• Work closely with Accrete’s Manager of Cloud Security and staff to understand key dependencies • Research and communicate unique client security needs to Accrete’s CISO and Manager of Cloud Security to reduce code drift and divergent security practices • Implement compliant identity management and data handling processes using a variety of custom and off-the-shelf software • Identify and recommend base code modifications in order to meet client security requirements

• Define and execute the company’s strategic vision and growth plan. • Drive revenue growth, profitability, customer retention, and market expansion initiatives. • Evaluate evolving cybersecurity threats, market trends, competitive dynamics, and emerging technologies to inform business strategy. • Position the company as a leader in security operations, threat detection, network security, and cyber defense solutions. • Develop and execute strategic initiatives that strengthen the company’s position within enterprise, government, defense, and critical infrastructure markets. • Partner with Product and Engineering teams to deliver innovative cybersecurity solutions that address evolving threat landscapes. • Ensure continued leadership across solutions supporting: - Security Information and Event Management (SIEM) - Network Detection and Response (NDR) - Extended Detection and Response (XDR) - Threat Hunting - Threat Intelligence - Digital Forensics and Incident Response - Security Analytics - Security Operations Centers (SOC) • Support customers operating in cloud, hybrid, on-premises, and air-gapped environments. • Drive modernization initiatives while maintaining strong support for mission-critical customer deployments. • Maintain a deep understanding of advanced persistent threats, nation-state actors, ransomware, insider threats, and emerging attack techniques. • Lead organizations delivering software and appliance-based cybersecurity solutions and understand the operational requirements associated with hardware lifecycle management and supply chain considerations. • Lead global sales, customer success, channels, alliances, and professional services organizations. • Build and strengthen relationships with CISOs, CIOs, security operations leaders, government agencies, defense organizations, and strategic partners. • Expand recurring revenue streams while maximizing customer retention and expansion opportunities. • Support strategic customer engagements, executive briefings, and major commercial opportunities. • Drive growth across enterprise, public sector, federal, defense, and critical infrastructure customers. • Lead global teams across Product Management, Engineering, Sales, Marketing, Services, Customer Success, and Operations. • Establish clear performance metrics and accountability across the organization. • Optimize organizational structure and operational efficiency to support business objectives. • Foster a culture of innovation, execution, customer focus, and accountability. • Ensure operational rigor in product delivery, customer support, and service excellence. • Serve as a trusted executive partner to customers, employees, and strategic stakeholders. • Represent the company at industry conferences, customer events, analyst briefings, and executive forums. • Support strategic partnerships, acquisitions, integrations, and other corporate initiatives. • Provide leadership during major cybersecurity incidents, market disruptions, and industry developments.

Role Description The Security Engineer, Secure Development is responsible for establishing, leading, and enforcing security standards for all internally developed software, automation, and AI‑enabled solutions prior to customer delivery or internal production use. This role serves as the primary technical lead and designated expert to ensure that applications, APIs, infrastructure‑as‑code, and AI models meet security, privacy, and compliance requirements before release. This is an individual contributor role within the security organization, focused on hands‑on execution, technical depth, and influence through standards, tooling, and partnership with development teams. As a Managed Services Provider with proprietary platforms and customer‑facing systems, XTIUM requires strong governance over secure development practices. This role works closely with engineering, platform, infrastructure, and compliance teams to embed security into the software development lifecycle while maintaining delivery velocity. What You Will Do - Application & Code Security Governance - Own and enforce secure development standards for all internally built applications, platforms, automation, and tooling. - Perform and oversee manual and automated code reviews (static, dynamic, dependency, and supply‑chain analysis). - Establish clear release gates requiring security approval before software or AI systems are delivered to customers or promoted internally. - Define remediation standards and risk acceptance criteria for security findings. - Conduct secure design reviews and application threat modeling during early development phases to identify and mitigate risk before implementation. - AI & Emerging Technology Security - Review internally developed AI models, agents, prompts, integrations, and data pipelines for security, privacy, and misuse risk. - Ensure AI systems comply with internal governance, customer contractual obligations, and emerging regulatory expectations. - Partner with engineering and data teams to implement secure AI development patterns, including data protection, access controls, and auditability. - DevSecOps Enablement - Integrate security tooling into CI/CD pipelines (e.g., SAST, DAST, dependency scanning, container scanning, secrets detection). - Promote “shift-left” security practices and reduce late‑stage security blockers through developer enablement. - Collaborate with DevOps and Platform teams on secure delivery pipelines and runtime controls. - Risk, Compliance & IP Protection - Protect XTIUM’s intellectual property by ensuring secure design, code custody, and controlled access to source repositories. - Support compliance efforts across frameworks such as SOC 2, ISO 27001, and customer‑specific security requirements. - Produce audit‑ready artifacts including risk assessments, code review records, and security sign‑offs. - Leadership & Collaboration - Act as the primary application security escalation point for engineering and leadership. - Mentor developers and engineers on secure coding practices and threat modeling. - Provide executive‑level reporting on application and AI security posture, trends, and risk exposure. Qualifications - 8+ years of experience in application security, DevSecOps, or secure software development. - Strong hands‑on experience reviewing code in one or more modern languages (e.g., Python, JavaScript/TypeScript, C#, Java, Go). - Proven experience securing APIs, web applications, microservices, and cloud‑native platforms. - Experience integrating security controls into CI/CD pipelines and modern DevOps workflows. - Deep understanding of common vulnerabilities and attack patterns (OWASP Top 10, API security risks, supply chain threats). - Ability to balance security rigor with delivery velocity in a customer‑facing MSP environment. Preferred Qualifications - Experience securing AI/ML systems, automation platforms, or data‑driven applications. - Familiarity with cloud platforms (Azure, AWS) and containerized environments. - Experience in a Managed Services Provider (MSP) or SaaS organization with external customer delivery obligations. - Knowledge of regulatory and compliance frameworks impacting software and data security. Key Competencies - Secure Software Architecture - Application & API Security - AI Security & Governance - DevSecOps Tooling & Automation

Role Description - Operationally run the Documentation management process, required for our ISO27001 certification. - Provide operational support to the Global Cybersecurity Framework Owner by preparing business cases and reports to drive operational delivery of controls across the organisation. - Maintain core artefacts and toolset (e.g. Service.NOW IRM, Unified Compliance Framework) to present a consistent view across different tools. - Work with A&O to ensure changes to the Governance & Risk Frameworks are effectively communicated to interested parties. - Preparatory support for internal audits and regulatory requests of the department. - Support Framework Owner in delivering change management across functions to embed the framework. - Support Project Delivery of improvement projects within the Cybersecurity Governance and Risk Framework Team. Company Description Qualified individuals with a disability may request a reasonable accommodation if you are unable or limited in your ability to use or access the Hitachi Energy career site as a result of your disability. You may request reasonable accommodations by completing a general inquiry form on our website. Please include your contact information and specific details about your required accommodation to support you during the job application process. This is solely for job seekers with disabilities requiring accessibility assistance or an accommodation in the job application process. Messages left for other purposes will not receive a response.