• Follow and implement all operational security procedures within the hotel • Oversight of all contractors, suppliers or vendors working on property • Protect all guest and staff areas of the hotel from unauthorized access or intruders • Keep the security and hotel senior management informed on all matters relating to the Security aspects of the hotel on a daily basis.

• Help evaluate whether to stand up an internal SIEM or work with an outsourced SOC provider—then implement whichever path makes sense for where we are as a company. • Build incident response runbooks and triage workflows—then actually test them (e.g. test backups in case needed for ransomware recovery) • Be the person who sees something and does something about it • Scan and harden our AWS posture hands-on: IAM policies, SCPs, security group hygiene, GuardDuty, Security Hub, and automated compliance guardrails need to be evaluated and maintained • Own Cloudflare configuration across WAF rules, DDoS protection, bot management, Zero Trust access, and DLP policies—keeping rules current and tuned as the product evolves • Implement IaC security scanning (Checkov, tfsec, or similar) directly into CI/CD pipelines • Deploy and manage endpoint protection across developer systems and production endpoints—covering EDR, device posture, behavior monitoring (including dynamic scans), DLP, and threat detection • Ensure developer machines (Mac-heavy environment typical of engineering teams) meet baseline security standards while minimizing friction that slows people down. • Define and enforce endpoint compliance policies, including disk encryption, patch posture, and application controls • Secure our build and release pipelines • Consider SLSA framework adoption and supply chain integrity attestations for our catalog and environments • Stand up dependency vulnerability scanning and own the remediation workflow end-to-end for third-party services, libraries, middleware, operating systems, and SaaS • Integrate SAST and SCA tooling (Semgrep, Snyk, GitHub Advanced Security) into developer workflows • Participate in security design reviews and threat modeling for new features • Work shoulder-to-shoulder with developers to find and fix vulnerabilities using a risk-based model instead of just vulnerability aging reports • Audit and rationalize IAM across AWS, Cloudflare, SaaS applications, and internal tooling; implement the fixes, not just the findings • Drive SSO consolidation, enforce MFA universally, and implement least-privilege access in practice, not just policy • Build a lightweight, repeatable access review process—something that actually runs on a cadence and produces real decisions • Own joiner/mover/leaver processes so that entitlements stay clean as the team grows • Evaluate and implement an appropriate identity governance solution for our stage—not an enterprise IGA platform, but something that gives us control and auditability

• Lead and develop the Network Security Practice, including strategy, service offerings, team growth, and overall performance management. • Build, mentor, and manage a team of Network Security Engineers through coaching, technical guidance, career development, and performance evaluations. • Establish and maintain technical standards, implementation methodologies, documentation requirements, and best practices across all network security engagements. • Serve as trusted advisor and executive consultant to enterprise customers, leading architecture workshops, security assessments, and strategic planning sessions. • Oversee delivery of complex network security projects, ensuring quality, consistency, customer satisfaction, and serving as escalation point for technical challenges. • Partner with Sales teams throughout the pre-sales process, leading technical discovery, solution design, SOW development, and customer presentations. • Provide architectural leadership across enterprise security technologies, including SASE platforms, next-generation firewalls, SD-WAN, cloud security (AWS, Azure, GCP), and Zero Trust architectures. • Design and review comprehensive security documentation, including network architectures, implementation plans, runbooks, security standards, and executive recommendations. • Evaluate and integrate emerging security technologies to expand the organization's service portfolio and meet evolving client requirements. • Collaborate with executive leadership to establish practice goals, utilization targets, revenue objectives, and strategic growth initiatives. • Embraces emerging technologies, including AI tools, to work smarter, solve problems, and drive better business outcomes. • Other related duties as needed.

• Develop and implement a security program: design, promote and implement organization-wide security solutions which align to the business strategy focusing on application and platform service development, technology infrastructure, and overall Cyber Security. • Plan the implementation of the security tooling. Choose specific tooling that best fits into Triple's processes, constraints and objectives, with specific proposals of configurations. Collaborate with Engineering for the implementation of the required changes. • Engage with Sales and Customer Engineering team members and other business units in response to relevant inquiries and requests regarding risk and security requirements • Be on top of communications with customer security teams • Answer RFPs, Questionnaires and Forms from integrations, explaining Triple Security practices to customers • Lead the promotion of security practices throughout the organization • Collaboration with key business and IT leaders to ensure that security policies and standards are implemented, enforced, and enhanced where appropriate. • Collaboration and coordination with leadership across all departments on risk and security related matters • Develop and implement guidelines that cover: risk assessments, issues and event management, impact analysis, monitoring and reporting. • Evaluate complex business problems to ensure risks and exposures are properly mitigated • Identify potential areas of vulnerability and risk; develop/implement corrective action plans for resolution of issues, and provide general guidance on how to prevent or address similar situations in the future • Lead certification processes and own the audit structure for ISO 27001, SOC 2, GDPR, CSA etc. • Develops and implements security frameworks for agentic AI, and builds production-grade security tooling. • Monitors AI systems to detect vulnerabilities and fraudulent activity