As entrepreneurs ourselves, we understand the unique challenges startups face managing their rollercoaster growth. We’ve lived it. We know that even well-funded teams can lack the bandwidth to recruit, train, and integrate the operations staff needed to meet growing demand. And that even when the right employees are in place, many companies lack the crucial mid-management layer needed to drive employee performance and process improvements. Hugo was created with the high-growth startup in mind. We custom build or augment existing operations teams for companies in scaling mode, leaving founders and senior management to focus on what matters most: growth.
Key Responsibilities
WHAT YOU'LL BE DOING
- Enforce security policies, standards, and procedures for industry, regulatory and client compliance.
- Drive proactive SOC monitoring and reporting across information systems, influencing business decisions.
- Maintain the security of all information systems including Mac/Windows OS devices, network infrastructure, AWS cloud, Google Workspace, and business SaaS platforms.
- Design a robust integrated security architecture with defense-in-depth strategies across users, endpoints, networks/connectivity, platforms, applications and database domains.
- Engineer and implement cost-effective solutions appropriate for dynamic and scale-up environments.
- Perform threat modelling and technical risk assessments (vulnerability scans, penetration tests, software updates, patches etc.), identify gaps and recommend technical controls.
- Collaborate with the IT-GRC team and ensure security risks are captured in the broader IT risk register.
- Provide general information security guidance & advisory support to the business.
- Drive internal and external client security engagements to establish business needs and requirements.
Must-Have Qualifications/Experience
WHAT QUALIFICATIONS YOU’LL NEED
- Proven experience within Incident Response situations and demonstrated ability to handle and maintain confidential information.
- Must possess strong written and verbal communication skills, and be capable of understanding, documenting, communicating, and presenting technical issues in a non-technical manner to audiences.
- Be a team player and enjoy collaborating on cross-functional teams
- Familiar with compliance and privacy regulations such as PCI, GDPR, CCPA, SOX, and other regulations/standards
- Self leadership skills and the ability to mentor or provide guidance to teams.
Preferred Background
- 7+ years hands-on security experience, with an IT Security focused role.
- Experience executing in a cloud-first technology and remote work organization.
- Proficiency to communicate and collaborate via Slack and can succinctly document technical details.
- Familiar with security controls or concepts related to various security community groups or standards: CISSP Domains, NIST cybersecurity & privacy frameworks, CIS benchmarks, OSI model
Method of Application
Signup to view application details.
Signup Now
