• Conduct browser security audits (special pages, DuckAI integrations, password manager, etc.) • Execute on SERP security mitigations (XSS prevention, tooling development to help engineers write safer code) • Manage application security scanning infrastructure setup (aka SAST/DAST integrations in GitHub) • Deliver on Internal red-team operations (simulated attack scenarios) • Support security triage

• Diseñar e implementar prácticas de Seguridad en la Nube y DevSecOps • Asegurar la seguridad de los datos en entornos de nube • Desarrollar flujos de trabajo automatizados de detección y respuesta

• Safeguard millions of users by embedding security into Firefox, Mozilla VPN, and other mission-critical products. • Ensure software products are secure by embedding security into the full Software Development Life Cycle (SDLC). • Anticipate, prioritize and mitigate risks through proactive threat modeling, security assessments, security testing, and automation. • Perform security code reviews • Lead penetration testing on web, mobile, and embedded applications, then guide remediation efforts. • Develop and maintain automated security tests within CI/CD pipelines to catch vulnerabilities early. • Partner with engineers to integrate security throughout the software development lifecycle—not as an afterthought, but as a core design principle. Provide security guidance, develop secure solutions, and facilitate secure releases. • Help define and enforce security policies and provide security guidance to development teams. • Help shape Mozilla's security culture through collaboration, guidance, and education.

• Secure client IT assets against cyber threats, including malware, ransomware, and unauthorized access attempts • Monitor and analyze security tools and logs to detect suspicious activity and potential incidents • Stay current on threat intelligence and emerging attack techniques • Investigate, triage, and respond to security incidents, including containment and remediation activities • Collaborate with client end users to assess security needs and recommend appropriate solutions • Configure, maintain, and support security technologies such as EDR, firewalls, IDS/IPS, DNS security, MFA, application security, and email security • Implement and maintain strong Microsoft 365 security practices, including conditional access, MFA, and business email compromise prevention and remediation • Participate in vulnerability management efforts using commercial vulnerability scanning tools • Assist with client, server, and laptop configurations, installations, and troubleshooting as needed • Engage in client discussions around security vulnerabilities, mitigation strategies, and best practices • Apply data encryption best practices to protect data at rest • Analyze security data and generate reports for internal and client stakeholders • Provide occasional after-hours and weekend support during active incident response efforts.