• Develop, implement, and maintain cybersecurity policies, procedures, and standards. • Design, implement, and integrate security controls and technologies, collaborating with IT teams. • Provide guidance and support on security-related matters, and stay informed on emerging threats and best practices. • Assist in the configuration and collection of security log events using SIEM, and support related integrations activities. • Maintain operational documentation, adhere to change control processes, and support automation scenarios. • Ensure compliance with legal and regulatory IT security requirements.

• Build next-generation security products – Shape and deliver innovative solutions by integrating Nira’s governance capabilities into Dropbox and driving a standalone security offering for the broader market. • Lead an AI-driven roadmap – Define and launch intelligent features that use AI and automation to streamline access control, enforce real-time DLP, and proactively detect security risks. • Expand Dropbox’s impact in the market – Identify opportunities in the SMB and mid-market security space, craft a clear product vision, and accelerate adoption with a differentiated value proposition. • Deliver breakthrough product experiences – Partner with engineering and design to launch automated access reviews, AI-powered security insights, and compliance workflows that raise the bar on security. • Turn insights into action – Work directly with customers to uncover their toughest data governance and AI security challenges, and translate those needs into high-impact product features. • Drive seamless execution – Collaborate across engineering, security, compliance, and go-to-market teams to launch products that meet global standards (SOC 2, ISO 27001, GDPR, etc.) and delight customers.

• Lead the security review of iOS application architecture and design, ensuring security is built-in from the ground up. • Conduct security-focused code reviews for the iOS application, and implement/manage static and dynamic application security testing (SAST/DAST) tools. • Oversee the identification, assessment, and remediation of vulnerabilities within the iOS application and its supporting infrastructure. • Perform threat modeling for new features and existing components of the iOS application and its backend services. • Drive the adoption and enforcement of secure development practices within the mobile engineering teams. • Ensure the security of APIs consumed and exposed by the iOS application. • Manage and refine cloud IAM roles and permissions for the mobile app's backend infrastructure to enforce the principle of least privilege and improve our cloud security posture. • Support incident response activities related to the iOS application, including investigation and remediation. • Evaluate, implement, and manage security tools relevant to mobile application security. • Provide guidance and training to mobile developers on secure coding practices. • Report directly to the Head of Information Security on the security posture of the iOS application and related infrastructure.

• Lead Cloudflare through the DoD IL4 Authorization process • Manage all aspects of the DoD IL4 assessment and authorization process and Authorization maintenance • Update and maintain the DoD IL4 requirements in Cloudflare’s Common Control Framework • Work cross-functionally with Engineering, Legal, Product, and operational teams to drive security control implementation for the organization • Improve the maturity of Cloudflare’s Security Compliance program • Help guide our overall security policy and governance architecture • Have input into the overall security compliance strategy