by Help Desk or users. Provides technically advanced remediation and application event support to IT operations and engineering teams Performs initial computer system forensic investigations and supports fraud investigations. Provides top level analysis, design and support for log collection of firewalls, routers, networks and operating systems. Communicates technical and event assessment results, evaluates engineering and integration initiatives and provides technical expertise to assess security policies, standards and guidelines. Develops, collects and analyzes logs from firewalls, intrusion detection systems, enterprise anti-virus systems and software deployment tools. Reviews and recommends the installation, modification or replacement of hardware or software components Identifies and addresses any configuration change(s) that impact event collection. III. Supervisory Responsibilities Will coach and mentor less experienced analysts and act as team leader on more complicated systems projects. IV. Qualifications A. Education and Experience Education: Bachelor's Degree (accredited) in Computer Science, MIS, Business Administration or similar area of study or in lieu of degree, High School Diploma or GED (accredited) and four years of relevant work experience. Experience: Seven years of prior work experience (in addition to education requirement). B. Certificates, Licenses, Registrations or Other Requirements One or more of the following is required: Certified Information Systems Security Professional (CISSP). Certified Information Systems Auditor (CISA). Certified Information Security Manager (CISM). C. Other Knowledge, Skills or Abilities Required Technically advanced or in-depth knowledge or skills in one or more of the following is required: Fortune 500 experience. Deep understanding of application security principles and secure coding practices Ability to design and implement security controls in CI/CD pipelines Strong analytical and problem-solving skills with attention to detail Excellent communication and collaboration skills to work with cross-functional teams Ability to produce clear and actionable security reports and dashboards for stakeholders Ability to create and deliver presentations targeted to either end users or senior management Experience in several or more of the following application security technologies: SAST (Static Application Security Testing), DAST (Dynamic Application Security Testing), IAST (Interactive Application Security Testing), SCA (Software Composition Analysis / open-source dependency scanning), API security (API discovery, auth testing, schema validation, runtime protection), RASP (Runtime Application Self-Protection), Pen-test automation / BAS for apps (continuous validation of controls) and SBOM (software bill of materials) & supply chain security provenance/attestation Experience in the areas of change control, problem management, incident management troubleshooting security solutions Ability to handle successfully multiple projects at one time V. Work Environment Listed below are key points regarding environmental demands and work environment of the job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of the job. Normal setting for this job is: office setting This position is required to be onsite Monday through Thursday at our downtown Houston HQ with a flexible work from home day on Fridays. Benefits At Waste Management, each eligible employee receives a competitive total compensation package including Medical, Dental, Vision, Life Insurance and Short Term Disability. As well as a Stock Purchase Plan, Company match on 401K, and more! Our employees also receive Paid Vacation, Holidays, and Personal Days. Please note that benefits may vary by site. If this sounds like the opportunity that you have been looking for, please click "Apply".
