• Lead the Security Privacy team building services that catalog PII, classify datasets, enforce data protection standards, and automate GDPR deletion workflows across HubSpot. • Design and evolve distributed systems that scan HubSpot's codebase and infrastructure to detect PII usage, track dataset ownership, and orchestrate privacy-related actions at scale. • Own reliability and on-call for the services your team runs, including alerting, incident response, and continuous improvement of our data privacy pipelines. • Collaborate with Privacy, Legal, and Security teams to translate data protection requirements and regulations into robust technical solutions. • Mentor and coach engineers through design reviews, pairing, and thoughtful feedback, raising the bar on engineering quality and execution. • Shape the roadmap for how HubSpot manages and protects personal data at scale, balancing long-term platform investments with near-term regulatory and business needs.

• You will lead Cloud Red Team Blue Team (CRTBT, also known as Cloud Purple Team) engagements as a Blue Teamer, where you will support the customer’s SOC/IR team in threat hunting and incident response activities as the CrowdStrike Red Teamer uses techniques characteristic of real breach attempts to generate potential detections. • You will work closely with customers to understand existing controls and practices and make recommendations based on detection and response capabilities, as well as manage projects from kickoff call through to report delivery. • You will identify and implement long-term enhancements to the CRTBT offering that will better enable clients to stop and recover from breaches.

• Configure, maintain, optimize, and troubleshoot core security platforms to ensure they are functioning effectively and aligned with security policies. • Process escalated or complex requests from the Security Analyst team regarding security tools, including global/difficult exclusions, user access management, and changes requiring engineer-level permissions. • Perform regular reviews and audits of security tool configurations (e.g., quarterly settings reviews) to ensure compliance, identify misconfigurations, and resolve configuration-related alerts. • Analyze systems and applications to investigate identified vulnerabilities, understand their potential impact, and determine root causes. • Work with clients to address vulnerabilities in their environments, ensuring that clients are well protected. • Create, test, and maintain scripts (using languages like PowerShell, Bash, etc.) to automate tasks related to vulnerability management (e.g., mass deployment, reporting, remediation) and security alert handling (e.g., improving log collection). • Work closely with fellow Security Analysts and Security Engineers, sharing information, participating in team discussions, and contributing to a collaborative security environment. • Work tickets that have been escalated to you, and potentially coach Security Analyst I and Security Analyst II on next steps. • Communicate professionally and clearly with end-users or clients to gather details about potential security issues, explain security procedures, or provide guidance during incident resolution. • Interact effectively with other teams (e.g., Reactive Support, Client Strategy, NOC) to coordinate security responses and share necessary information. • Maintain accurate and detailed records of investigations, actions taken, communications, and resolutions within ConnectWise. • Offer timely and helpful support related to security inquiries, upholding a professional and customer-service-oriented approach in all interactions. • Assist with ticket management—primarily by monitoring and responding to alert-related tickets in the absence of engineering tasks.

• Lead firewall, network access control, and SASE engagements across diverse enterprise environments. • Span three core technology pillars: next-generation firewall design and deployment, Cisco ISE-based network access control and identity services, and SASE/Zero Trust architectures. • Combine deep hands-on expertise across these platforms with strong consulting skills, owning end-to-end delivery from discovery and design through implementation, testing, and knowledge transfer. • This is a client-facing role that requires the ability to lead technical workstreams, produce professional documentation, and communicate complex security strategies to both technical and executive audiences.