• Own and operate Mudflap’s AWS + Cloudflare infrastructure, ensuring reliability, security, and cost efficiency while supporting scalable, predictable deployments. • Manage and evolve our Infrastructure-as-Code and CI/CD systems (Terraform, ECS, CircleCI) to improve automation, environment consistency, and developer velocity. • Maintain and enhance observability through Prometheus, Grafana, and CloudWatch, delivering actionable dashboards, alerts, and SLO/SLA metrics. • Lead operational readiness and incident response, including capacity planning, system maintenance, structured RCA, and reliability improvements. • Drive security and compliance initiatives, including IAM hardening, secrets management, encryption, least-privilege access, and SOC 2 technical controls and documentation. • Build tools, automation, and documentation that reduce manual work, increase system consistency, and support a scalable DevOps function.

• Designing, testing, and implementing application service migrations in both a manual and automated manner. • Working closely with client operational resources in updating their on-prem practices to include cloud. • Hands-on experience implementing Microsoft Purview across enterprise-scale environments • Proven ability to design and operationalize Purview classifications, labeling, and DLP policies. • Experience with end-to-end Purview integration across M365, Azure, and hybrid workloads. • Strong background in migrating identity systems across M365 tenants or Active Directory forests. • Expertise with Azure Active Directory / Entra ID restructuring and domain cutover processes. • Experience in directory synchronization, authentication method transitions, and identity hardening. • Experience deploying and managing Azure Virtual Desktop environments. • Strong Terraform expertise in enterprise-scale cloud deployments. • Experience building, maintaining, and versioning Terraform modules for Azure environments. • Lead requirement gathering, analysis, and solution development for MS Azure cloud-based solutions. • Architect, design and implement plans for deploying complex application workloads on MS Azure. • Architect highly available, backup, and disaster recovery solutions on MS Azure. • Partner with project teams, functional architects, system specialists, and other technical resources and its customers. • Lead projects, remotely, in a hands-on role driving Azure cloud migration/adoption from inception to production. • Assume responsibility for technical presentations. • Mentor and provide technical oversight and guidance to implementation teams while working in a coordinated manner to deliver and deploy the designed architecture.

• Responsible for hardening the security posture of Informatica IDMC environment • Restoring centralized IAM through Microsoft Entra • Rationalizing secure agent infrastructure by consolidating onto O3 deployment patterns • Lead design and hands-on implementation across Phases 1.1, 1.2, and 1.3 • Work closely with BV network, security, IAM, and ICC teams to ensure private connectivity • Produce required technical documentation

• Own end-to-end platform security architecture for our AI solutions platform, including identity management, access controls, encryption, and network security. • Design and implement enterprise-grade RBAC (Role-Based Access Control) systems, including integration with client identity providers (Azure Active Directory, Okta, etc.). • Lead our multi-cloud security strategy across AWS (current) and Azure (expansion), ensuring consistent security posture as we scale. • Build and maintain secure infrastructure using Terraform CDK, Kubernetes (EKS/AKS), and modern IaC practices. • Implement secrets management, encryption at rest and in transit, and secure CI/CD pipelines. • Maintain and enhance our SOC 2 Type II compliance program, working with Vanta for continuous monitoring and audit readiness. • Drive ISO 27001 alignment and prepare for certification as enterprise clients require it. • Conduct security reviews of new features, integrations, and client deployments. Establish SLAs and reporting cadences. • Create and maintain security documentation, policies, and runbooks that satisfy enterprise procurement requirements. • Partner with legal and operations on vendor security assessments, client security questionnaires, and DPAs. • Establish security monitoring, alerting, and incident response procedures. Be a key member of the on-call rotation for security incidents. • Lead vulnerability management, including regular scanning, prioritization, and remediation tracking. • Provide weekly security status updates to engineering leadership and contribute to client-facing security communications. • Mentor engineers on secure development practices and conduct security-focused code reviews.