• Lead and execute assessments including red team operations, purple team exercises, external and internal network penetration tests, cloud penetration tests, application and API security assessments, Active Directory security reviews, wireless security assessments, social engineering campaigns, and custom engagements — with minimal technical oversight • Map assessment activities to the MITRE ATT&CK framework and align engagements with industry methodologies such as PTES, OWASP, and NIST guidelines • Perform reconnaissance, exploitation, post-exploitation, lateral movement, and privilege escalation across enterprise environments including on-premises infrastructure, cloud platforms (AWS, Azure, GCP), and hybrid architectures • Assess cloud-native environments including IAM configurations, serverless functions, container orchestration, and Infrastructure-as-Code deployments • Conduct application and API penetration testing targeting OWASP Top 10 vulnerabilities, business logic flaws, and authentication/authorization weaknesses • Evade defensive controls including EDR, NDR, email security gateways, and network segmentation during red team operations • Author comprehensive assessment deliverables tailored to both technical and executive audiences that fully detail technical execution, root-cause deficiencies, business impact, and realistic remediation strategies • Communicate findings confidently to both technical teams and non-technical leadership, translating complex attack chains into clear business risk • Contribute to marketing and thought leadership through publishing research, speaking at industry conferences, authoring blog articles and whitepapers, hosting webinars, and developing security tools • Build automation, orchestration, and scripting solutions to reduce manual processes, improve efficiency, and enable new capabilities for evolving client needs • Develop and improve offensive tooling, custom implants, and C2 infrastructure to support assessment operations • Assist with practice development including improving existing service offerings, creating new offerings, and identifying emerging assessment areas such as AI/LLM security testing • Mentor junior and mid-level team members through regular one-on-one and group technical sessions, knowledge sharing, and hands-on guidance during engagements • Build strong client relationships by providing interactive, collaborative support and guidance that maximizes the value of every engagement • Represent GuidePoint professionally during pre-sales calls, scoping discussions, and client debriefs

• Lead comprehensive, organized retail crime investigations • Conduct targeted investigations into Xfinity Mobile fraud • Analyze POS data, activation logs, account activity, surveillance footage • Partner with law enforcement agencies to build cases • Prepare investigative reports for senior management and stakeholders • Conduct investigative interviews • Collect, document, store, and maintain evidence according to guidelines • Participate in fraud awareness and training programs • Assist in compliance efforts by ensuring adherence to laws and regulations

• Partner with Security Coaches and Customer Success Managers (CSMs) to assess, harden, and continuously improve customer security postures across Microsoft 365 and Azure. • Own delivery for complex initiatives such as Zero Trust, threat detection/response, compliance programs. • Participate in technical workshops and solution alignment sessions. • Emphasize measurable outcomes, clear roadmaps, and repeatable implementation patterns • Design and tune Sentinel analytics rules, UEBA, data connectors, and KQL queries; implement playbooks for triage and automated response. • Lead Information Protection implementations: sensitivity labels, automatic/manual labeling, policy scoping. • Deploy Purview DLP for Exchange/SharePoint/OneDrive/Endpoints and establish data lifecycle and retention policies.

• Own, manage, and support the application of key compliance frameworks (SOC 1 and 2, ISO 27001, CSA STAR, NIST CSF, etc). • Develop, control, and maintain applicable organizational policies, procedures, best practices, and guides associated with key compliance requirements and in support of annual audits. • Assist in the development and implementation of an internal audit program designed to measure the effectiveness of organizational processes and procedures, assess organizational adherence to those processes and procedures, identify opportunities for organizational and systemic process improvement, and alert the organization about emerging risks to the comprehensive compliance program. • Support the Risk Management Program making risk-based decisions an integrated part of the cultural landscape, including: risk identification, risk mitigation, risk monitoring, risk reporting, and documentation of risk realization and/or retirement. • Work closely with the Security Operations (SecOps) team to ensure security functions meet operational compliance requirements and will meet/exceed independent annual audit standards. • Ensure technical, operational, and administrative controls are fully operable and meet standards necessary for SOC 1 and 2 audits. • Support Quarterly Access Reviews (QARs) as part of the larger User Access Request process.