Responsibilities
- Lead a structured sprint based implementation program including planning, governance, execution, and executive reporting
- Partner with security leadership including CISO, SOC, Cyber Threat Intelligence, and Detection Engineering to define priorities, KPIs, and a twelve month CTEM roadmap
- Deliver executive level insights including risk posture, attack path analysis, and prioritized remediation strategy
- Architect and deploy SafeBreach simulators and Propagate capabilities across enterprise, cloud, and remote environments
- Define simulator placement strategy, data asset modeling, and detection validation frameworks
- Design and execute threat informed scenarios aligned to real world adversaries such as ransomware groups, identity based attacks, and industry focused threat actors
- Simulate the full attack lifecycle including discovery, lateral movement, credential abuse, and data exfiltration
- Continuously validate effectiveness of security controls including endpoint detection and response, SIEM, data loss prevention, email security, identity, and network controls
- Integrate SafeBreach with enterprise security platforms including SIEM, EDR, IT service management, and ticketing solutions
- Build closed loop remediation workflows with automated retesting and validation
- Partner with Detection Engineering and Cyber Threat Intelligence teams to enhance detection logic and ATT and CK aligned coverage
- Develop dashboards and reporting for executive, SOC, and engineering audiences
- Deliver training and enablement to transition program ownership to internal teams.
Technical Qualifications
- Seven to ten or more years of cybersecurity experience with focus on threat detection, red teaming, purple teaming, or exposure management
- Hands on experience with breach and attack simulation platforms such as SafeBreach or comparable technologies
- Strong understanding of adversary tactics, techniques, and procedures and the MITRE ATT and CK framework
- Experience with enterprise security tooling including SIEM, EDR, identity, network security, and data protection platforms
- Proven ability to design and implement security architectures across on premises and cloud environments
- Experience integrating security tools with ServiceNow, Jira, or similar platforms.