Security DevOps

The Role:

We’re looking for a Security Contractor to support key initiatives across our security, compliance, and IT operations programs. You’ll work closely with our Security & IT team to help mature our security posture, improve internal controls, assist in audit readiness, and drive execution on critical projects. This is a hands-on role ideal for someone who thrives in a fast-paced, dynamic SaaS environment.

Responsibilities:

• Support internal security and compliance initiatives, including SOC 2, risk assessments, and vendor reviews.
• Track performance and progress across internal and external security audits, including managing scope, timelines, involved departments, and audit outcomes.
• Manage security training compliance, including developing training modules, monitoring completion rates, and following up on outstanding assignments.
• Assist with implementation and documentation of security controls, policies, and processes.
• Assist with SIEM configuration, log collection, alert tuning, and monitoring workflows.
• Conduct security reviews on new vendors, tools, and integrations.
• Coordinate and support vulnerability scanning, penetration testing, and remediation tracking.
• Collaborate on access reviews and user lifecycle automations.
• Help operationalize and improve incident response, BCP/DR plans, and monitoring strategies.
• Create and maintain clear SOPs and KBAs for repeatable security and IT workflows.
• Collaborate cross-functionally with departments to identify flaws in security systems and recommend improvements to strengthen the company’s overall security posture.

Requirements:

• 3–5+ years of experience in a security or compliance role (preferably in SaaS or cloud-native environments).
• Google Admin Experience
• Strong understanding of SOC 2, ISO 27001, and/or NIST frameworks. 
• Experience with access management, vulnerability management, vendor risk assessments, and security policies.
• Hands-on experience with SIEM platforms and log monitoring tools.
• Ability to work independently and deliver results with minimal supervision.
• Excellent communication and documentation skills.

Great to Have:

• Experience with scripting or automation
• Familiarity with AI governance or SaaS security tools.
• Familiarity with tools such as JumpCloud, Google Workspace, BetterCloud, Knowbe4 and similar Platforms.