Istari

• Hire, develop, and manage two TSEs. Own triage rotation, specialty coverage, and escalation paths. • Configure and optimize Pylon: case routing, SLA rules, intake workflows, and customer-facing comms. • Track SLAs, bug triage accuracy, CSAT, and recurring issue rate. Report monthly to stakeholders. • Drive runbook creation and KB expansion. Every issue resolved more than twice should produce a runbook. • Deliver quarterly support digests to the product team covering top issues, documentation gaps, and usability patterns. Participate in initial testing of releases. • Maintain the quality gate between customers and engineering: route well-documented, severity-assessed bugs, not raw complaints.

• Build and execute account and capture strategies across DoD, IC, and federal civilian agencies • Identify and engage key stakeholders across program offices, engineering leadership, and contracting teams • Drive outbound prospecting aligned to mission priorities, budget cycles, and funded programs • Partner with Government Relations and Demand Gen to shape early demand and position Istari in emerging opportunities • Qualify opportunities based on mission alignment, technical feasibility, funding availability, and acquisition pathway • Own the full federal sales cycle from initial engagement through contract award • Conduct discovery to understand mission objectives, engineering challenges, and program constraints • Partner with Solution Architects to design compliant architectures and execute proofs of value • Develop deal strategies aligned to federal acquisition pathways (SBIR, OTA, IDIQ, BPA) • Build business cases tied to mission effectiveness, engineering velocity, and cost efficiency • Navigate complex stakeholder environments across program, engineering, and contracting • Lead pricing strategy, proposal development, and negotiations • Partner with Solution Architects to win technical validation • Work with Government Relations to align opportunities with funding and policy priorities • Collaborate with Contracts, Legal, and Finance on proposals and compliance • Provide insights to Product and Engineering on federal requirements • Contribute to federal GTM strategy and capture plans • Build trusted relationships with program managers, engineering leaders, and contracting stakeholders • Drive expansion from pilot to program of record and enterprise adoption • Align account growth with mission priorities and budget cycles • Position Istari as foundational infrastructure for secure digital engineering

• Deploy and secure Istari’s platform in SIPR, JWICS, and air-gapped environments • Implement and validate DISA STIGs • Implement and validate NIST 800-53 / 800-171 controls • Perform hands-on security work, including System hardening (Windows & Linux) • Conduct Vulnerability scanning (ACAS/Nessus) • Perform STIG validation and remediation • Manage POA&M • Design, configure, or support secure network architectures, including segmentation, boundary defense, and routing in classified environments • Troubleshoot and resolve security configuration issues • Address connectivity and compliance blockers • Work directly with customer security teams (ISSO, ISSM, AO, SCA) • Collaborate with program and infrastructure teams • Provide feedback to engineering on real-world deployment constraints and security improvements

• Implement **NIST 800-53 / 800-171 security controls** directly into system design and platform architecture • Lead **system hardening and secure configuration** across platform components • Embed security into the **engineering workflow (DevSecOps)** • Perform: - **System Patching** - **STIG implementation and validation** - **Vulnerability scanning (ACAS/Nessus)** - **POA&M management and remediation tracking** • Partner with engineering teams to: - Secure APIs, services, and data pipelines - Enforce least privilege, identity, and access controls • Support deployment into: - **SIPR / JWICS / SAP environments** • Identify and remediate security gaps **before they reach customer environments**

• Lead **security discussions in pre-sales engagements** • Translate customer requirements into: • **Clear architectural explanations** • **Concrete engineering requirements** • Support: • RFP/RFI responses • Security questionnaires • Accreditation alignment (RMF readiness) • Identify and communicate: • **Security gaps early (before they become deal blockers)** • Build: • Secure reference architectures for classified deployments • Partner with engineering to: • Shape roadmap based on federal security needs

