• Deliver engaging, interactive live training sessions • Build and lead hands-on labs and exercises • Provide clear explanations of complex security concepts • Support students’ learning with feedback and Q&A • Align lessons to certification goals and industry expectations • Participate in pre-class planning and post-session debrief • Collaborate with curriculum developers on updates

• Work closely with the Product Owners, ISSOs, engineering and infrastructure staff to provide guidance on implementation if security policies, standards, and procedures • Analyze new or updated security requirements, collaborate with stakeholders, and develop responses that are clear and accurate • Support the review and update of ATO artifacts such as System Security Plans, Information System Contingency Plans, Configuration and Change Management Plans, Incident Response Plans, Privacy Impact Analysis, and more. • Interpret security risk assessment, review security scan results, assess security vulnerabilities and support the development and remediation of vulnerability and compliance issues via Plan of Action and Milestones (POA&Ms) • Support the development of implementation and design documentation relating to security feature implementation • Work with engineering and infrastructure personnel to document remediation for vulnerabilities and non-compliance issues • Analyze and interpret agency security requirements and provide governance communication to non-security personnel • Collaborate with product teams, ISSOs and other stakeholders in support of continuous monitoring and ATO efforts • Conducts vulnerability assessments and monitors systems, networks, databases and Web-based assets for potential system breaches. • Recommends and takes the lead on implementing changes to enhance security systems, prevent unauthorized access, and help mitigate security vulnerabilities. • Responds to alerts from information security tools. • Reports, investigates, and resolves higher level security incidents. • Responds to security tool outages, degradations in service, tune security rules and alerts, and setup/maintain security tool dashboards and reporting. • Research security trends, new methods, and techniques used in unauthorized access of data to preemptively eliminate the possibility of system breach. • Ensures compliance with regulations and privacy laws. • Conducts research to identify new attack vectors. • Educates and communicates security requirements and procedures to all users and new employees. • Recommend process improvements to the information system for risk mitigation. • Applies iterative security automation to all program aspects increasing overall security posture iteratively and never accepts the status quo. • Provide audit log review in Splunk, present any findings to ISSO, and plan for any investigation or remediation activities. • Periodic user and privileged access reviews.

• Define the IAM roadmap and ensure alignment with security, compliance, and business needs. • Design and maintain enterprise IAM architectures for workforce, partners, and customers. • Lead initiatives related to authentication, authorization, identity governance, and privileged access. • Contribute to enterprise security architecture standards beyond IAM, with identity as a foundational control. • Set standards for identity lifecycle management, directory services, federation, and access controls. • Drive implementation of modern IAM capabilities such as SSO, MFA, password less authentication, SCIM, role-based access, and just-in-time access. • Oversee integration of cloud and on-prem applications using SAML, OIDC, and OAuth. • Evaluate tools, guide vendor selection, and manage technical relationships. • Develop reusable patterns, reference architectures, and security guidance for development teams. • Partner with engineering to embed IAM and security controls into CI/CD pipelines and cloud platforms. • Design and govern enterprise identity architecture across AWS, Okta, Entra ID, Active Directory, and hybrid environments. • Enforce least-privilege access using federation, roles, conditional access, and zero trust principles. • Architect secure access for cloud workloads, eliminating long-lived credentials and unmanaged identities. • Secure non-human identities, service accounts, APIs, and automation using scoped roles, ownership models, and rotation policies. • Design and operate centralized secrets and key management solutions using KMS, Vault, and PAM platforms. • Centralize identity logging, monitoring, and response for authentication and authorization events. • Support security operations by improving access-focused detection, alerting, and incident response workflows. • Establish access policies, role models, and attestation processes. • Ensure IAM and access controls meet regulatory, audit, and internal security expectations. • Provide oversight for provisioning, deprovisioning, and access escalation processes. • Guide monitoring and tuning of identity and security services to meet availability and performance targets. • Mentor IAM and security engineers and influence cross-functional teams. • Work closely with security, infrastructure, application owners, risk, and compliance partners. • Communicate technical and security concepts clearly to both technical and non-technical audiences. • Support incident response activities when identity or access systems are involved.

• Design, build, and continuously improve threat detections across 1Password’s infrastructure • Lead and support security incident response activities • Apply threat intelligence and knowledge of attacker TTPs • Collaborate with Security, Infrastructure, and IT teams • Use automation, scripting, and Detection-as-Code practices • Own end-to-end security projects aligned with Detection & Response initiatives • Participate in a shared on-call rotation and support high-severity incidents • Contribute to operational maturity through playbooks, mentoring, tabletop exercises, and audits