• Design, build, and harden software that protects our products, platforms, and customers. • Enhancing current security features and implementing new security features for the Telit Cinterion deviceWISE family of products. • Performs coding, debugging, testing, and troubleshooting on a variety of operating systems and gateways • Develop solutions for a variety of Windows and Linux operating system environments • Organizes and schedules their work and determines the best approach to solve a range of highly complex technical problems • Participates in architecture, design, code reviews and unit testing • Mentors other engineers • Works independently and collaborates well with others • Follows and improves our design, verification, build, and release processes • Embeds security controls (auth N/Z, key management, secrets handling, secure logging, input validation, least privilege) into microservices, APIs, and device/edge components. • Performs and/or remediates threat modeling, static/dynamic analysis (SAST/DAST), dependency scanning (SCA), container image scanning, and IaC checks as part of CI/CD. • Develops security tooling, libraries, and SDKs to standardize secure patterns for development teams. • Partners with other product and platform development teams to design and implement encryption-in-transit/at-rest, certificate rotation, secure boot, code signing, and OTA update hardening. • Collaborates with cloud/edge and OT/IoT engineers to harden interfaces to logic controllers, PLCs, gateways, and sensors • Works to segment networks and secure protocols (e.g., MQTT, OPC UA, Modbus/TCP where applicable). • Reviews designs and code for security vulnerabilities; conduct pen-test remediation and coordinate fixes to meet release timelines. • Contributes to secure coding guidelines, developer training, and security champions programs. • Instruments runtime monitoring and develop detections to surface misuse, anomalous behavior, and policy violations. • Documents design, security controls, and residual risks to support audits and customer questionnaires. • Focuses on security and compliance in the context of operations and enterprise technology to fully address and comply with global regulatory compliance (ISA-99, IEC-62443, NIST SP 800-82), the Cybersecurity Resiliency Act (CRA), and integration, certification, and deployment of FIPS 140-3.

• Design and build AI-powered security scanning agents using Claude Code, LLM APIs, and custom tooling to continuously monitor codebases and infrastructure for vulnerabilities • Develop automated remediation workflows that can propose fixes, create pull requests, and integrate security improvements directly into development pipelines • Create evaluation frameworks to measure the effectiveness of AI security agents against known vulnerability databases (CVE, OWASP Top 10, CWE) • Build CLI tools and integrations that embed security scanning into developer workflows, CI/CD pipelines, and production monitoring systems • Establish benchmarks and metrics for AI-driven security detection, including false positive rates, coverage analysis, and remediation success rates • Collaborate with development teams to improve AI agent performance through custom skills, prompt engineering, and model fine-tuning • Maintain security compliance standards for K-12 educational data (FERPA, COPPA, state privacy laws) through automated verification systems • Research and implement emerging AI security techniques, including adversarial testing of AI systems and LLM-specific vulnerabilities

• Perform internal, external, web application, and network penetration tests using industry-standard methodologies • Validate vulnerability scanner findings through manual testing and exploitation techniques • Conduct attack simulations and adversary emulation aligned to real-world threat scenarios • Lead vulnerability management lifecycle activities including prioritization, remediation validation, and risk acceptance • Identify false positives and confirm true security weaknesses through hands-on analysis • Develop and maintain penetration testing methodologies, playbooks, and reporting standards • Produce detailed penetration testing and vulnerability reports with risk ratings and remediation guidance • Collaborate with SOC, infrastructure, cloud, and application teams to remediate identified risks • Support red team and purple team exercises and threat modeling activities • Assist with security architecture reviews and secure design recommendations • Mentor Level 1 and Level 2 security engineers • Support compliance-driven testing requirements (SOC 2, ISO 27001, PCI DSS, NIST, CMMC)

• Own the top of the funnel for an Australian cybersecurity company targeting $500,000 ARR across Australia and New Zealand • Prospect into compliance-driven industries • Book qualified meetings with senior decision-makers • Execute 80+ dials per day across phone, email, and LinkedIn • Target companies with 100 to 400 active users in various industries • Book trust-building introduction meetings offering free assessments