• Performing initial triage of disparate security signals and events to determine severity and drive response to potential business-impacting incidents. • Monitoring and analyzing vulnerability management tools and feeds; providing remediation guidance to downstream teams; and keeping technical risk under control. • Operating the security awareness program, including course design, phishing simulations, reporting, and support for business teams and users. • Supporting internal and external stakeholders as required to gather information and evidence for security governance activities and compliance audits. • Using AI and automation techniques to enhance compliance, facilitate business operations, and improve efficiency. • Undertaking small projects to mitigate risk, support the team, and support other company objectives.

• Lead threat modeling, attack surface analysis, and secure design reviews across products, platform services, endpoint agents, and cloud-native systems. • Use LLM platforms (Claude, OpenAI) as core tools to scale threat analysis, abuse-case generation, architecture review, and remediation guidance. • Work directly with engineering teams to embed secure-by-default patterns into product development. • Own and expand the Product Security handbook that inferences product context from multiple sources and leverage it for enforcing secure design standards. • Mentor Product Security Engineers and Security Champions on secure design, attack surface reduction, and AI-first security workflows. • Help evolve BeyondTrust's AI-first Product Security Architecture strategy by identifying where AI workflows can replace manual processes.

• Build and maintain the product security tooling pipeline integrated across the software development lifecycle. Implement and tune Claude Code Security, Codex Security, GitHub Advanced Security (code scanning, secret scanning, Dependabot), and Wiz CLI across repositories and CI/CD pipelines. Own the configuration, policy enforcement, and continuous improvement of these tools so engineering teams get accurate, actionable security feedback at the speed of development. • Design and operate automated product security review workflows with human-in-the-loop checkpoints. Use Claude and LLM platforms to automate initial review triage, risk classification, and recommendation generation, escalating to Security Architects or senior engineers for decisions that require judgment. The goal is every change gets appropriate security review coverage without manual review becoming the bottleneck. • Ensure security tooling integrates cleanly into engineering workflows: GitHub PRs, CI/CD pipelines, IDE plugins, and developer dashboards. Reduce false positives, tune rulesets to the product's actual risk profile, and build feedback loops so findings improve over time. You own the engineering experience of security tooling. When a developer interacts with a security gate, it should be clear, fast, and useful. • Leverage Claude Code Security, Codex Security, and LLM platforms to build automation that scales security engineering. This includes automated code review triage, vulnerability pattern detection, fix suggestion generation, policy-as-code enforcement, and security review summarization. Contribute reusable prompts, skills, and plugins back to the Product Security team's shared library. • Support product incident response alongside the Product Security team. Help investigate security incidents affecting products, scope impact, coordinate with engineering on emergency fixes, and contribute to root cause analysis and post-incident improvements. • Work closely with Security Testers to ensure scanning and automated tooling feed validated findings into their workflow. Partner with Architects on translating secure design standards into enforceable pipeline policies. Coordinate with the TPM on tracking and reporting for tooling-generated findings. Be the go-to person for engineering teams on security tooling questions, configuration, and troubleshooting.

• Deliver compelling technical presentations and live demonstrations of Tenable Enterprise products • Manage enterprise software trials and Proof of Concept evaluations, mapping unique business values with customer business objectives • Answer technical questions and provide consultative guidance on security best practices, compliance frameworks, and risk management • Apply advanced technical skills to demonstrate the value and impact of Tenable’s solutions in solving real-world customer challenges • Maintain and strengthen relationships with existing customers, while identifying and cultivating new strategic opportunities • Present thought leadership content and represent Tenable at industry events, executive briefings, and customer-facing sessions • Leverage strategic technical selling skills to engage key stakeholders, from engineers to CISOs, and influence decision-making • Travel as needed (typically around 25%) to support key customer engagements, critical sales opportunities, and high-impact cybersecurity events • Collaborate cross-functionally with product management and engineering to surface customer feedback and prioritize critical customer use cases • Help shape future innovations by identifying gaps and contributing ideas for new product features and capabilities • Deliver clear status reports for Proofs of Value (POVs) and active opportunities; this data is mission-critical for forecasting business health and ensuring alignment with territory and organizational growth goals • Meet with prospective clients to discover what their biggest security challenges and highest priority business drivers are