• Become a trusted ally to CEOs and management teams through efficient, intelligent and accurate work, and the effective communication thereof. • Working largely independently, apply knowledge, experience, insight, and competence to partner strategically with cybersecurity clients on forward-looking finance. • This role has variety at its core. From presenting at investor meetings to building financial models for clients, no day will be a “typical day” (hence the typical, atypical day). • You will help bridge the gap between legacy financial thinking and new ecosystems, functions and capital flows. • You will be supporting our startup clients who need high-level finance help but may not have a need for a full-time internal CFO at their current stage. • You will be managing the entire Finance function for your clients, so you’ll want to be comfortable managing a team. • You will have the opportunity to build out robust processes and systems for our clients. So understanding + embracing the agile and scrappy nature of startups is a must.

• Implement and/or manage native AWS security services to monitor and protect multi account environments • Develop and maintain Infrastructure as Code (IaC) security practices using Terraform • Configure and optimize Web Application Firewalls (WAF) and API security controls • Automate incident detection, response workflows, and compliance processes using native AWS services and integrated tooling • Drive vulnerability management activities • Shape the strategic roadmap for platform and cloud security, providing thought leadership and proactive recommendations to senior management. • Map and track cloud security maturity • Perform regular security assessments using AWS frameworks, CIS Benchmarks, etc. • Lead data protection initiatives such as DLP, data flow mapping, encryption policies, etc. • Partner with platform engineering and product teams to embed security into design and delivery activities. • Coordinate security efforts with security operations, enterprise security, Governance, Risk, and Compliance (GRC), and privacy/compliance teams. • Advise AI/ML teams on securing models, data pipelines, and emerging AI security risks. • Lead security awareness efforts tailored for engineering teams, including building a security champions program to drive adoption of secure practices across product and cloud development

• Plan and execute internal red team engagements against the ZTE platform and corporate infrastructure • Conduct regular penetration testing of applications, APIs, cloud infrastructure (AWS GovCloud), and network segments • Develop and maintain adversary emulation capabilities aligned with MITRE ATT&CK for ICS • Document findings with actionable remediation guidance and track to resolution • Coordinate with external penetration testing firms for annual assessments • Lead threat modeling sessions for new features and architectural changes using STRIDE, PASTA, or attack trees • Review and approve security architecture for product changes before implementation • Participate in Change Control Board (CCB) reviews with security sign-off authority • Define security requirements and acceptance criteria for development teams • Maintain threat models for ZTE components including Moving Target Defense, access control, session recording, and password vaulting • Design and implement deception technologies and honeypots within the product and infrastructure • Collaborate with SOC to develop detection rules based on offensive findings • Create purple team exercises bridging red team operations with blue team response • Develop adversary playbooks that inform SOC runbooks • Implement and maintain security controls in CI/CD pipelines (SAST, DAST, SCA, secrets scanning, container scanning) • Define and enforce security gates for code promotion • Review infrastructure-as-code for security misconfigurations • Integrate security testing into GitHub workflows • Establish software supply chain security controls (SBOM generation, dependency verification) • Stand up and operationalize vulnerability management program in coordination with SOC • Define vulnerability severity thresholds, SLAs, and escalation procedures • Triage and prioritize vulnerabilities based on exploitability and business context • Track remediation progress and report metrics to leadership • Partner with SOC team on playbook development for incident response • Provide offensive perspective on detection gaps and coverage • Support SOC maturation through training, tabletop exercises, and purple team activities • Contribute to SIEM rule development and tuning (Google SecOps)

• Engineer and deploy clever controls so security incidents stay rare and boring • Lead incident response efforts, security tool deployments including tabletop exercises • Apply digital forensics and incident response knowledge, skills, and experience toward in-depth security investigations on both hardware endpoint and multi-cloud environments • Engineer security best practices with product teams who appreciate memes as much as mitigations • Experience with Go, Python, or Shell, mostly so you can spend less time yelling at logs and more time celebrating wins • Embrace artificial intelligence and automation in order to protect the enterprise at machine speed • Stay one step ahead of emerging security threats by continuously consuming threat intelligence and related industry happenings • This position includes rotational on-call responsibilities; Not brutal- the workload is reasonable and shared across the team.