• Design and implement Azure Sentinel architecture, including data connectors, analytics rules, logic apps, workbooks, and automation playbooks • Configure and manage Azure Sentinel data sources, such as Azure Activity Logs, Azure Security Center, Microsoft Defender for Cloud, and third-party data sources • Develop and maintain custom analytics rules, hunting queries, and machine learning models to detect and respond to security threats effectively • Collaborate with the security operations team to investigate and respond to security incidents, leveraging Azure Sentinel's incident management capabilities • Implement and maintain Azure Sentinel automation playbooks for incident response, orchestration, and integration with other security tools • Optimize Azure Sentinel performance, scalability, and cost-effectiveness through appropriate configuration and resource management • Stay up to date with the latest Azure Sentinel features, security best practices, and industry trends, and contribute to the continuous improvement of the organization's security posture • Provide technical guidance, mentoring, and knowledge sharing to junior team members and other stakeholders

• Drive adherence to FIPS, STIG, CIS benchmarks, and Secure Development Lifecycle (SDL) practices • Manage encryption tools (e.g., OpenSSL and related libraries) and ensure cryptographic compliance • Implement and maintain segmentation, secrets management, certificate lifecycle processes, and least privilege access controls • Ensure audit readiness and compliance with industry standards • Oversee generation of OS images (.iso, qcow2, container images) and maintain secure OS installer workflows • Secure CI pipelines and entitlement backend systems, ensuring integrity and compliance throughout build and deployment processes • Monitor CVEs, manage vulnerability remediation, and coordinate timely patching and fixes • Implement and maintain secure boot processes • Develop and execute security testing strategies, including regression and final build validation • Ensure security and compliance across all sites (.org, .pro, .dev) and entitlement portals

• Lead, scope and conduct penetration testing engagements across various technologies • Develop and execute advanced red team exercises to assess real-world attack resilience • Report findings to technical and executive-level audiences • Validate threat models for developed systems • Conduct social engineering activities to assess security posture • Enhance enterprise security policies and documentation

• Actively test our SaaS product for security vulnerabilities across web apps, APIs, and cloud infrastructure. • Perform manual security testing and targeted penetration tests (beyond automated scanners). • Implement and help implement automated security test suites. • Identify abuse cases, business logic flaws, and real-world attack paths. • Work directly with engineers to reproduce issues and drive fixes. • Help introduce lightweight security practices into the development process (threat modeling, secure design reviews). • Validate fixes and ensure issues are fully resolved. • Stay current on new vulnerabilities, attack techniques, and SaaS-relevant threats.