Axelon Services Corporation
Oakland, California
Principal S2P Sourcing Analyst Oakland, CA(Hybrid) This position is hybrid, working from your remote office and your assigned location based on business needs. MUST BE ONSITE for 3 days in Oakland office (Tue Thu), remote Mon & Fri. Salary: $145k - $173k Department Overview Enterprise Business & Technology Modernization is a cross-functional organization leading Client s Propel program, a major business and technology modernization initiative designed to unlock customer value by simplifying collaborative work processes. Propel will migrate Client to the new version of SAP, S/4HANA, presenting a unique opportunity for Client to standardize business processes, clean the technology core, and enable innovation for breakthrough change across Engineering, Operations, Finance, Supply Chain, Human Resources, and Information Technology. Through a phased approach, Propel will implement process standardization, operating model changes, data improvements, SAP, and other technology applications with a focus on incrementally improving business capabilities and delivering value. Enterprise Business & Technology Modernization is comprised of multi-disciplinary coworkers with deep functional and industry expertise to design and implement end-to-end business processes and technology solutions following industry-leading practices. The team partners closely with IT and external partners to work collaboratively with many stakeholders to adopt standard processes and maximize the use of out-of-the-box proven technology solutions to meet business needs. Each role in this department offers immense career growth potential and a once-in-a-lifetime opportunity to accelerate the outcomes of our True North Strategy and deliver for our customers. Position Summary The S2P Sourcing Analyst, Principal will play a pivotal role in Client s Propel program, leading the implementation of key supply chain initiatives as part of our broader business and technology modernization efforts. This role requires a deep understanding of Source to Pay (STP) processes and solutions supporting strategic sourcing teams and objectives. The ideal candidate will possess the ability to drive cross-functional collaboration to achieve strategic objectives and will be responsible for ensuring alignment with Propel s goals of standardizing business processes, enhancing data quality, and enabling technological innovation for the future state STP design. Reporting Relationship The S2P Sourcing Analyst, Principal will report directly to the S2P Business Strategy, Senior Manager. Client is providing the salary range that the company in good faith believes it might pay for this position at the time of the job posting. This compensation range is specific to the locality of the job. The actual salary paid to an individual will be based on multiple factors, including, but not limited to, specific skills, education, licenses or certifications, experience, market value, geographic location, and internal equity. Although we estimate the successful candidate hired into this role will be placed between the entry point and the middle of the range, the decision will be made on a case-by-case basis related to these factors. This job is also eligible to participate in Client s discretionary incentive compensation programs. Job Responsibilities Lead and manage the Source to Pay (S2P) process within the Propel project, ensuring efficient and effective sourcing strategies. Supports all prject phases as respresentative of the procurement process in design workshops, socialization and confirmation, business requirements for L3/L4 processes. Develop and implement sourcing strategies and processes to drive cost savings, improve supplier performance, and enhance overall procurement effectiveness. Collaborate with cross-functional teams to align procurement strategies with business objectives and project goals. Ensure compliance with company policies, industry regulations, and best practices in procurement and sourcing. Addresses and resolves unique and intricate issues by anticipating potential problems and developing innovative solutions. Designs and implements sophisticated data systems with extensive impact across multiple departments. Conducts thorough analysis of complex data models with significant cross-departmental impact. Collaborates with senior management to support strategic planning and informed decision-making. Provide training and guidance to junior sourcing analysts and other team members on S2P processes and best practices. Utilize data analytics and reporting tools to track and report on key performance indicators (KPIs) and sourcing metrics. Lead continuous improvement initiatives to streamline sourcing processes and enhance overall efficiency. Qualifications Minimum: Bachelor's degree in Business Administration, Supply Chain Management, or related field. Minimum of 8 years of experience in procurement, sourcing, or supply chain management or related. Desired: Master s degree in Business Administration, Supply Chain Management, or a related field. Professional certification such as CPSM (Certified Professional in Supply Management). Experience with the large-scale procurement initiatives. Knowledge of Utility industry-specific regulations and compliance requirements. Experience with data analytics and reporting tools (e.g., Tableau, Power BI, SQL). Demonstrated ability to lead cross-functional teams and drive organizational change. Proficiency in procurement software and tools (e.g., SQL, SAP Ariba) Strong communication and interpersonal skills. Ability to work collaboratively in a fast-paced, dynamic environment. Proven track record of successfully leading cross-functional projects and teams. Excellent communication, leadership, and stakeholder management skills. Ability to manage multiple priorities and deliver results in a fast-paced environment. Strong analytical and problem-solving skills.