• Own frontend and developer tooling architecture across our platform. • Drive best practices in JavaScript/TypeScript (React, Node.js, testing, performance, build systems). • Guide integration of AI capabilities (LLMs, retrieval systems, copilots, workflow automation). • Ensure systems are secure, scalable, and operable in constrained or air-gapped environments. • Work closely with Product, Design, and customers to translate real user workflows into product capabilities. • Contribute to product discovery by participating in customer conversations, demos, and feedback sessions. • Help shape product direction by combining technical insight with customer needs and platform strategy. • Ensure engineering decisions support long-term product usability, adoption, and value. • Lead, mentor, and hire engineers focused on frontend, DX, and AI-enabled workflows. • Establish strong execution practices that balance speed, quality, and reliability. • Translate product goals into clear technical plans and milestones. • Collaborate closely with Product and Design to deliver elegant, technically complex tools. • Engage directly with customers to understand engineering workflows, constraints, and unmet needs. • Represent engineering in product discussions and help align roadmap decisions with technical realities.

• Lead security design and threat modeling for new and existing systems (cloud, application, data, network) • Implement and manage core controls: IAM/SSO, least privilege, network segmentation, encryption and key management, secrets management, endpoint and email security • Build and operate detection and response capabilities: SIEM/EDR/SOAR, log pipelines, alert tuning, use-case development, threat hunting • Own vulnerability remediation: scanning, triage, risk-based prioritization, remediation with product/IT teams, tracking to closure • Strengthen application and cloud security: SAST/DAST/SCA, secure SDLC, CI/CD guardrails, IaC scanning, container/Kubernetes runtime protections, CSPM/CIEM • Coordinate and support security testing: internal reviews, penetration tests, red/purple team, tabletop exercises; drive remediation and lessons learned • Lead/participate in incident response: triage, containment, eradication, recovery, forensics, root-cause analysis, post-incident reports and runbooks • Define and maintain security standards, baselines, hardening guides, and architecture diagrams • Monitor and report security metrics, KPIs/KRIs, and risk posture to stakeholders • Support audits and compliance efforts (e.g., SOC 2, ISO 27001, PCI DSS, HIPAA) and align controls to frameworks (NIST CSF, CIS Controls) • Conduct third‑party/vendor security reviews and support contract/security requirements • Drive security awareness initiatives and phishing simulations; mentor engineers on secure practices • Contribute to business continuity and disaster recovery planning and testing • Automate repetitive tasks and integrations to improve scale and reliability

• Serve as the connective tissue across engineering, product, and customer success teams: driving clarity, alignment, and accountability on cross-functional programs and initiatives • Lead incident response coordination for production and platform issues — managing communication across teams during active incidents, driving post-incident reviews, and translating learnings into durable process and runbook improvements • Define, document, and continuously mature on-call processes and support escalation workflows; ensure on-call responsibilities are clearly owned, well-documented, and consistently followed • Provide regular, clear status reporting to engineering leadership and business stakeholders — translating technical detail into actionable executive narratives • Identify and manage cross-team dependencies and sequencing risks; maintain a clear picture of program health and communicate it proactively to all relevant stakeholders • Partner with engineering leads to define operational KPIs and OKRs; use metrics to drive decision-making and surface risks early • Drive continuous improvement of SDLC practices, delivery tooling, and operational processes across the organization

• Develop modern frontend applications using TypeScript and React. • Design and implement backend services in Python and Go. • Build clean, well-tested APIs that power complex engineering workflows. • Engage directly with product managers, designers, and occasionally customers to understand real-world workflows. • Build internal and customer-facing developer tools, SDKs, and workflow automation systems. • Build systems that function reliably in secure, regulated, or air-gapped settings.

• Own the end-to-end architecture of the Core Platform, including backend services, SDKs, AI-enabled components, and related infrastructure. • Design and implement scalable APIs, event-driven systems, distributed services, and AI-integrated capabilities (including AI/ML and MCP integrations). • Architect systems that reliably incorporate AI models into production environments, with strong attention to observability, latency, cost management, and failure handling. • Lead API design and implementation with a focus on usability, performance, and long-term maintainability. • Architect and evolve microservices using domain-driven design principles. • Build platform abstractions and primitives that enable AI-driven workflows and agent-based capabilities. • Partner closely with Product, Infra, and Customer Success teams to deliver seamless, customer-centric integration capabilities. • Provide technical leadership, mentorship, and architectural guidance to engineers. • Establish and elevate engineering best practices across design, development, testing, and operations.