• Design, implement, and maintain AWS-focused cloud security architecture aligned with HIPAA, NIST, and HITRUST. • Secure AWS environments using IAM, Organizations, CloudTrail, Config, GuardDuty, Security Hub, KMS, and network security controls. • Build, review, and maintain Infrastructure-as-Code using Terraform, ensuring security controls are versioned, auditable, and enforced by default. • Develop secure Terraform modules, guardrails, and policy-as-code to prevent misconfiguration and drift. • Partner with Development and CloudOps teams to implement DevSecOps practices, including CI/CD pipeline security and IaC scanning. • Establish and manage identity and access standards across AWS and Microsoft Entra. • Support SOC 2 Type II, HITRUST, HIPAA, and PCI audits with a focus on cloud control evidence. • Monitor cloud environments, triage security events, and respond to incidents in partnership with the MSP. • Maintain documentation related to cloud security architecture, IaC standards, and incident response. • Provide security mentorship and cloud security expertise across the organization.

Role Description World Wide Technology, Inc. (WWT) is seeking a highly driven and experienced Cyber Security Specialist to join our dynamic Security Sales team. In this role, you will collaborate closely with cross-functional teams to develop and execute comprehensive security sales strategies, driving initiatives from concept to business outcomes. The primary goal of this position is to achieve and exceed sales targets by promoting Extrahop’s security products. Responsibilities: - Drive profitable revenue growth on all strategic ExtraHop opportunities within the assigned territory, with the objective of increasing GTM speed, technical coverage, and deal velocity in tight partnership with the Cyber Security Specialist team. - Build, develop and own sales plans on targeted opportunities, using the MEDDIC framework. - Build and maintain strong alignment with ExtraHop field teams (SEs, AEs, leadership). - Deliver monthly targeted enablement sessions for the WWT Cyber Security Specialty team, tied to active opportunities and vertical use cases. - Strategically expand WWT’s market presence by aligning solutions with clients' key business objectives. - Build and nurture relationships with C-level executives and decision-makers at targeted clients. - Manage client and Extrahop relationships, creating value for accounts from ideation through to successful outcomes. - Stay updated with emerging trends across cybersecurity. Reporting & Cadence: (Monthly) - Pipeline and deal progression. - New logo activity and advancement. - Enablement delivered and planned. - Certification status. - ATC lab development and usage. - Key wins, blockers, and next steps. Qualifications - Proven track record of successfully selling cybersecurity hardware, software, and services to Fortune 500 clients. - Demonstrated experience and deep technical acumen in security services sales. - Strong consultative selling experience, with the ability to develop tailored solutions that address client-specific business challenges. - Excellent relationship-building skills and ability to engage effectively at all organizational levels. - Proven ability in account planning, partner relationship management, and sales strategy execution. - Outstanding communication, presentation, and organizational skills. - Bachelor’s degree or equivalent industry experience preferred. Requirements - A reasonable estimate of the current base pay range for this position is $150,000.00 to $175,000.00 annually. Actual salary will be based on a variety of factors, including shift, location, experience, skill set, performance, licensure and certification, and business needs. - Certain positions may also be eligible for variable incentive compensation, such as bonuses or commissions, that is not included in the base pay. Benefits - Health and Wellbeing: Health, Dental, and Vision Care, Onsite Health Centers, Employee Assistance Program, Wellness program. - Financial Benefits: Competitive pay, Profit Sharing, 401k Plan with Company Matching, Life and Disability Insurance, Tuition Reimbursement. - Paid Time Off: PTO and Sick Leave (starting at 20 days per year) & Holidays (10 per year), Parental Leave, Military Leave, Bereavement. - Additional Perks: Nursing Mothers Benefits, Voluntary Legal, Pet Insurance, Employee Discount Program.

