• Develop and execute the enterprise application security strategy • Lead, mentor, and grow a high-performing team of application security engineers • Define KPIs and OKRs for AppSec programs • Embed into project delivery lifecycles for security requirements • Partner with teams to define secure architectures and patterns • Own and mature SAST/DAST/SCA tooling and secure pipeline integrations • Standardize secure coding practices and libraries • Oversee remediation of static/dynamic findings with teams • Build strong relationships with software engineering • Create educational content and workshops

• Collaborate with our engineering and product teams to produce engaging high quality training courses and content for Datadog’s customer and partner curriculums • Collaborate with stakeholders to evaluate customer training requirements, and turn those requirements into a roadmap with clearly scoped courses that have well defined learning paths • Communicate with customers to understand their technical needs in order to build courses that help them become proficient in using Datadog products • Create high quality hands-on labs that can be delivered both as self paced online programs or instructor-led training • Review demo code and courses created by other curriculum developers. Coach them to improve the technical and instructional quality of their work in line with their manager’s quarterly milestones. • Coach experts around the company to deliver live workshops at Datadog events. • Write application and infrastructure code to enhance existing learning project applications so that customers can learn to use Datadog security features • Help create and maintain the technical systems and environments used in hands-on labs (GitHub Actions, disk image build workflows, installation scripts, and others)

• Design, implement, and maintain secure cloud infrastructure and configurations across AWS and GCP, aligned with HIPAA, GDPR, and internal security standards. • Own and continuously improve Sword’s cloud security posture, leveraging CSPM, CWPP, and CNAPP capabilities to proactively identify and mitigate risks across cloud infrastructure, workloads, and identities. • Act as a subject matter expert in Identity and Access Management (IAM), including RBAC design, least-privilege models, service accounts, workload identities, role lifecycle management, and access reviews across cloud environments. • Monitor cloud environments for security threats, vulnerabilities, and misconfigurations, ensuring timely and effective detection and response. • Lead and support incident response activities, including log analysis, forensic support, root cause analysis (RCA), post-incident reviews, and long-term remediation planning. • Evaluate, design, and ensure the availability and quality of logging, monitoring, and traceability data sources required for effective security operations and investigations. • Provide guidance on compensatory and mitigative controls, applying risk-based decision-making when ideal controls are not immediately feasible. • Own the end-to-end vulnerability management lifecycle, applying risk-based judgment beyond CVE severity by considering exploitability, asset criticality, exposure, business context, and operational trade-offs, while clearly communicating prioritization decisions, managing remediation timelines, and driving vulnerabilities to closure in close collaboration with engineering teams. • Lead and operate key cloud security platforms and services, including Wiz, Google Security Command Center, and related detection and posture management tooling. • Partner with Infrastructure and Engineering teams to build security automation, infrastructure-as-code controls, and scalable security guardrails using scripting and automation (Python, n8n, Bash, etc.), including Terraform-based controls, Kubernetes security configurations, and CLI-driven workflows to enforce secure-by-default cloud and platform environments. • Define, track, and report security metrics and KPIs, such as cloud posture maturity, vulnerability remediation SLAs, detection coverage, IAM hygiene, and incident response effectiveness, enabling data-driven security decisions. • Develop, document, and evangelize cloud security standards, patterns, and best practices, driving consistent adoption across teams. • Operate with an engineering-first, efficiency-oriented mindset, continuously seeking ways to reduce toil, automate controls, and scale security without unnecessary friction.

• Act as a lead consultant on multiple client engagements with limited direction • Understand client business requirements and provide guidance throughout design, configuration and prototype, and assist clients with testing and move to Production efforts • Support clients during Annual Events such as: Annual Talent/Performance, Merit, Open Enrollment, ACA, etc. as needed • Partner with Engagement Managers to keep them informed of project status, changes, etc. • Collaborate with cross-functional counterparts to ensure clear lines of communication and project alignment • Accurately maintain forecast in a timely manner • Partner with the Sales team and serve as a Subject Matter Expert while assisting with sales presentations, demos, and LOEs • Stay up to date on industry knowledge, Workday enhancements, and be able to advise on Workday best practices • Build strong relationships with clients, gained through trust and exceptional customer service