• You will lead Cloud Red Team Blue Team (CRTBT, also known as Cloud Purple Team) engagements as a Blue Teamer, where you will support the customer’s SOC/IR team in threat hunting and incident response activities as the CrowdStrike Red Teamer uses techniques characteristic of real breach attempts to generate potential detections. • You will work closely with customers to understand existing controls and practices and make recommendations based on detection and response capabilities, as well as manage projects from kickoff call through to report delivery. • You will identify and implement long-term enhancements to the CRTBT offering that will better enable clients to stop and recover from breaches.

• Configure, maintain, optimize, and troubleshoot core security platforms to ensure they are functioning effectively and aligned with security policies. • Process escalated or complex requests from the Security Analyst team regarding security tools, including global/difficult exclusions, user access management, and changes requiring engineer-level permissions. • Perform regular reviews and audits of security tool configurations (e.g., quarterly settings reviews) to ensure compliance, identify misconfigurations, and resolve configuration-related alerts. • Analyze systems and applications to investigate identified vulnerabilities, understand their potential impact, and determine root causes. • Work with clients to address vulnerabilities in their environments, ensuring that clients are well protected. • Create, test, and maintain scripts (using languages like PowerShell, Bash, etc.) to automate tasks related to vulnerability management (e.g., mass deployment, reporting, remediation) and security alert handling (e.g., improving log collection). • Work closely with fellow Security Analysts and Security Engineers, sharing information, participating in team discussions, and contributing to a collaborative security environment. • Work tickets that have been escalated to you, and potentially coach Security Analyst I and Security Analyst II on next steps. • Communicate professionally and clearly with end-users or clients to gather details about potential security issues, explain security procedures, or provide guidance during incident resolution. • Interact effectively with other teams (e.g., Reactive Support, Client Strategy, NOC) to coordinate security responses and share necessary information. • Maintain accurate and detailed records of investigations, actions taken, communications, and resolutions within ConnectWise. • Offer timely and helpful support related to security inquiries, upholding a professional and customer-service-oriented approach in all interactions. • Assist with ticket management—primarily by monitoring and responding to alert-related tickets in the absence of engineering tasks.

• Lead firewall, network access control, and SASE engagements across diverse enterprise environments. • Span three core technology pillars: next-generation firewall design and deployment, Cisco ISE-based network access control and identity services, and SASE/Zero Trust architectures. • Combine deep hands-on expertise across these platforms with strong consulting skills, owning end-to-end delivery from discovery and design through implementation, testing, and knowledge transfer. • This is a client-facing role that requires the ability to lead technical workstreams, produce professional documentation, and communicate complex security strategies to both technical and executive audiences.

• Understand, modify, and improve GCC, LLVM, and NVIDIA proprietary compilers with respect to code hardening and security • Address vulnerabilities by crafting countermeasures as well as implementing common industry solutions • Review, coordinate, and implement security solutions • Analyze source and assembly code for vulnerabilities • Work with global compiler, hardware and application teams to oversee improvements and problem resolutions