Job Responsibilities:

• Engage technical teams and business stakeholders to discuss and propose technical approaches for current and future cybersecurity needs.
• Define the technical target state of their cybersecurity product and drive achievement of the strategy.
• Identify opportunities to eliminate or automate remediation of recurring issues to improve overall cybersecurity in software applications and systems.
• Lead evaluation sessions with external vendors, clients across all sectors, and internal teams to drive continuous improvement and assess cybersecurity design and technical credentials for existing systems and architecture.
• Lead communities of practice to drive awareness and use of new and leading-edge cybersecurity technologies.
• Contribute to a culture of diversity, equity, inclusion, and respect.

Required Qualifications, Capabilities, and Skills:

• Formal training or certification in cybersecurity and 5+ years of applied experience across platform-centric security areas, such as:

1. Threat modeling
2. Vulnerability assessments
3. Secure score improvements and remediations
4. Encryption
5. IAM (Identity and Access Management)
6. Network protocols
7. Software development
8. API integration

• Familiarity with various security frameworks and guidelines (e.g., NIST, NIS2, DORA, ISO, OWASP)
• Ability to reconcile design documentation and architecture with industry standards and best practices
• Knowledge of GDPR, HIPAA, PCI DSS, and other compliance regulations
• Hands-on experience securing Microsoft Azure & M365 environments, including:
• Microsoft cloud-based security tools (Purview, Defender XDR - Sentinel, MCAS, etc.)
• Understanding of SaaS-based security and controls
• Practical experience delivering enterprise-level cybersecurity solutions and controls
• Advanced knowledge of agile methodologies, such as:

-Continuous integration & delivery

-Application resiliency

-Security

• Proficiency in software applications and technical processes within technical disciplines such as:

-Public cloud, AI, machine learning, mobile security, etc.

-Ability to evaluate current and emerging technologies to recommend the best solutions for future state architecture

-Strong communication skills, especially with senior business leaders

• What You Are Responsible For
• Providing guidance and advice regarding Microsoft 365 services and all its components
• Advising on activities related to new/incoming business requests and IT strategy to help TriStratus build its cybersecurity function
• Supporting migration activities/projects

Offering end-user communication guidance on:

-New features

-Changes

-Planned activities

-Maintenance

-Maintaining a continuous learning mindset to stay updated on new technologies and industry trends