Horizon3.ai

• Manage a portfolio of customers as their primary post-sales technical advisor, developing a deep understanding of the NodeZero platform to guide successful adoption • Cultivate champions with security leaders—from analysts to CISOs—and guide them through the lifecycle of adoption, expansion, and advocacy • Deliver technical onboarding and enablement to drive adoption of NodeZero, including advanced features like Tripwires, Insights, and Rapid Response, ensuring customers realize maximum value • Partner closely with IT and Security teams (SOC, red/blue teams, AppSec, etc.) to help interpret pentest results, prioritize remediation, and guide long-term offensive security strategy • Proactively identify customer needs and potential challenges, suggesting solutions that improve their experience and enhance their cybersecurity posture • Collaborate closely with Sales and Renewals teams to drive retention and growth by identifying expansion opportunities, aligning on account strategy, and ensuring a seamless renewal process • Act as a customer advocate, relaying customer feedback and technical issues to our internal teams to help drive the evolution of our product and services • Conduct regular check-ins and quarterly business reviews to align on strategy, secure executive buy-in, and showcase business outcomes • Contribute to documentation, training materials, and repeatable playbooks to scale technical success across the region • Maintain detailed records of customer health and touchpoints using internal CS platforms

• Lead the strategy, design, and development of the core pentest execution, orchestration, and data infrastructure • Manage four engineering teams responsible for building and scaling the platform systems • Partner closely with Product, Proactive Offense, and GTM teams to define platform requirements • Mentor technical leads in building resilient, distributed systems • Collaborate across engineering, product, and GTM to align platform roadmap with business priorities

• Lead, coach, and grow the Compliance team, including ownership of compliance operations, privacy, third-party risk management, and customer assurance • Set priorities and operating rhythms for the team, balancing strategic program maturity, customer-facing support, audit readiness, and cross-functional execution • Serve as the internal lead for compliance efforts, including control mapping, evidence collection, audit coordination, and continuous improvement of the control environment • Maintain and improve compliance against frameworks such as, but limited to: SOC 2, ISO 27001, NIST AI RMF, ISO 42001, DORA, UK Cyber Essentials, FedRAMP, and/or NIST 800-53 • Collaborate with cross-functional teams including Engineering, IT, Legal, HR, Product, Sales, and Customer Success to implement and validate control requirements • Oversee the organization’s data privacy program, ensuring compliance with GDPR, CCPA/CPRA, EU AI Act, and emerging U.S. state privacy laws • Maintain records of processing activities (RoPAs), manage data subject access requests (DSARs), and conduct privacy impact assessments (PIAs) • Partner closely with Legal and Product to advise on privacy-by-design, data minimization, and transparency practices • Own and manage the third-party risk management lifecycle, including onboarding reviews, periodic reassessments, contract/privacy reviews, and ongoing risk tracking • Conduct security and privacy due diligence on new vendors and partners supporting the SaaS product • Maintain a current inventory of vendors, subprocessors, and associated risk assessments • Serve as the primary point of contact for customer security questionnaires, RFPs, customer audits, and due diligence requests • Leverage existing documentation such as the SOC 2 report, pentest reports, whitepapers, and DPAs, while partnering with SMEs to provide accurate and timely responses • Support Sales, Customer Success, and Legal in accelerating deals by strengthening trust in our security and compliance posture • Create metrics, reporting, and risk narratives that communicate compliance posture, trends, and priorities to business owners and leadership • Identify opportunities to improve processes, tooling, and documentation that help the company scale its compliance and privacy programs efficiently • Demonstrate a commitment to integrity, process improvement, and customer satisfaction • Act as the primary owner for enterprise security risk, establishing and maturing the Risk Register to ensure all identified threats are centralized and tracked. • Manage the comprehensive risk lifecycle, overseeing everything from initial detection and impact analysis to remediation tracking and formal sign-off. • Implement a standardized risk scoring methodology that utilizes quantitative and qualitative metrics to drive objective prioritization across the entire organization. • Recruiting and onboarding talented individuals to support our organizational goals • Mentoring, coaching, equipping, and developing your team • Recognizing and retaining high performers • Leading horizontally with peer management and senior leaders.

• Lead, coach, and grow the Security Engineering team, including both Cloud Security Engineers and Application Security Engineers • Set priorities and operating rhythms for the team, balancing strategic security investments, day-to-day engineering support, and incident response • Design and implement security controls across our Cloud environments, such as but not limited to: AWS, Azure, GCP, Digital Ocean, OCI, etc., including IAM, SCPs, VPC security, S3 bucket policies, security groups, key management, and logging • Continuously monitor and improve cloud posture by managing and tuning services such as GuardDuty, Security Hub, AWS WAF, CloudTrail, and Inspector • Partner with engineering teams to embed security into the SDLC, including secure design reviews, threat modeling, architecture review, and CI/CD security automation • Lead the application security program, including secure coding practices, vulnerability management, developer enablement, and product security reviews • Continuously monitor and improve application security tooling by managing and tuning services such as SonarQube, Dependency Track, ZAproxy, Trufflehog, Trivy • Build and maintain GitLab CI/CD pipelines and tooling for automated security testing and scanning of cloud resources and applications • Conduct threat modeling, architecture reviews, and risk assessments for cloud deployments, product features, and new systems • Implement security monitoring, secure systems hardening, and detective controls for malicious activity across AWS and application environments • Respond quickly to new and emerging threats and vulnerabilities; support investigations, post-mortem analysis, root cause identification, and preventive actions • Define and enforce identity and access management best practices, including least privilege, federated identity, role-based access control, and automated remediation • Develop and maintain security policies, standards, and procedures aligned to frameworks such as SOC 2, GDPR, ISO 27001, FedRAMP, NIST, CIS, and MITRE ATT&CK • Create metrics, reporting, and risk narratives that communicate security posture, trends, and priorities to business owners and leadership • Evaluate and recommend new tools, techniques, and controls to improve the security posture of our cloud and application environments