Role Description Rubrik is seeking an Enterprise Security Engineer. In this role, you will be responsible for ensuring that Rubrik's Corporate Enterprise IT technologies are designed and implemented to the highest possible security standards. You will partner with a variety of stakeholders across the business to improve the Security posture of SaaS applications, integrations, identity and access, endpoints, wireless network, and IoT devices. What you'll do: - Design and implement security standards across Identity (Okta), Endpoint (Windows, MacOS, Linux), Secrets Management (Vault, Lastpass) and Business Applications (Salesforce, Glean, etc). - Partner with IT and other organizations to improve the security posture of enterprise applications, integrations, and access to sensitive and business data. - Actively participate in evaluation, development, and management of security and compliance policies within IT management systems such as JAMF, inTune, etc. - Analyze and harden existing applications, infrastructure, automation, and deployment processes: CircleCI, Github workflows, Tines, Zapier, etc. - Work with Corp IT teams, operations, governance, and other stakeholders to draft security standards and implement monitoring, alerting, and governance. - Review and approve application security review requests to ensure new applications used by Rubrik and employees are secure, monitored, and security standards are enforced. - Support the SOC in analyzing applicable threats, vulnerabilities, controls, and residual risks. - Partner with Vulnerability Management and Threat Operations to drive remediation of critical vulnerabilities and detection of IOC’s in the environment. - Actively monitor and manage EDR policies. - Partner with the organization to deploy technologies for AI usage and security. - Leverage AI tools and agents to improve team performance, enterprise security capabilities, and team efficiency - do more with less and faster. Qualifications - 6+ years experience in enterprise security, with hands-on experience in administration and design across Windows, Mac, Okta, and public cloud infrastructure. - Broad knowledge of enterprise attack vectors and exploits in both end-user and IT Apps. - Subject matter expertise in business applications, endpoint, and Identity management. - Deep understanding of endpoint systems, corporate networking including wi-fi and IT application systems (Salesforce, Mulesoft, Lastpass, etc). - Programming experience in PowerShell, Python, Go, or Java. - Experience with deploying and securing Enterprise applications and environments at scale. - Security and administrative expertise in at least one major public cloud provider (AWS, GCP, Azure). - Understanding of corporate security maturity model frameworks and how to apply them. - Strong written and verbal communication skills. - Knowledge of regulatory guidelines and standards such as SOC2, ISO 27001, FedRAMP, etc. Requirements - Know, acknowledge, and follow system-specific security policies and procedures. - Protect data and individual privacy per requirements and regulations. - Perform ongoing activities in compliance with service and contractual obligations. - Participate in role-based training, completing assignments on a timely basis. - Report security issues promptly, and aid investigation when needed. - Support controlled changes and vulnerability remediation activities. - Work collaboratively with Information Security in designing, implementing, assessing, or enhancing system-specific security and privacy controls. Position Risk Designation - Position Risk Designation: Non-Sensitive, Low Risk, Tier 1. - Incumbents without access to U.S. Government data may be required to complete Standard Form 85 and undergo a Tier 1 Investigation (T1) for non-sensitive positions of Low Risk. - Position Risk Designation: Non-Sensitive, Moderate Risk, Tier 2 (Public Trust). - Incumbents with access to U.S. Government data may be required to complete Standard Form 85P and undergo Tier 2 (T2) Investigation for non-sensitive positions designated Moderate Risk. - Position Risk Designation: Moderate Risk Law Enforcement (CJIS). - When hired for a position where access to Moderate Risk criminal justice information is required, the employee must complete a fingerprint-based national criminal history background check within 30 days after the employee’s start date. Benefits - The minimum and maximum base salaries for this role are posted below; additionally, the role is eligible for bonus potential, equity, and benefits. - US (SF Bay Area, DC Metro, NYC, Seattle) Pay Range: $150,200 — $225,400 USD. - US2 (all other US offices/remote) Pay Range: $135,200 — $202,800 USD.

• Lead end‑to‑end architecture, configuration, and deployment of Microsoft Purview solutions across Data Governance, Data Security, and Data Compliance pillars. • Facilitate requirements gathering sessions with business, legal, privacy, records, and security stakeholders to translate policy, regulatory, and operational needs into actionable Purview configurations. • Architect and implement Purview‑based controls including: Data Loss Prevention (endpoint, email, SharePoint/OneDrive, Teams, cloud apps) Sensitivity labels, labeling policies, and encryption workflows Insider Risk Management policies and analytics Information Barriers and data segregation controls Records Management, Retention/Deletion policies, File Plan mapping eDiscovery Standard/Premium workflows, holds, collections, and review sets Data Lifecycle Management and data residency enforcement. • Establish and maintain the Microsoft Purview Data Map and Data Catalog, ensuring appropriate metadata harvesting, scanning rules, classification schemas, and lineage tracking across cloud and on‑premises data sources. • Conduct data environment assessments, including ROT (redundant, obsolete, trivial) analysis, unclassified vs. controlled data assessments, and large‑scale mapping of file shares, repositories, and tenant‑wide content. • Design and maintain Data Classification frameworks using custom and out‑of‑the‑box classifiers, machine learning classifiers, and sensitive information types. • Implement governance guardrails, policy hierarchies, and compliance baselines to support federal mandates, OMB/NIST standards, agency‑specific directives, and Zero Trust requirements. • Support and lead tenant‑wide migrations, environment consolidation activities, and data cleanup initiatives, including after-hours migration windows when required. • Create technical documentation, architecture diagrams, SOPs, operational runbooks, and governance artifacts. • Monitor and respond to compliance alerts, policy violations, and security incidents, recommending remediation actions and driving issue resolution. • Partner with enterprise architecture, information security, data stewards, and M365 engineering to ensure alignment with broader data strategy and platform standards. • Provide guidance and enablement to teams across the organization, including training, knowledge transfer, and best practices for Purview adoption. • Continuously evaluate new Purview features, roadmap releases, and federal compliance requirements to optimize the agency’s data protection posture.