Title: GSOC Lead Specialist Location: 2 Contra Way, Merrimack NH Full-time Hybrid Job Description: Fidelity Global Security Operations Center (GSOC) – Lead Specialist The Role The GSOC Lead Specialist is responsible for providing support in security/fire/life safety alarm monitoring; Threat Assessment and intelligence gathering, video monitoring, incident management, travel safety and dispatching Fidelity security or public safety personnel to corporate locations. Responsibilities: · As a senior member of the operations center team, the Lead Specialist will be responsible for assisting management in coordinating Fidelity’s security response to incidents that occur at or near corporate locations/events by using appropriate communication methods. Responses may be to medical emergencies, criminal activity, fire, duress alarms. Lead Analysts will liaison with law enforcement, fire, or other public safety organizations related to emergencies on or near corporate locations. · Review, analyze and disseminate open-source and subscription-based intelligence to help mitigate and report global threats to corporate locations, associates, and stakeholders. · Document, assess, and report on instances of possible threats in the workplace. Coordinate with management regarding escalated cases. · Support the Travel Security program through monitoring of associate travel and analyze events of concern or elevated risk. Act as primary contact for travel security incident management. · Report out of the ordinary or abnormal conditions to the corporation’s security personnel, management, associates, contractors, and facilities organization. · Receive, evaluating, and disseminating information and reports from internal business groups and local agencies. · Develop concise, fact-based incident reports for distribution to various Fidelity stakeholders. · Coordinate service requests for afterhours access to Fidelity offices. · Play an integral role in helping to develop new security, incident management, and intelligence gathering processes. · Refine existing GSOC response and escalation procedures. · Responsible to lead the on-duty shift when delegated by management. · Support and mentor junior personnel to enhance proficiency with GSOC technology resources, processes, and procedures. The Expertise and Skills You Bring · 3 years of full-time experience in a security function, preferably in an operations or control center assignment. · Previous life safety or incident management training preferred. · Bachelor’s Degree preferred. · Computer proficiency with Microsoft Office suite of products. · Demonstrated experience in the use of Alarm Monitoring, Access Control, Video Management, and Crisis Communication technology. · Ability to work in a flexible scheduling environment (rotating shifts, nights, weekends, and holidays). · Experience collecting, analyzing, and disseminating open source or subscription-based intelligence. · Providing excellent customer service in a high call volume environment · Ability to work in a fast-paced organization; coordinate and manage multiple tasks with limited supervision. · Must be able to communicate effectively with all levels of the corporation. Note: Fidelity will not provide immigration sponsorship for this position. Category: Security Most roles at Fidelity are Hybrid, requiring associates to work onsite every other week (all business days, M-F) in a Fidelity office. This does not apply to Remote or fully Onsite roles. Some roles may have unique onsite requirements. Please consult with your recruiter for the specific expectations for this position. Please be advised that Fidelity’s business is governed by the provisions of the Securities Exchange Act of 1934, the Investment Advisers Act of 1940, the Investment Company Act of 1940, ERISA, numerous state laws governing securities, investment and retirement-related financial activities and the rules and regulations of numerous self-regulatory organizations, including FINRA, among others. Those laws and regulations may restrict Fidelity from hiring and/or associating with individuals with certain Criminal Histories.

• Own the detection and response lifecycle across our security stack • Author, test, tune, and maintain detection rules in CrowdStrike NGSIEM using CQL • Map detection coverage to MITRE ATT&CK and identify gaps • Build detection logic informed by real-world TTPs • Develop and maintain Falcon Fusion SOAR playbooks for automated enrichment, containment, and triage workflows • Manage IOC correlation using CrowdStrike's native CTI and external threat intelligence feeds • Investigate security events using CrowdStrike XDR and perform technical analysis of threat events • Support incident triage and coordinate with internal teams during high-severity incidents

• Configure and administer XDR(dashboard configurations, alert tuning, agent update coordination). • Monitor, triage, and help investigate security alerts and incidents, including phishing, endpoint, and XDR related activity • Assist with Harmony SASE policy exclusions, visibility improvements, troubleshooting, and general support of user traffic security controls • Help with cloud security configuration reviews, hardening efforts, and reduction of unnecessary exposure across the environment (finding exposed endpoints, possible attack paths, etc and researching a solution to fix the risk.) • Takes initiative to find ways to automate workflows. • Support security driven technical remediation tied to compliance and audit related initiatives, including SOC 2, ISO 27001, and ISO 42001 efforts(gathering evidence, researching and planning remediations, etc) • Work with IT, DevOps, engineering, and other internal teams to help move security recommendations into actual implemented changes • Document procedures, findings, technical changes, and remediation work clearly and accurately • Verification of security findings from customers and vulnerability reports.

Role Description As the VP of Security, you will report to our SVP of Engineering and lead the security function of the organization. You will define and execute a long-term security strategy that protects sensitive health data, enables AI innovation, and supports enterprise growth. In this role, you will operate as both executive leader and hands-on technical partner—remaining close to architecture, risk decisions, and engineering workflows while building a security organization designed to scale. - Build and lead a high-impact security organization, including future GRC, SecOps, and AI-focused security capabilities - Design and evolve a security architecture that protects sensitive health data while enabling rapid product development - Partner deeply with Engineering and Data Science teams to embed secure-by-design principles into architecture and the SDLC - Establish clear ownership, accountability, and measurable security outcomes across the organization - Lead the implementation of strong identity, access, and data protection strategies grounded in least-privilege and thoughtful segmentation - Oversee cloud security (AWS), infrastructure hardening, and corporate device management strategy, including logging, monitoring, and incident response capabilities - Partner closely with our Head of AI to strengthen governance and proactively address emerging risks across LLM-powered workflows and AI-enabled products - Lead SOC 2 Type 2 efforts and guide the organization toward HITRUST certification - Support enterprise sales through security diligence, security and AI questionnaires, and customer conversations - Serve as a trusted advisor to executive leadership and, as needed, the Board of Directors on security strategy and risk Qualifications - Built and scaled security programs in healthcare or other regulated, sensitive-data environments, establishing clear accountability and measurable risk reduction - Developed and implemented modern cloud security architectures, particularly within AWS - Strengthened identity and access management practices, data protection strategies, and secure SDLC processes - Led or owned SOC 2 programs (HITRUST exposure is a plus, but not required) - Influenced engineering leadership and product strategy to reduce meaningful risk without slowing product velocity - Navigated ambiguity in high-growth startup environments and built systems designed to scale - Established credibility as both a strategic leader and hands-on technical contributor Requirements - A patient-first approach - Technical depth in cloud security, IAM, secure architecture, and modern AI risk landscapes - Cross-functional leadership and collaboration across departments - Balanced risk judgement to create clarity around tradeoffs - Builder mindset with experience in building teams and systems - Comfort with ambiguity in fast-paced environments - Executive presence with clear and confident communication Benefits - Base salary for this role is $272,000-$320,000 - This position is also bonus-eligible Company Description At Thyme Care, our core values guide us in everything we do: Act with our members in mind, Move with purpose, and Seek diverse perspectives. They anchor our business decisions, including how we grow, the products we make, and the paths we choose—or don’t choose. We recognize a history of inequality in healthcare. We’re here to challenge the status quo and create a culture of inclusion through the care we give and the company we build. We embrace and celebrate a diversity of perspectives in reflection of our members and the members we serve. We are an equal-opportunity employer.