Syniverse is the world’s most connected company. Whether we’re developing the technology that enables intelligent cars to safely react to traffic changes or freeing travelers to explore by keeping their devices online wherever they go, we believe in leading the world forward. Which is why we work with some of the world’s most recognized brands. Eight of the top 10 banks. Four of the top 5 global technology companies. Over 900 communications providers. And how we’re able to provide our incredible talent with an innovative culture and great benefits. Who We're Looking For The Cyber Security Incident Commander Deals with advanced, complex and ever-changing threats which could affect the Syniverse brand and/or business operations. Demonstrates advanced self-managed individual delivering against enterprise level cybersecurity programs. Drive delivery for the implementation, monitoring, and continuous improvement of Security Operations Center (SOC) Incident Handling & Response and Data Protection practices- Some of What You'll Do Scope of the Role: - Direct Reports: This is an individual contributor role with no direct reports Key Responsibilities - 50% Enforce cybersecurity and data protection efforts - Operate individual and or cross-functional team activities, providing leadership/guidance and consultation to Incident response analyst - Resolve security issues through addressing identified and confirmed security events, successful forensic reviews, remediation tracking, and cross function collaboration. Conduct required efforts against Incident Response ticketing queue and prioritize Critical and High severity efforts. - Provide communication and recommendations for attack surface reduction and counter adversary efforts to improve threat landscape. - Provide continuous efforts to identify and bolster incident response capabilities for the SOC. - 40% Metric and communication delivery - Operationalize core cybersecurity and data protection functions - Establish and Manage SOC Key Performance Indicators for reporting to leadership and executive audience - Establish and Manage Audit reports and evidence for compliance requirements. - Drive scheduled debriefs with Cyber leaders and stakeholders related to SOC current events. - Participate as the SOC SME in cybersecurity tool acquisition conversations and demo’s, to provide thorough collaboration and identification of potential value. - 10% Dedicated Incident commander - Strategic Leadership: Assume overall command of the incident, establishing a safe, centralized command structure. Establish incident objectives, define priorities, and develop the overall strategy. - Resource Management: Authorize the utilization and mobilization of personnel, equipment, and resources. - Communication & Coordination: Evaluate the situation, make critical decisions under pressure, and manage the incident. Serve as the primary point of contact, ensuring effective communication between teams, stakeholders, and external agencies. - Documentation: Ensure all actions are documented, and lead post-incident reviews or after-action reports. Experience, Education, and Certifications: - MS in Computer Science, Information Systems, Business or related field or equivalent work experience. - 10+ years' experience as a security practitioner. - Technology experience with the following - Vulnerability management tools, SIEM, advanced cyber security tools, Firewall and router configuration, switches, secure network architecture, VPNs, PKI, Portals, Cisco, network monitoring technologies, Solaris, AIX , HP-UX, Red Hat Linux, Checkpoint, IPSEC, SSL, SSH, VPN, Ethernet Token Ring, WAP, SMTP, FTP, Frame Relay, WAN, ATM, FDDI, DSL, ISDN, HP Openview, Radius, F5, Nessus, security tools and facilities - Certification as a CISSP, CISA and/or CFE, or GIAC certification(s) (desired) Additional Requirements: - Advanced understanding of Cyber Security and Data Protection - Telecommunications and wireless industry knowledge - Advanced analytical and troubleshooting skills - Working knowledge of Project Management discipline and process - Organization, influence, leadership and facilitation skills - Advanced Knowledge of Security Policies/Practices - Moderate to Advanced Security Application knowledge - Advanced knowledge in SOC operations, Vulnerability Management, Incident Handling & Response and Data Protection practices - Advanced level of awareness of current attack vectors. Disclaimer Statement: The above statements are intended to describe the general nature and level of work being performed by people assigned to this job. It is not designed to be utilized as a comprehensive list of all duties, responsibilities, and qualifications required of employees assigned to this job. - Why You Should Join Us Join us as we write a new chapter, guided by world-class leadership. Come be a part of an exciting and growing organization where we offer a competitive total compensation, flexible/remote work and with a leadership team committed to fostering an inclusive, collaborative, and transparent organizational culture. At Syniverse connectedness is at the core of our business. We believe diversity, equity, and inclusion among our employees is crucial to our success as a global company as we seek to recruit, develop, and retain the most talented people who want to help us connect the world. Know someone at Syniverse? Be sure to have them submit you as a referral prior to applying for this position.

• Conduct day-to-day VMaaS activities, including vulnerability scanning, asset discovery, scan policy configuration, and reporting. • Independently conduct Attack Surface Control (ASC) engagements for a variety of clients, including the use of automated tools and manual micro-penetration testing. • Monitor automated penetration testing tooling to identify and validate security weaknesses. • Perform validation of vulnerability findings to eliminate false positives and determine actual risk. • Collaborate with the penetration testing team to conduct further deep-dive testing as needed based on vulnerability discoveries.

• Design and develop detection logic and security rules to identify threats, suspicious behaviors, and misconfigurations across SaaS applications • Research SaaS platforms (e.g., Google Workspace, Microsoft 365, Salesforce, Slack, etc.) to understand security models, APIs, and potential attack surfaces • Translate real-world attack techniques and SaaS security risks into scalable product capabilities, including detections, posture checks, and risk signals • Contribute to both threat detection and posture management content, ensuring broad coverage across identity, access, integrations, and data exposure risks • Analyze large-scale SaaS telemetry to identify patterns, anomalies, and opportunities for new detections or improvements • Continuously improve detection quality by reducing false positives and ensuring signals are actionable for customers • Collaborate with Engineering to productionize detection logic and ensure reliable execution at scale • Partner with Product to shape how security insights are surfaced, prioritized, and explained to users • Stay current on emerging SaaS attack techniques, identity threats, OAuth risks, and AI-related security considerations • Contribute to internal knowledge sharing and help elevate SaaS security expertise across the organization

• Configure business operating environments securely • Perform penetration testing and threat hunting to identify potential risks • Monitor for and respond to incidents in the Firm's hybrid environment • Keep infrastructure current, make recommendations, and continually improve security technologies • Analyze, design, and develop programs, shell scripts, tests, and infrastructure automation capabilities • Work with analysts and engineers across the organization to continually improve cyber resilience • Provide support to understand and develop system requirements and technical solutions for cybersecurity engineering based on system architectures (CIS Controls, MITRE ATT&CK Framework, and NIST Cyber Security Framework). • Support the maturation of the enterprise architecture to align with the Firm’s information security and risks to the organizational operations, organizational assets, and individuals • Develop alternatives of system designs and/or architecture, which consider trade-offs between security requirements, functional/operational requirements, and cost • Identify and define the requirements of the overall security of the network • Plan, engineer, and monitor overall security implementation of network systems • Support in configuring and implementing network security tools • Test and provide solutions for system weaknesses, threats, security issues • Research and identify latest suitable technologies and processes that will improve the overall security of the system • Regularly audit the existing network configuration and provide improvement recommendations • Other duties as assigned