• Own the AMER field marketing strategy across Enterprise, Mid-Market, Commercial, Customer, and Federal segments, building a program portfolio that is pipeline-architecture-driven, not event-calendar-driven. • Lead, develop, and grow the AMER field marketing team, including direct management of field and channel field marketing managers, with a focus on coaching, accountability, and results. • Partner with AMER sales leadership to align field programs to territory priorities, account coverage, and pipeline gaps - ensuring field marketing is viewed as a true revenue partner, not a support function. • Define and enforce CPO thresholds as a gate for all field investments, with 30-day post-event reviews standard across all programs. • Build and execute programs with Horizon3.ai's alliance partners, VARs, resellers, and distribution partners across North America - designing joint field programs that generate net-new pipeline through indirect routes and extend market coverage beyond the direct sales motion. • Partner closely with the Partner Marketing Manager and channel sales leadership to develop partner-ready field playbooks and co-branded event programs. • Own the field marketing relationship with key alliance and distribution partners - including joint event planning, MDF utilization, co-sell event execution, and post-program pipeline attribution. • Translate company-level campaign strategy into regionally relevant field programs - including CISO dinners, roundtables, third-party conferences, roadshows, and hosted & bespoke Enterprise events - with proof-first messaging and clear conversion paths. • Ensure all field programs have pre-event air cover, coordinated SDR outreach after, and defined follow-up motions that don't let pipeline decay post-event. • Serve as a key voice in pipeline reviews, contributing field program performance data and recommendations for where to concentrate or pull back investment. • Own the AMER field marketing budget, managing spend with a marginal ROI lens and a bias toward programs with demonstrated pipeline impact. • Build and maintain a program performance framework with consistent metrics across all field activity: pipeline generated, CPO, meetings booked, stage progression, and 30-day post-event contribution. • Report field marketing performance to Demand Gen leadership and AMER sales leadership on a regular cadence, with clear recommendations on what to scale and what to cut.

• Own the Americas channel field marketing strategy for your region • Build co-marketing plans that reflect where the highest pipeline opportunity lives • Help develop and maintain a channel marketing calendar aligned to partner priorities • Design and execute joint field programs with VARs, resellers, alliance partners, and distributors • Manage MDF programs end to end including planning, partner alignment, execution oversight, budget tracking, and pipeline attribution reporting

• Support Horizon3.ai’s global field and events marketing team with operational and logistical execution. • Own the shipping, inventory, procurement, vendor coordination, and administrative work for field programs and corporate events. • Coordinate event logistics and materials management for global field programs. • Process procurement requests and manage event vendor relationships. • Assist field marketing and events managers with administrative tasks. • Collaborate with internal teams on logistics coordination for flagship programs.

• Owning and scaling the onboarding experience, serving as the primary facilitator, to reduce time-to-productivity and ensure new hires ramp quickly in a complex, technical environment • Leading and evolving the H3RO manager development program, strengthening manager capability in coaching, performance management, and team leadership • Building and launching high-potential and emerging leader programs to accelerate development, strengthen bench depth, and support internal mobility • Shaping and driving the company’s AI enablement strategy • Developing scalable program infrastructure using AI (curriculum, playbooks, facilitation models, systems) that supports rapid growth while maintaining consistency and rigor • Partnering with leaders to identify capability gaps and performance barriers • Facilitating learning experiences that resonate across levels, from new hires to senior leaders • Defining success metrics and continuously refining programs, using data and feedback to improve effectiveness and align with company priorities

• Technical expertise - Must demonstrate deep knowledge of our cybersecurity products and services, assisting the sales team in presenting and position them to prospects and clients. • Customer engagement - Must meet with potential customers to understand their cybersecurity needs, challenges, and infrastructure, ensuring that our solutions are the perfect fit for them. • Product demonstrations - Provide live demos and proof of concepts for our cybersecurity solutions, tailoring each demo to the specific needs and concerns of the potential customer. • Solution development - Will work closely with the sales and product teams to design and refine our solutions based on customer needs. • Technical training - train the sales team on the technical aspects of our products to enhance their ability to sell more effectively. • Feedback loop - relay feedback from the field to our product and engineering teams, contributing to the ongoing improvement of our product. • RFP/RFI assistance - Assist in answering technical sections of RFPs and RFIs. • Post-sales support - On rare occasions, assist in post-sales processes to ensure the smooth implementation and satisfaction of our customers.

• Must demonstrate deep knowledge of our cybersecurity products and services • Meet with potential customers to understand their cybersecurity needs • Provide live demos and proof of concepts for our cybersecurity solutions • Work closely with the sales and product teams to design and refine solutions • Train the sales team on technical aspects of our products • Relay feedback from the field to product and engineering teams • Assist in answering technical sections of RFPs and RFIs • Assist in post-sales processes if needed