7AI is on a mission to put swarming AI agents in the hands of defenders to offload non-human work, shift people up, and finally focus on achieving the security outcomes that teams have been searching for. We are seeking curious, detail-oriented, technical experts who thrive on solving complex, high-stakes puzzles and are deeply customer-obsessed to continue our mission of building the world’s first Agentic Security Platform. As a Tier 3 Security Analyst at 7AI, you will serve as the technical leader and point of escalation for junior analysts who are analyzing and triaging 7AI Agents’ investigations, identifying correct execution, and reducing risk for customers. You will retrospectively prove the maliciousness of threats that were stopped to help customers understand the gravity at which our service is working for them. You will help architect scalable processes to build high-functioning systems, while remaining resilient and vigilant in the face of adversarial threats. You will use your expertise of various data sources to perform investigations ad hoc, pulling data to support incident investigation as they are happening, and hunt for malicious activity in customer environments. What You’ll Do: - Analyze and validate investigations completed by the AI Agents for accuracy and completeness, evaluating risk - Lead and mentor junior analysts and serve as the technical expert and key escalation point for investigations - Correlate data from various data sources including cloud, endpoint, identity, network, etc. to understand that full picture of a malicious activity - Investigate malicious activity that the 7AI Agents responded to and understand the complexity of the attack that was stopped including the risk that was prevented for customers - Use our advanced AI Agents to hunt in customer environments to detect and remediate emerging threats, ultimately contributing to detections that will be folded back into the product - Assist customers with ongoing threat monitoring, triage, and prioritization of security alerts as needed but especially during incidents to resolve threats and secure the environment - Proactively identify potential threats and anomalies in customer environments by reviewing logs and malicious findings - Utilize your supreme communication skills to engage with customers who vary in their level of technical depth and focus (from SOC analysts to CISOs) - Architect processes while we build out this elite organization to scale the operation sustainably while maintaining consistent quality - Collaborate with the Sales, Engineering, and Product teams, providing feedback on the customer experience and assist in optimizing and tuning the AI platform - Stay current with emerging cybersecurity trends, vulnerabilities, and new attack techniques, especially the field of AI-driven attacks Required Qualifications: - 5+ years of experience in cyber security operations - Hands-on experience with investigating alerts and across multiple sources (endpoint, network, identity, email, cloud, etc.) - Strong understanding of security monitoring tools (XDR, SIEM, IDS/IPS, IDP, etc.) - Familiarity with log \ telemetry concepts - Experience analyzing and investigating security alerts from multiple sources, including intrusion detection systems, network monitoring tools, and endpoint protection platforms - Strong knowledge of common attack techniques and frameworks (MITRE ATT&CK) and incident triage methodologies - Strong analytical and problem-solving skills, with the ability to verify AI-driven analysis and make independent security decisions - Data querying experience with SIEM querying technologies (SPL, KQL, FQL, SQL, etc) and familiarity with log / telemetry concepts - Strong knowledge with Malware Analysis methods - Great interpersonal skills with a service oriented mindset - Proven track record of successfully collaborating in a team, including mentorship skills and ability to teach complex concepts Preferred qualifications: - Prior experience in a Managed Services environment - Incident Handling experience - Relevant certifications: Security+, GSEC, GCIH

• Monitor and analyze security events across endpoints, networks, cloud, and collaboration platforms (SIEM, EDR, firewalls, M365/Azure Gov, etc.) • Investigate alerts, perform triage, and lead incident response activities • Conduct root-cause analysis and implement corrective actions • Manage vulnerability scanning and remediation tracking • Perform log analysis, threat hunting, and anomaly detection • Support secure configuration baselines (CIS/STIG hardening) • Implement and maintain controls aligned to: • NIST SP 800-171 • CMMC Level 2/3 • DFARS 252.204-7012 • ITAR / EAR Export Control • NASA/DoD contract security clauses • Maintain System Security Plans (SSPs), POA&Ms, and control evidence • Support CMMC assessments and external audits (C3PAO/DCMA/Prime Contractors) • Assist with enclave design for CUI/ITAR environments • Ensure proper handling, marking, storage, and transmission of export-controlled data • Collaborate with IT and engineering teams on: • Secure cloud configurations (Azure Gov / GCC High preferred) • Identity & access management (MFA, least privilege, RBAC) • Endpoint security & device management • Network segmentation for regulated workloads • Conduct risk assessments and maintain risk registers • Develop and update policies, standards, and procedures • Support vendor and supply-chain cybersecurity reviews • Track metrics and KPIs for security posture reporting • Lead or support tabletop exercises and incident simulations • Provide security awareness and CUI/ITAR handling guidance • Advise business units on compliant collaboration practices • Promote a “security-by-design” mindset across the organization

