• Participate in all aspects of planning, deploying, documenting, monitoring, & maintaining the layered security to protect the confidentiality, integrity, and availability within the corporate and client facing infrastructures. • Focus on protecting system boundaries, keeping systems and infrastructure hardened against attacks and securing highly sensitive data, along with securing user and computer identities. • Perform engineering, tuning, and provide guidance of network security controls & hardening including IDS/IPS, Web Filtering, Cloud Technologies, Email/Spam, and Firewalls. • Perform engineering, tuning, and guidance to the Information Security Team for incident response & SIEM management. • Experienced in cloud security and compliance for Azure and AWS. • Manage and support Identity and Access Management. • Support the investigation and resolution of security incidents. • Perform Security User Awareness Training and Phishing campaigns. • Perform vulnerability management as well as support penetration testing and remediation. • Perform engineering, tuning, & provide guidance of mobile & endpoint security controls & hardening including AV, Endpoint Detection & Response, DLP, & encryption. • Translate security controls and requirements into system specification requirements. • Perform 3rd party vendor risk management assessments. • Plan, develop, and enhance security standards, requirements gathering, and engineer security solutions across the risk and technology portfolio. • Assist in designing computer security architecture and develop detailed cyber security designs. • Engineer, implement and monitor security measures for the protection of computer systems, storage, infrastructure, and cloud applications. • Define system security requirements, identify vulnerabilities, and coordinate remediation plans. • Support and coordinate risk assessments and security evaluations for vendors deploying solutions either on premise or in the cloud. • Participate in proof of concepts and other technical evaluations of technologies, designs and solutions and provide recommendations. • Plan and coordinate the deployment of security and vulnerability patching to all computer systems. • Prepare and document standard operating procedures and standards. • Develop technical solutions and select and implement new security tools to help mitigate security vulnerabilities and automate repeatable tasks. • Write comprehensive reports including assessment-based findings, outcomes, and propositions for further system security enhancement. • Plan/automate/deploy new infrastructure and security capabilities. • Participate in security awareness trainings, webinars, and podcasts designed as a Subject Matter Expert (SME). • Adept at Presenting in-person and virtual to customers, partners, and executives.

• Build cutting-edge offensive security systems from the ground up, working with exploitation frameworks, vulnerability intelligence, and security assessment tools. • Develop automation, building security infrastructure, and creating systems that push the boundaries of what's possible in offensive security. • Work across the full stack—from low-level exploit development to high-level system integration—building tools and platforms that security professionals will use in the field. • Expect to solve hard problems, work with cutting-edge technology, and see your code deployed where it matters.

• Develop and maintain IT Audit and Risk assessments for departments • Review impacts of changes pre/post-implementation to our system to maintain or improve our security posture • Evaluate and spread the word on controls and policies to drive compliance • Develop material and coordinate with vendors on information security training and awareness • Disseminate security communications across the organization as required • Collect evidence for purposes of audit and compliance • Assist with assessing the security posture of third-party vendors and suppliers • Raise and respond to security incidents reported • Report and track incidents raised in SIEM and other sources • Aid the proper classification and rating of risk items

• Design and Implementation: Develop and design secure network architecture and infrastructure (firewalls, VPNs, IDS/IPS, LAN, WAN, WLAN, SD-WAN, Cloud Networks, etc.) • Maintenance and Upgrades: Perform network maintenance and system upgrades including service packs, patches, hot fixes, and security configurations for firewalls (Palo Alto, Zscaler, etc.), Cloud networks, switches, routers, and wireless. • Troubleshooting and Support: Monitor network performance, troubleshoot network problems and outages, schedule updates, and collaborate with network architects on network optimization. Provide technical support and guidance to users, possibly including training non-technical staff. • Security: Establish networking environment by designing system configuration, directing system installation, and defining, documenting, and enforcing system standards. Secure network systems by establishing and enforcing policies, and by defining and monitoring access. • Performance Monitoring: Monitor network performance and integrity, resolve issues using data from different network monitoring tools. Analyze network data to predict potential issues or bottlenecks. • Provide Tier 2/3 support for security-related incidents and escalations. • Documentation: Maintain network documentation, diagrams, and network configurations