• Serve as Incident Commander for SIRN-related security cases, owning coordination from detection through resolution and post-incident review. • Lead incident triage efforts, rapidly assessing scope, severity, and impact to drive prioritization and response decisions. • Coordinate with internal AR teams and external Solana ecosystem stakeholders throughout active incident lifecycles. • Develop, tune, and triage telemetry signals relevant to SIRN use cases, including on-chain event monitoring and infrastructure-level detection. • Identify gaps in current detection coverage and propose improvements to signal fidelity and alert quality. • Author, maintain, and continuously improve incident runbooks tailored to SIRN scenarios. • Provide operational and logistical support to the SIRN project team, including tracking deliverables, coordinating stakeholder communications, and ensuring project milestones are met. • Maintain clear documentation across all assigned workstreams.

• Running security reviews and threat modelling on features and systems across Primer's product, and turning findings into clear, actionable guidance for the teams shipping them • Independently planning and delivering your own security projects, from initial design through to rollout • Building tooling and automation that makes future reviews faster and cheaper to run • Coordinating penetration testing and tracking remediation through to closure • Supporting the recurring compliance work (SOC2, PCI), including evidence collection and remediation tracking against fixed audit windows • Contributing to AppSec roadmap initiatives across areas like application threats, AI security, supply chain security, and ASPM • Picking up proactive security work, threat research and hands-on investigation, that a one-person function has never had the capacity for • Working alongside Cloud, Infra, and GRC on the security aspects of their projects

• Define and execute a GRC roadmap, leading governance, risk, and compliance programs. • Design and maintain the enterprise risk register, partnering with business leaders to identify, quantify, and mitigate risks. • Manage compliance with frameworks (ISO 42001, ISO 27001, ISO 27701, ISO 27017, and SOC2, and CIS Controls) and drive continuous compliance rather than just annual audits. • Build and manage a right-sized vendor risk program, assessing vendor maturity and reviewing security contracts. • Enable ZoomInfo transaction velocity and ensure customer service by building customer trust and rapidly responding to inquiries. • Leverage Agentic AI and GRC platforms (ServiceNow GRC, Vanta, and others) to automate processes, generate metrics, and deliver executive dashboards. • Act as the key liaison between Security, Legal, Product, and executive leadership to align risk posture with business objectives.

• Establish the vision, strategy and success metrics for the Customer Support and Integrity Security function. • Lead the technical direction and roadmap execution for Customer Support and Integrity Security. • Work directly with Customer Support and Integrity, Merchant Experience, Enterprise Security, Engineering, Product, GRC and related teams. • Design and Operationalize security controls. • Establish clear, measurable metrics to demonstrate and track the performance of the Customer Support and Integrity security programs. • Perform security testing and validation of support teams, processes and systems to identify security gaps and remediation plans. • Drive alignment across multiple organizations, build durable operating mechanisms.