Principal S2P Sourcing Analyst Oakland, CA(Hybrid) This position is hybrid, working from your remote office and your assigned location based on business needs. MUST BE ONSITE for 3 days in Oakland office (Tue Thu), remote Mon & Fri. Salary: $145k - $173k Department Overview Enterprise Business & Technology Modernization is a cross-functional organization leading Client s Propel program, a major business and technology modernization initiative designed to unlock customer value by simplifying collaborative work processes. Propel will migrate Client to the new version of SAP, S/4HANA, presenting a unique opportunity for Client to standardize business processes, clean the technology core, and enable innovation for breakthrough change across Engineering, Operations, Finance, Supply Chain, Human Resources, and Information Technology. Through a phased approach, Propel will implement process standardization, operating model changes, data improvements, SAP, and other technology applications with a focus on incrementally improving business capabilities and delivering value. Enterprise Business & Technology Modernization is comprised of multi-disciplinary coworkers with deep functional and industry expertise to design and implement end-to-end business processes and technology solutions following industry-leading practices. The team partners closely with IT and external partners to work collaboratively with many stakeholders to adopt standard processes and maximize the use of out-of-the-box proven technology solutions to meet business needs. Each role in this department offers immense career growth potential and a once-in-a-lifetime opportunity to accelerate the outcomes of our True North Strategy and deliver for our customers. Position Summary The S2P Sourcing Analyst, Principal will play a pivotal role in Client s Propel program, leading the implementation of key supply chain initiatives as part of our broader business and technology modernization efforts. This role requires a deep understanding of Source to Pay (STP) processes and solutions supporting strategic sourcing teams and objectives. The ideal candidate will possess the ability to drive cross-functional collaboration to achieve strategic objectives and will be responsible for ensuring alignment with Propel s goals of standardizing business processes, enhancing data quality, and enabling technological innovation for the future state STP design. Reporting Relationship The S2P Sourcing Analyst, Principal will report directly to the S2P Business Strategy, Senior Manager. Client is providing the salary range that the company in good faith believes it might pay for this position at the time of the job posting. This compensation range is specific to the locality of the job. The actual salary paid to an individual will be based on multiple factors, including, but not limited to, specific skills, education, licenses or certifications, experience, market value, geographic location, and internal equity. Although we estimate the successful candidate hired into this role will be placed between the entry point and the middle of the range, the decision will be made on a case-by-case basis related to these factors. This job is also eligible to participate in Client s discretionary incentive compensation programs. Job Responsibilities Lead and manage the Source to Pay (S2P) process within the Propel project, ensuring efficient and effective sourcing strategies. Supports all prject phases as respresentative of the procurement process in design workshops, socialization and confirmation, business requirements for L3/L4 processes. Develop and implement sourcing strategies and processes to drive cost savings, improve supplier performance, and enhance overall procurement effectiveness. Collaborate with cross-functional teams to align procurement strategies with business objectives and project goals. Ensure compliance with company policies, industry regulations, and best practices in procurement and sourcing. Addresses and resolves unique and intricate issues by anticipating potential problems and developing innovative solutions. Designs and implements sophisticated data systems with extensive impact across multiple departments. Conducts thorough analysis of complex data models with significant cross-departmental impact. Collaborates with senior management to support strategic planning and informed decision-making. Provide training and guidance to junior sourcing analysts and other team members on S2P processes and best practices. Utilize data analytics and reporting tools to track and report on key performance indicators (KPIs) and sourcing metrics. Lead continuous improvement initiatives to streamline sourcing processes and enhance overall efficiency. Qualifications Minimum: Bachelor's degree in Business Administration, Supply Chain Management, or related field. Minimum of 8 years of experience in procurement, sourcing, or supply chain management or related. Desired: Master s degree in Business Administration, Supply Chain Management, or a related field. Professional certification such as CPSM (Certified Professional in Supply Management). Experience with the large-scale procurement initiatives. Knowledge of Utility industry-specific regulations and compliance requirements. Experience with data analytics and reporting tools (e.g., Tableau, Power BI, SQL). Demonstrated ability to lead cross-functional teams and drive organizational change. Proficiency in procurement software and tools (e.g., SQL, SAP Ariba) Strong communication and interpersonal skills. Ability to work collaboratively in a fast-paced, dynamic environment. Proven track record of successfully leading cross-functional projects and teams. Excellent communication, leadership, and stakeholder management skills. Ability to manage multiple priorities and deliver results in a fast-paced environment. Strong analytical and problem-solving skills.