• Establish and scale the core Security Operations Center • Lead the Threat Intel function by collecting, analyzing, and disseminating actionable intelligence • Act as the primary lead for incident response actions across the Horizon3 enterprise • Continuously assess cybersecurity capabilities to identify gaps in coverage and visibility • Transition the SOC from manual intervention to an automation-first culture • Oversee internal penetration testing and "Purple Team" exercises • Build and mentor a high-performing team of detection engineers and analysts • Manage the budget, vendor relationships, and KPIs that demonstrate systemic risk reduction to executive leadership

• Act as a technical cybersecurity and infrastructure POC for security and compliance-driven requirements. • Support requests related to system builds, secure configurations, networking, and access controls. • Work directly with engineering, IT, and business teams to implement compliant and secure technical solutions. • Translate security, infrastructure, and data protection requirements into actionable, auditable implementations. • Administer and support Windows Server, Active Directory, and Linux systems, including baseline configuration and hardening. • Assist with secure Linux builds and ongoing system administration to support enterprise workloads. • Configure and troubleshoot networking components, including firewalls, VLANs, ACLs, and VPNs, to support segmented and secure environments. • Support secure connectivity across enterprise systems and supporting infrastructure. • Support secure workloads and configurations within GCC High, Azure Government, and AWS GovCloud environments. • Implement and support security controls using Microsoft Purview, Microsoft Defender, and related Microsoft security tooling. • Assist with data classification, labeling, and access enforcement in regulated environments. • Support identity and access management using Entra ID (Azure AD), Conditional Access, and device compliance mechanisms. • Support and maintain endpoint protection and detection using CrowdStrike. • Assist with secure remote access and traffic inspection using Zscaler. • Help investigate and remediate security events impacting enterprise systems. • Support vulnerability remediation and secure baseline enforcement across environments. • Apply strong technical expertise in routing, switching, and secure interconnectivity of systems and devices. • Support the implementation and execution of CMMC Level 2, NIST 800-171, and DFARS aligned requirements across regulated environments. • Assist with technical control implementation related to access control, audit logging, system hardening, and sensitive data protection. • Support evidence collection, technical documentation, and audit readiness activities. • Work closely with cybersecurity leadership to ensure systems remain compliant and defensible during assessments. • Develop and maintain PowerShell, Python, or Bash scripts to support system configuration, automation, and reporting. • Assist with repeatable and auditable deployments for Windows, Linux, and cloud environments. • Improve operational consistency, security posture, and compliance through automation and documentation. • Perform other duties as required.

• Manage the Security Solutions Salesforce Certinia Cases queue by overseeing the intake and workflow of service requests submitted through Salesforce's case management system. Monitor cases as they are initially assigned to the queue that matches the service offering, and re-assign ownership to individual service agents to work the case. • Create and maintain list views to manage the total workload and queue of cases, ensuring efficient tracking of workload and turnaround time. • Ensure cases move efficiently through the workflow and are assigned to appropriate service agents for resolution, while monitoring which internal users receive case email notifications. • Assist with scoping activities, proposal development, and RFI/P responses under the guidance of senior consultants. • Use internal tools and processes to generate service quotes, help scope and track opportunities, and process and close opportunities. • Promptly responding to internal and external inquiries for professional services. • Understand and suggest ongoing process improvements for the presales service lifecycle. • Interface with Technical leaders, practice delivery leads, and Sales Support Specialists on a daily basis in a fast pace, engaging environment. • Document pre-sales processes, contribute content, methodologies, and documentation to help the practice grow. • Be able to manage multiple streams of work in an organized and timely manner. • Serve as a liaison between Customers, Vendors, and GuidePoint outside Sales Executives and Service Leaders • Document and maintain processes and procedures for presales workflow steps. • Develop and maintain relationships with GuidePoint key Vendors and Customers. • Attend regional/national forecast calls and perform pipeline analysis to ensure forecast accuracy. • Serve as a liaison between GuidePoint Service Leaders, Contracts and Proposal Departments, and vendors (as required) to process, track and manage service opportunities. • Work with the team to analyze information and make decisions that benefit GuidePoint Security.

• Lead the design and evaluation of enterprise security architectures, ensuring all systems align with Zero Trust Architecture (ZTA) principles and organizational cybersecurity guidelines • Serve as the primary technical liaison between enterprise architects and systems security engineers to ensure security controls are correctly allocated and implemented • Convert complex operational needs and stakeholder security interests into detailed technical requirements and functional specifications • Provide critical input to the Risk Management Framework (RMF) process, including the development of system life-cycle support plans and operational procedures • Manage security requirements throughout the acquisition life cycle, from drafting statements of work to evaluating vendor-proposed security designs for adequacy • Perform regular security reviews and design modeling to identify architecture gaps, developing comprehensive risk management plans to address vulnerabilities • Categorize systems and define clear security boundaries, documenting the protection needs for information systems and networks • Advise senior leadership and authorized officials on design concepts, project costs and the potential adverse effects of identified vulnerabilities