• Lead execution and contribute to the development of an enterprise-wide cybersecurity strategy aligned to business objectives • Develop and maintain a cybersecurity roadmap addressing evolving threats, regulatory needs, and growth priorities • Establish and oversee security policies, standards, and frameworks (e.g., NIST, HIPAA, ISO 27001, SOC 2) • Identify and manage organizational risk, advising leadership on risk posture and mitigation strategies • Serve as a customer-facing cybersecurity leader in sales, presentations, and executive discussions • Support the growth and evolution of cybersecurity services, including DYOGUARD and strategic offerings • Act as a fractional CISO advisor for key client accounts • Oversee internal cybersecurity programs, vendor risk, and compliance initiatives • Lead incident response planning and execution, working closely with S/NOC and service delivery teams • Partner with delivery and product teams to embed security into services and solutions • Manage cybersecurity vendors, partners, and service providers • Build a culture of security awareness, continuous learning, and proactive risk management • Mentor teams and influence cross-functional collaboration across engineering, operations, and leadership

• Design, implement, and maintain data security controls across cloud platforms, applications, databases, and data pipelines to protect sensitive and regulated information. • Develop and operate data protection capabilities including data classification, encryption, key management, data loss prevention (DLP), and access governance. • Monitor, investigate, and respond to data security incidents, conducting root-cause analysis and driving remediation efforts. • Partner with engineering, platform, and compliance teams to embed security requirements into system design, software development, and data lifecycle processes. • Assess security risks, perform technical reviews, and support compliance with regulatory and industry standards such as GDPR, ISO 27001, NIS2, and customer security requirements.

Role Description We are looking for a senior engineer to design, build and deploy autonomous security agents on the Microsoft stack. You will automate security operations across SOC, vulnerability management and attack-surface use cases — turning security requirements into working agents that gather information, reason over it, act, and hand off cleanly. Key Responsibilities - Design, build and deploy autonomous security agents using Microsoft Security Copilot and Azure AI Foundry Agent Service - Build with the Microsoft Sentinel MCP (Model Context Protocol) server and develop custom MCP tools and servers for security use cases - Engineer detection content in KQL across Microsoft Sentinel and Defender XDR - Build response automation and SOAR playbooks using Logic Apps and Sentinel automation rules - Build autonomous SOC triage agents that classify alerts as true or false positive, enrich entities and assign the right owner - Build agents for vulnerability management and attack-surface reduction including asset discovery, noise reduction and rule-based notifications - Join client calls to gather requirements, discuss technical design and support deployment Essential Skills - Microsoft Sentinel and KQL - Microsoft Defender XDR - Microsoft Security Copilot - Azure AI Foundry Agent Service - Model Context Protocol (MCP) including building custom tools or servers - Logic Apps and security automation (SOAR) - Python and PowerShell - Strong communication skills in client-facing settings Desirable Skills - Microsoft Agent Framework or Semantic Kernel - Microsoft Entra and Purview - Experience with autonomous SOC or AI SOC tooling - Retrieval-augmented generation (RAG) and prompt or guardrail design Certifications - Essential: SC-200 (Security Operations Analyst) or equivalent hands-on experience - Desirable: AI-102 / AI-103, SC-100, AZ-104 How You Will Work This is a project-based engagement delivered primarily offshore. You will report to senior leadership. You are a builder first, but must be comfortable joining client calls to gather requirements, discuss technical design and support deployment. A portfolio of production agents, automations or detection content carries more weight than certifications alone.

• Security Assessment Ownership - Lead security assessments for specific components within client engagements. • Vulnerability Discovery and Analysis - Find and validate vulnerabilities in application code and systems. • Custom Security Tooling - Design and build security testing tools and automation for vulnerability detection. • Architecture and Threat Modeling - Conduct threat modeling and architecture reviews of software systems. • Client Communication - Translate technical findings into clear, actionable recommendations for engineering teams. • Research and Innovation - Contribute to security research initiatives and stay on the cutting edge.