• Responsible for developing, implementing and maintaining the application security strategy for the Advocate Aurora Health Workday platform and for the biannual updates. • Work closely with business partners, analysts and cross functional teams to translate security requirements into the configuration enabling role-based workflow and data security. • Lead teams on complex projects and mentor junior team members. • Leads security requirements, design, configuration, workflow, testing, training, auditing, implementation, and administration of Workday basic and advanced security. • Performs hands-on security group, domain and user security configurations in Workday. • Problem solves and troubleshoots issues relating to Security Configuration. • Participates in Implementations and provides on-going support of Workday security activities. • Develops and executes test plans based on security requirements, tracking defects and fixes to resolution. • Performs security impact analysis for change requests and Workday release upgrades. • Assists with the configuration and testing of Workday security, audits and maintains existing security structure. • Documents the current and future state of Workday security configurations, maintenance and support of Workday tenants. • Recommends best security practices and provide sound solutions to support end to end business processes. • Acts as an active member for the Workday community - staying ahead of Workday security updates, fixes and resolutions. • Handles production support and change requests based on the priority.

• Oversee all plannable cybersecurity work, with clear traceability to strategic priorities, OKRs, and maturity goals • Drive strategic alignment across capabilities and shape narratives for senior leadership and portfolio reviews • Coordinate Agile, project, and operational workstreams to ensure synchronized execution • Manage cross-team dependencies and proactively identify risks and blockers • Lead unified reporting efforts including monthly portfolio reviews, OKR progress, delivery health, and risk posture • Maintain RAID logs and ensure consistent use of execution standards and templates for predictable stakeholder experiences • Collaborate with Product Managers, Product Owners, RTEs, Project Managers, and SMEs to ensure delivery cohesion • Provide executive-ready insights and recommendations to inform investment prioritization and risk mitigation • Mentor peers and contribute to the continuous improvement of delivery processes and standards • Promote consistent use of execution templates and tools to scale delivery excellence • Aid in quarterly roadmap refreshes and 12-week planning cycles supporting capability progression • Ensure adherence to governance standards, reporting cadence, and compliance expectations • Act as a strategic escalation gatekeeper, validating issues and coaching resolution paths • Foster cross-functional collaboration and maintain trust with stakeholders across cybersecurity and enterprise teams

• Help protect CrowdStrike and its customers from advanced threats • Monitor for emerging vulnerabilities and deploy large-scale security/monitoring systems for asset visibility • Utilize and provide feedback on the Falcon platform's latest features • Build tooling to solve complex security challenges • Analyze emerging vulnerabilities, assess exploitability and business risk, and recommend prioritized remediation strategies • Conduct risk-based analysis of vulnerability exposure and develop data-driven prioritization frameworks aligned with business risk tolerance • Implement and monitor tools for detection and monitoring of assets across multiple clouds and data centers • Develop and maintain vulnerability management KPIs and communicate security posture to technical and executive stakeholders

• Develop a comprehensive DLP concept tailored to the company’s specific risks and requirements • Collaborate with business units to identify sensitive data and define appropriate protection measures • Technical implementation: install, configure, and integrate the DLP solution into the existing IT infrastructure • Operate and monitor the solution in day-to-day operations, including incident analysis • Maintain and optimize rule sets and continuously improve detection mechanisms • Advance the DLP strategy to proactively address emerging threats • Support awareness initiatives and provide training for employees • Conduct regular audits and prepare reports on the effectiveness of the program