• Serve as the cybersecurity SME for all Assessment and Authorization (A&A) activities, ensuring compliance with DoD and NIST requirements. • Perform RMF activities for systems undergoing authorization, including control assessment, documentation review, and risk analysis. • Apply expert understanding of NIST SP 800‑53 security controls and their relevance to large, complex IT infrastructures composed of multiple enclaves, applications, and outsourced services. • Identify vulnerabilities, determine severity levels, and assess potential impacts on system authorization status. • Conduct comprehensive authorization reviews for enterprise‑level systems and environments. • Brief senior leadership on RMF progress, findings, risks, and recommended courses of action. • Support the development, implementation, and refinement of cybersecurity policies, procedures, and processes aligned with DoD requirements. • Apply cybersecurity expertise to emerging technologies, including cloud services, Industrial Control Systems (ICS), warehouse execution systems, and Operational Technology (OT). • Evaluate and apply cybersecurity controls for modern computing environments such as hybrid cloud, edge computing, and IoT-related architectures.

• Provide cloud tenancy services and deliver enhanced capabilities within an Oracle Cloud Infrastructure (OCI) hosting environment. • Secure, isolate, and administer the cloud tenancy to effectively create, organize, integrate, and manage cloud resources. • Research, evaluate, and implement new OCI services and capabilities to improve operational performance and strengthen security posture. • Administer middleware and web tiers, manage single sign‑on (SSO), and create/manage users, groups, and access controls. • Apply expert knowledge of NIST RMF, C&A processes, and DoD cybersecurity requirements to assess controls, identify risks, and ensure compliance. • Support the design, implementation, and maintenance of cloud-native security configurations, including Oracle CloudGuard. • Conduct C&A reviews for large, complex information systems and ensure alignment with DoD, NIST, and FedRAMP requirements. • Provide technical leadership across cloud service engineering, including distributed systems, virtualized infrastructure, identity, observability, and security. • Manage and support Autonomous Database, Oracle Enterprise Database, and Oracle Database Cloud Service (DBCS). • Deploy and manage containerized applications using Oracle Kubernetes Engine (OKE). • Automate tasks using scripting and IaC tools such as Ansible (OCI‑compliant), HELM, and Terraform. • Apply expertise in modern computing paradigms including hybrid cloud, edge computing, microservices, and IoT‑related protocols.

• Design comprehensive security solutions that integrate physical security, access control, video surveillance, intercom, mass notification, and intrusion detection measures to meet client standards or mitigate identified risks. • Develop detailed security design documentation, including basis of design, system specifications, systems drawings, schematics, and installation plans, adhering to industry standards and regulatory requirements. • Lead designs (construction drawings and specifications) for technical & physical security elements (cameras, access control, intrusion detection, fences, gates, etc.) for client projects. • Understanding of Master Format CSI specifications and ability to write new content as needed. • Collaborate with clients to understand their business objectives, security requirements, and budgetary constraints, providing expert guidance and recommendations. • Collaborate with consultants within our client environment to develop design standards, evaluate costs, risk, and benefits of designs, and facilitate design discussions. • Facilitate effective project team and cross-functional interactions (Technical, Operations, BD, Marketing, etc.) by working successfully as a part of a team and business functions to achieve positive results. • Participate in maintenance of the clients’ Basis of Design, prototype design, and specifications for physical security elements. • Communication and record keeping of project decisions and directives in both written and verbal formats. • Maintain project repository of documentation in a consistent and comprehensive project delivery method. • Support business growth through pursuit of new work; and, by providing technical content to new business proposal and firm qualification packages. • Attend industry events to expand brand awareness.

• Own end-to-end sales motions: prospecting, qualification, scoping, proposal development, negotiation, and close. • Build and execute a territory plan that expands new logo acquisition and grows revenue across existing enterprise accounts. • Position the full suite of offensive security services—pen testing, red teaming, cloud security testing, and managed offensive capabilities. • Maintain a strong pipeline with 3x+ quota coverage and predictable forecasting. • Lead consultative discussions with CISOs, engineering leaders, AppSec teams, and procurement stakeholders. • Partner with technical SMEs and consulting leads to shape solutions aligned to client risk, maturity, and regulatory requirements. • Establish multi-threaded relationships within accounts to improve deal velocity and renewal rates. • Deliver compelling client presentations, statements of work, and value-based proposals. • Work closely with the consulting delivery team to scope engagements accurately and ensure high customer satisfaction. • Align with marketing on targeted campaigns, regional events, and ABM programs. • Achieve or exceed quarterly and annual bookings targets. • Maintain accuracy of CRM data, forecasting, and pipeline metrics. • Drive healthy mix of services revenue: net-new logos, expansion, and multi-project programs.