• Own Relay's security posture • Lead threat modeling, vulnerability management, access controls, and dependency auditing • Map Relay's attack surface and document gaps • Harden CI/CD pipelines, secrets management, and least-privilege access • Build and maintain observability • Instrument monitoring, alerting, and dashboards that give the team real-time visibility into Relay's health • Define and enforce SLOs by setting availability and performance targets, and drive the team to meet them • Lead incident response • Own the incident response process end to end: triage when things break, run postmortems, and make sure the same issue doesn't happen twice • Drive compliance readiness • Prepare Relay for customer security reviews and formal certifications (SOC 2, etc.) • Embed security and reliability practices into team culture as we grow

• Design, implement, and maintain application security controls across Arcadia’s cloud-native SaaS platform • Partner with Product and Engineering teams to embed security into system design, development workflows, and CI/CD pipelines • Conduct threat modeling, architecture reviews, and secure design assessments for new and existing services • Own and improve vulnerability management processes, including identification, prioritization, and remediation tracking • Implement and maintain security tooling such as SAST, DAST, dependency scanning, container scanning, and secrets detection • Participate in security incident response activities including detection, investigation, containment, and remediation • Monitor and analyze logs, alerts, and security events to identify suspicious activity and emerging threats • Contribute to detection engineering by tuning alerts, improving signal quality, and reducing noise • Support threat intelligence analysis and apply insights to improve preventive and detective controls • Perform post-incident analysis and recommend technical and process improvements • Build security-as-code solutions to automate control enforcement, validation, and remediation • Use scripting and automation to reduce manual effort and improve consistency • Support secure AWS architecture using services such as EKS, ECS, Lambda, IAM, and VPC • Contribute to identity and access management best practices across AWS, Okta/Auth0, and SaaS platforms • Translate compliance requirements (e.g., SOC 2, ISO 27001, HITRUST, HIPAA) into practical technical controls • Partner with Security Assurance to support audits, evidence collection, and continuous control monitoring • Help identify and remediate security risks discovered through assessments, audits, or incidents

• Perform professional security testing for both startups and Fortune 500 companies • Engage in cutting-edge offensive security research, including tools development

• Ensure that Huntington’s identity & access management services are designed to be compliant with security and privacy standards and other industry standards and practices. • Alter security standards and settings to evolve with emerging threats in the mainframe space. • Work with other IBM Related Huntington Mainframe teams to complete application installs/decommissions • Work with Portfolio Manager deliver IAM projects and key milestones. • Consult with business units when implementing access for new systems. • Other duties as assigned