• Monitor and investigate security alerts using SIEM platforms (preferably Sumo Logic), performing deep-dive threat analysis across our entire infrastructure • Operate and fine-tune endpoint protection tools like CrowdStrike, ensuring our systems stay one step ahead of potential threats • Support Zero Trust Network Access and cloud security solutions, including Palo Alto Prisma/Global Protect • Lead incident response activities from detection through recovery, including post-incident analysis and lessons learned • Continuously improve alert quality by tuning detection rules and reducing false positives to focus on real threats • Build and refine SOC workflows, playbooks, and procedures to mature our security operations and response capabilities

• Drive revenue growth from clients in the Financial Services sector in Austria (primary focus) and Switzerland. • Achieve sales targets by selling advisory, implementation and application management services related to ServiceNow’s Integrated Risk Management (IRM) and Tanium’s Autonomous IT Platform. • Lead discovery workshops to understand client challenges in risk, compliance, and cybersecurity. • Present tailored demonstrations showing how ServiceNow IRM and Tanium deliver continuous risk visibility, automated compliance, and real-time remediation. • Build strong relationships with C-level executives, risk officers, and IT security leaders. • Collaborate with ServiceNow and Tanium technical consultants to design integrated solutions. • Stay current on regulatory trends impacting Financial Services. • Represent the company at industry events, conferences, and executive briefings.

• Operate, improve, and coordinate the CTEM program • Work directly in the Seemplicity platform for CTEM aggregation • Follow up to communicate and resolve found vulnerabilities • Collaborate with technical teams to communicate findings • Respond to potential security incidents

• Assist in the delivery of Cybersecurity Operations services and projects. • Investigate security alerts and anomalies identified through Google’s security tools. • Collaborate with cybersecurity teams to support architecture changes and implement new solutions. • Identify and suggest new detection use cases for real-time threat detection. • Contribute to the development and maintenance of automation playbooks. • Support and participate in security risk assessments and audits related to Cloud environment. • Manage vulnerabilities using Googlenative or third-party security tools. • Monitor and act on assigned security operations activities in the SOC.