• Design and implement scalable security controls and platform-level guardrails across our multi-cloud estate: build it once, make it the default everywhere. • Drive a modern secure SDLC by embedding threat modelling, SAST/DAST/SCA, secrets management, and dependency hygiene directly into the developer workflow, not bolted on as an afterthought. • Prototype and deploy AI agents that review code, triage findings, and turn vulnerability noise into actionable signals, becoming the assistant every developer wishes they had. • Own the security of our IaC, CI/CD pipelines, and cloud platforms, making least privilege the default rather than a project. • Partner with engineering to deliver paved paths, libraries, and tooling that make the secure way the easy way. • Run technical security reviews for new applications and infrastructure changes, finding the issues that matter with the evidence to back it up.

• Own enterprise-wide security incident response —ensure the team can detect, triage, contain, eradicate, and recover from incidents across cloud, on-prem, SaaS, and endpoint environments with speed and precision. • Maintain and continuously improve the incident response plan, playbooks, escalation procedures, and communication templates, ensuring they are tested, current, and aligned to NIST CSF 2.0. • Serve as incident commander or executive sponsor for high-severity incidents; make real-time decisions on containment and remediation under pressure. • Coordinate threat response across US and India teams, ensuring consistent coverage, quality, and process regardless of geography. • Own the security and IT tooling portfolio across the company: endpoint management (MDM, EDR), identity infrastructure, SIEM/SOAR, network security, vulnerability scanning, email security, cloud security posture management, and related platforms. • Build and maintain operational metrics and dashboards that provide the CISO and leadership with clear visibility into incident trends, MTTD/MTTR, tool health, SLA performance, and infrastructure posture.

• Implementación, monitoreo, soporte y gestión de los servicios Profesionales y administrados remotos ofrecidos para los productos digitales • Evaluar y analizar las necesidades específicas de los clientes respecto a sus soluciones y gestión de redes • Implementa soluciones y realiza proceso rutina de monitoreo, notificación y reportes para productos que se ofrecen a los clientes a nivel de networking y ciberseguridad • Elaboración de pruebas de servicios implementados

• Own and drive the strategy, roadmap, and maturation of LastPass's Security Operations function - translating the threat landscape into a multi-year program plan that scales with the business • Lead all response operations across the full incident lifecycle, from detection and triage through containment, eradication, recovery, and post-incident review • Build, develop, and retain a high-performing team of analysts and engineers - setting clear performance expectations, career development pathways, and a culture of operational excellence • Partner with the CISO, Legal, and Communications to manage high-severity incidents, coordinating executive response and fulfilling regulatory notification obligations • Define and own detection and response program metrics, SLAs, and reporting frameworks - providing the CISO and board with clear, evidence-based visibility into program maturity and risk posture • Champion the integration of AI-assisted triage, automation pipelines, and Detection-as-Code methodologies to reduce analyst toil and drive down mean-time-to-respond • Establish and maintain strategic relationships with external partners - including threat intelligence vendors, law enforcement, and industry information-sharing groups — to strengthen LastPass's situational awareness • Collaborate across Business Technology, Cloud Security, and Platform Engineering to ensure cohesive detection coverage and coordinated response capability across the full technology estate