• Investigate, triage, and respond to security alerts and incidents in real time. • Perform in-depth analysis of logs, network traffic, and endpoint data to identify malicious activity. • Escalate critical incidents to the Team Lead and other stakeholders with clear recommendations. • Conduct proactive threat hunting to detect anomalies, suspicious behaviors, and advanced threats. • Contribute to playbooks and use cases for emerging attack techniques. • Help optimize and tune tools including SIEM, SOAR, and EDR platforms. • Develop detection rules, automation scripts, and dashboards to enhance team efficiency. • Collaborate on the evaluation of new technologies and integrations.

• Strong understanding of SAP Authorization concept • Interface with Identity and Access Management Principles (Least privilege access, RBAC, ABAC etc) • Gather requirements to drive the creation of the ERP Security Strategy documentation • Experience working with a large, complex ERP environment with multiple landscapes and clients • Perform the configuration, build and implementation of ERP Security design, including all relevant ERP applications at the Enterprise level of RTX • Act as a liaison between IT, Internal and External Audit teams and functional business stakeholders

• Continuous monitoring of TV-relevant online spaces to identify threats toward public officials, vulnerable communities, and critical infrastructure • Drafting weekly intelligence reports and flash bulletins with clear evidence-based sections and analytical assessments • Identification, collection and analysis of information from a range of data sources, including social media, violent extremist materials and other data sources covered by our in-house tools. • Maintaining databases and conducting regular reviews of social media and messaging platforms for inclusion into the project. • Designing quantitative and qualitative research methods to collect and analyze large datasets. • Researching and drafting deep dives into trends and themes identified in online extremist ecosystems. • Working to demanding, high-tempo reporting schedules for clients. • Developing and sharing subject matter expertise related to violent extremism and online harms across the organization. • Presenting findings verbally to clients, tailoring the content to their needs to support their strategic understanding. • Anticipating potential barriers to the delivery of the project and identifying workable solutions; taking responsibility for improvements to processes. • Building relationships with clients, and supporting our business development by exploring and identifying opportunities for new projects of work that will be of interest to them.

• We are seeking a highly capable and pragmatic Senior Product Security Analyst to safeguard our products, platforms, and customers as we scale. • This is a senior individual contributor role with clear accountability and decision-making authority, responsible for independently identifying, assessing, and driving resolution of security risks across the product lifecycle. • Reporting to the Director, Product Security, you will act as the primary application and product security owner for assigned products, partnering closely with engineering, product management, cloud, and platform teams. • You will embed application-focused security practices into design and delivery, exercise sound technical and risk judgment in release decisions, and play a key role in advancing the maturity, consistency, and resilience of our product security capabilities in a fast-growing environment. • Act as the primary application and product security partner for assigned products and services, owning end-to-end security reviews from design through release. • Lead application-focused security assessments, including architecture reviews, threat modeling, and secure design validation for APIs, microservices, and SaaS platforms. • Independently assess security risk and approve, delay, or block releases when required, escalating decisions where business urgency or customer commitments necessitate alignment. • Provide authoritative, risk-based guidance to engineering teams, helping them understand not just what needs to be fixed, but also include security and risk context. • Own vulnerability triage and prioritization for assigned products, ensuring findings are contextualized based on exploitability, exposure, and business impact. • Interpret results from application security testing activities (SAST, DAST, SCA, manual reviews), translating technical findings into actionable remediation guidance. • Monitor relevant external threats, attack techniques, and vulnerability trends, proactively assessing applicability to products and platforms. • Support investigation and remediation of product- and application-related security incidents. • Partner with engineering, platform, and cloud teams to embed secure-by-design practices into the SDLC, with a strong emphasis on application-layer controls. • Apply hands-on technical judgment to validate engineering assumptions, challenge risk decisions, and ensure security controls are implemented effectively. • Contribute to the evolution of application security standards, guardrails, and review practices that scale across multiple product teams. • Support alignment of application and product security practices with applicable frameworks such as PCI DSS and GDPR, focusing on practical security outcomes rather than checkbox compliance. • Translate internal controls into actionable engineering requirements and support evidence collection for audits and assessments as needed. • Coordinate and support penetration testing, bug bounty programs, and third-party security assessments, ensuring timely remediation and risk closure. • Build trusted, durable relationships with product, engineering, cloud, platform, and CGRC teams. • Clearly articulate security risk, trade-offs, and remediation options to both technical and non-technical stakeholders. • Contribute to the long-term maturity of the product and application security program through pattern recognition, continuous improvement, and shared learning.