• Own day-to-day security operations for AWS-based cloud and serverless workloads including threat detection, alert triage, incident response, forensics, and post-incident learning. • Build and tune detections and automations (SIEM rules, SOAR/runbooks, detection-as-code) to reduce MTTA/MTTR and eliminate noisy alerts. • Secure our delivery pipelines & runtime Harden CI/CD and software supply chain, and drive “secure by default” patterns in our SDLC. • Lead cloud/serverless hardening (IaC reviews, policy-as-code, least privilege IAM design, network segmentation). • Partner with DevOps and Engineering teams to evolve identity & access, endpoint/EDR posture. • Coordinate vulnerability management end-to-end: scanning, prioritization, remediation, and reporting. • Contribute to security governance (policies, standards, tabletop exercises, BCP/DR inputs) and support compliance efforts (e.g., SOC 2/PCI DSS). • Build security tooling and integrations for engineers, acknowledging that ease of use and low friction will encourage adoption and adherence. • Define metrics/KPIs and regularly communicate risk & progress to engineering and leadership. • Mentor engineers on secure design and champion a positive, enablement-first security culture. • Participate in architecture and threat modeling discussions to identify security risks early in the design process.

• Collaborate with cross-functional teams to design, implement, and manage our security and identity platforms. • Develop, integrate, and maintain account- and system-provisioning solutions as we progress toward a Zero Trust architecture. • Partner with application owners and business stakeholders to provide security subject-matter expertise and guidance on security standards and policies to protect customers and maintain a secure environment. • Administer identity and security operations platforms (e.g., Okta, Active Directory, Active Directory Certificate Services (ADCS), ADFS, Azure, Intune, AWS/IAM, certificate and secrets management). • Manage Active Directory deployments and rebuild the ADCS environment. • Lead and contribute to Okta projects and manage permissions effectively. • Provide Tier 3 support for all Identity and Security Operations issues. • Develop policies and procedures for identity and security systems. • Serve as a subject-matter expert (SME) for SSO, SAML, and SCIM for application owners and business stakeholders. • Work closely with other security and infrastructure teams to proactively identify, protect, and defend the enterprise from cybersecurity threats and to resolve complex issues. • Mentor and train other team members. • Participate in on-call rotations as required.

• Collaborate with diverse teams to design, implement, and manage our security and identity platforms. • Build, integrate, and manage account- and system-provisioning solutions as we continue our journey towards ‘Zero Trust’. • Work directly with application owners and business users to provide security subject matter expertise and guidance for our security standards and policies. • Administer Identity and Security operations platforms (e.g., Okta, Active Directory). • Manage Active Directory implementations and rebuild the ADCS environment. • Work on various Okta projects and manage permissions effectively. • Provide Tier 3 support for all Identity/Security Operations related issues. • Develop policies and procedures for Identity and Security systems. • Mentor and educate other team members. • Be available for on-call duties as required.

• Lead and evolve the Security Operations strategy and operating model. • Build a dependable security incident response capability. • Mature threat intelligence and security validation practices. • Establish key, secrets, and certificate lifecycle management. • Lead and evolve Corporate IT strategy and operating model. • Drive operational transparency through dashboards and KPIs. • Own vendor performance and budget stewardship.