• Develop, deploy, and support self-service security tools and services that constitute the internal security platform. • Contribute knowledge and support for security projects, including support of tool integration and implementation of new security capabilities within the platform. • Support & improve security integrations into CI/CD pipelines (SAST, DAST, SCA, IAST, etc.) and developer workflows. • Maintain deployment of secure multi-cloud environments (AWS, Azure, GCP) using Infrastructure as Code (e.g., Terraform, Ansible). • Assist with security architecture reviews of new products and features, contribute to threat models, and support adoption of security-as-code best practices. • Work with the Site Reliability Engineering (SRE) team to maintain & respond to automated monitoring and security integrations for production systems. • Collaborate with internal security teams to support compliance, incident response, and operational security requirements. • Enable and support the adoption of security engineering best practices and standards across the organization. • Evangelize the use of security platform tooling and deliver high-impact DevSecOps training and outreach to internal development & engineering teams. • Participate members of the Security team and security advocates in advanced DevSecOps principles, platform engineering, and secure coding practices.

• Lead secure design reviews, threat modeling, and security-focused code reviews across the product and platform. • Ensure security is ingrained into the SDLC so that the secure path is the easy path for engineers with secure-by-default libraries, patterns, and guardrails. • Own authentication, authorization, API security, and data protection architecture for a multi-tenant SaaS platform. • Architect and maintain security tooling integrated into CI/CD pipelines: static analysis, dependency scanning, secrets detection. • Evaluate and mitigate risks specific to Fieldguide's AI Agents — prompt injection, data leakage through LLM contexts, unauthorized tool use, and unintended agent behaviors. • Partner with Agent and Platform teams to define security boundaries for agent execution: sandboxing, least-privilege tool access, and runtime policy enforcement. • Build and run Fieldguide’s vulnerability management program: scanning, triage, SLA-driven remediation tracking, and engineering coordination. • Ensure visibility into vulnerability posture across application code, dependencies, and infrastructure. • Manage external penetration testing engagements, bug bounty programs, and coordinate remediation of findings. • Partner with infrastructure engineering to review and improve cloud security across our AWS environment: IAM, network architecture, secrets management, and logging. • Establish runbooks, communication protocols, and post-incident review practices in coordination with a 24/7 MDR team. • Collaborate with engineers on incident response processes and playbooks. • Partner with Compliance to ensure technical controls satisfy framework requirements (SOC 2, ISO 27001, ISO 42001, FedRAMP).

• Ensure that clients' security infrastructures and systems remain operational. • Monitor, identify, investigate, and resolve technical incidents and problems. • Handle client requests or tickets with technical expertise, ensuring they are resolved within the agreed service level agreement (SLA). • Actively manage work queues, perform operational tasks, and update tickets with resolution actions. • Log incidents promptly and provide second-level support. • Execute changes responsibly, flagging risks and mitigation plans. • Collaborate closely with automation teams to optimize efforts and automate routine tasks. • Audit incident and request tickets for quality, recommending improvements.

• Apply fundamental cybersecurity principles and concepts for a large DoD IT program • Develop and implement a plan to achieve cybersecurity and RMF objectives across the lifecycle of the program, to include close coordination across program workstreams and Government stakeholders • Maintain cybersecurity implementation plans, milestones, schedules, and resourcing requirements across cross-functional teams • Apply NIST Risk Management Framework (RMF), NIST SP 800-53 controls, Assessment and Authorization processes for both on-prem and cloud-based systems, POA&M management, and System Security Plan development and maintenance • Work with senior members of the program and client organization to ensure that overall cybersecurity program and project direction, strategy and expectations are met • Understand of Governance Risk and Compliance (GRC) requirements, standards, and guidelines governing security within the Federal Government (e.g., NIST publications, FISMA, and OMB memoranda) and aligning IT with business objectives to effectively manage risk • Design and implement system security plans and policies, such as account management policies or auditing policies • Perform cybersecurity risk management, research and development, and leading practices • Gather and organize technical information about an organization's mission goals and needs, existing security products, and ongoing programs in cybersecurity • Develop strategies, roadmaps, assessments, and policies • Work with solution architects for security requirements on network architecture • Conduct and lead risk assessments and managing risks • Develop and implement cybersecurity policies and procedures