• Design and build internal security tooling from scratch, including agent-based security tooling, code analysis tooling, dynamic scanning, and security assessment tools • Identify vulnerabilities across SentiLink's AWS-based stack, including application code, cloud service configurations, and integrations between the two • Develop AI-assisted and agent-based tooling to scale offensive security testing beyond what a small team can do manually • Build and maintain security automation that improves detection, response, and remediation across the organization • Conduct hands-on penetration testing and vulnerability research against SentiLink's infrastructure and applications • Partner with engineering teams to remediate findings and embed security into the development process without slowing them down • Participate in the security on-call rotation, including incident response and regular response testing • Contribute to threat modeling and security design reviews for new systems, with a focus on cloud integrations and identity flows • Stay current on offensive security techniques, AI-assisted security tooling, and emerging attack patterns relevant to fintech and identity verification

• Deliver expert-level EDR product support, serving as the primary technical resource for internal teams and external customers. • Provide deep technical expertise across EDR platforms, including deployment, configuration, tuning, optimization, and troubleshooting. • Act as an escalation point for complex EDR-related incidents, alerts, and investigations. • Partner directly with customers to provide tailored recommendations for improving security posture within their environments. • Understand customer business risk and recommend appropriate security controls to reduce exposure and strengthen overall cybersecurity maturity. • Communicate technical findings clearly and effectively to both technical and non-technical stakeholders. • Conduct routine EDR platform health checks to identify gaps, misconfigurations, coverage issues, and optimization opportunities. • Manage EDR platform versioning and ensure deployments remain current, supported, and operationally effective. • Monitor platform performance and proactively recommend improvements to enhance detection and operational efficiency. • Develop, maintain, and improve Standard Operating Procedures (SOPs) related to EDR operations and incident workflows.

• Own the architecture, implementation, and continuous improvement of Lumin’s network security program across cloud, SD-WAN, and ZTNA layers—designing identity-aware, policy-driven controls that secure both human and machine (agent) identities. • Design and deliver fully automated, end-to-end network security change management pipelines that eliminate manual toil, accelerate change velocity, and maintain audit-ready evidence at every step. • Build and operate real-time network telemetry, monitoring, and alerting systems that provide deep visibility into network activity — integrating threat intelligence feeds, cloud connectivity data, and asset inventories into a unified, automated network defense posture. • Engineer production-grade tooling and services—including firewall rule lifecycle management, policy drift detection, configuration compliance validation, and telemetry enrichment—using modern backend languages (Python strongly preferred) and infrastructure-as-code. • Manage and tune network-layer detection capabilities — including IDS/IPS signatures, firewall rules, and WAF configuration — to ensure high-fidelity signals for SOC consumption. • Operate at the leading edge of AI-assisted development: write precise engineering specifications, direct AI coding agents (e.g., Claude Code, Cursor), and review/validate generated output to build secure, lights-off agentic pipelines that the broader team can learn from. • Build and maintain API integrations across the network security technology stack (e.g., Cloudflare, Zscaler, cloud-native controls) with reliability, observability, and audit-readiness designed in from day one. • Support compliance audit and assessment activities — including evidence collection, control testing, and auditor walkthroughs for network security domains; maintain an accurate network diagram inventory documenting topology, segmentation boundaries, and data flows. • Partner with the Security Operations Center, SRE, and IT to ensure network security controls integrate cleanly with existing infrastructure pipelines, CI/CD workflows, and incident response processes; participate in security architecture reviews and contribute to runbook development and operational documentation—raising the network security bar across the engineering organization. • Perform other duties as assigned.

• Serve as an Anomali Platform power user; help our customers achieve success with the technology • Build strong customer relationships, especially with key customer stakeholders • Address customer’s technical requests; proactively identify and resolve issues • Provide advice, guidance, and technical know-how to ensure successful usage and adoption • Manage customer expectations while holding them accountable • Be your customer’s advocate and internal champion • Promote advocacy • Track key account metrics; communicate progress to internal and external stakeholders • Engage with the Onboarding Engineers to ensure a smooth transition • Engage with Technical Support to ensure speedy resolution of customer issues • Engage with Engineering to resolve customer reported issues • Partner with Sales to ensure an exceptional customer experience • Engage with Product Management to promote customer feature requests