Role Description Cyber Defense Technologies (CDT) is seeking a Junior Penetration Tester to support cybersecurity operations across multiple enterprise and government environments. The selected candidate will assist senior penetration testers and security engineers in identifying vulnerabilities across networks, systems, and applications through authorized penetration testing and vulnerability assessment activities. This role provides an opportunity to work alongside experienced cybersecurity professionals performing offensive security assessments, vulnerability validation, and adversary emulation activities. The Junior Penetration Tester will participate in engagements that help organizations strengthen their security posture by identifying exploitable weaknesses and providing actionable remediation recommendations. The ideal candidate is passionate about cybersecurity, eager to learn advanced penetration testing techniques, and comfortable working in both Linux and Windows environments while leveraging industry-standard tools and frameworks. Qualifications - 0–2 years of cybersecurity or IT security experience related to vulnerability assessment, security operations, or penetration testing - Foundational knowledge of penetration testing methodologies and attack techniques - Experience working in Linux environments (Kali Linux, Ubuntu, or similar distributions) - Familiarity with Windows environments and Active Directory fundamentals - Understanding of network protocols (TCP/IP, DNS, HTTP, SMB, LDAP) - Basic scripting ability using Python, Bash, or PowerShell - Familiarity with common security testing tools such as: - Nmap - Burp Suite Community or Professional - Metasploit Framework - Wireshark - Nessus / OpenVAS - SQLmap - Nikto / OWASP Zap - Hydra - Gobuster / Dirbuster - BloodHound - Basic understanding of web application vulnerabilities such as SQL Injection, XSS, authentication bypass, and misconfigurations - Strong written communication skills for technical documentation and report writing Requirements - Assist senior penetration testers with internal and external penetration testing engagements against enterprise systems and networks - Conduct web application penetration testing using industry-standard tools and methodologies - Perform vulnerability identification, validation, and risk analysis to determine exploitability and impact - Support network reconnaissance, enumeration, and exploitation activities during authorized testing engagements - Assist in conducting wireless security assessments and password security testing - Document testing procedures, findings, and remediation recommendations for inclusion in professional penetration testing reports - Utilize tools such as Nmap, Burp Suite, Metasploit, Nessus, and Wireshark during testing activities - Participate in security research and exploit development labs to improve testing methodologies - Assist with post-exploitation analysis and privilege escalation testing - Support incident response investigations when malicious activity or compromise is suspected - Maintain familiarity with common attack frameworks such as MITRE ATT&CK, OWASP Top 10, and PTES - Collaborate with security engineers and system administrators to validate remediation efforts and conduct retesting Preferred Qualifications - Candidates possessing or actively pursuing one or more of the following entry-level penetration testing or cybersecurity certifications are strongly encouraged to apply: - TCM Security - PNPT – Practical Network Penetration Tester - PJPT – Practical Junior Penetration Tester - PWPT – Practical Web Penetration Tester - INE / eLearnSecurity - eJPT – eLearnSecurity Junior Penetration Tester - eWPT – eLearnSecurity Web Application Penetration Tester - CompTIA - Security+ - PenTest+ - CySA+ Desired Skills - Experience participating in Capture-the-Flag (CTF) competitions or security labs (TryHackMe, HackTheBox, PortSwigger Labs, etc.) - Familiarity with Active Directory attack fundamentals - Experience using Kali Linux penetration testing toolsets - Understanding of basic privilege escalation techniques on Linux and Windows systems - Experience working in team-based cybersecurity environments Work Environment - Remote or hybrid work environment depending on program requirements - Collaboration with CDT security engineers, red team members, and incident response personnel - Opportunity to participate in advanced penetration testing engagements and cyber research initiatives Benefits - Competitive salary based on experience - Comprehensive benefits package, including health, dental, and retirement plans - Opportunities for professional development and career advancement Company Description CDT is committed to hiring and retaining a diverse workforce. We are an Equal Opportunity employer making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. Apply Now If you are a proactive Penetration Tester and thrive in dynamic environments, we encourage you to apply and join the CDT team!

• Provides advanced analysis of systems from a security perspective, and ensures systems are designed with appropriate security requirements "baked-in", and that these systems maintain proper security postures throughout their life cycle. • Maintains a thorough understanding of risk management frameworks, including the National Institute of Standards and Technology (NIST) Risk Management Framework (RMF), and NIST Cybersecurity Framework (CSF). • Moves fluidly between nuts-and-bolts, tactical security implementations, to high-level strategic policy, standards, and guidelines that facilitate effective security operations. • Develops and maintains an in-depth knowledge of governing Defense, Federal, and Industry security regulations, standards, and best practices, including those defined in NIST 800-53, DISA Security Technical Implementation Guides (STIGs), Center for Internet Security (CIS), and vender security best practices.