Information Security Lead

It is truly an exhilarating time at Resilinc. With our exceptional team, cutting-edge products, and a dedicated customer base, we share a collective vision to markedly enhance supply chain resilience through the power of technology and data. The CTO is currently spearheading the formation of a nimble engineering team in the US, complementing our existing Product Development team in India. This strategic endeavor is designed to cater to the diverse needs of our customer base, encompassing both Commercial and Government customers.

The objective behind these additions and adjustments is to elevate and broaden our engineering capabilities. This will enable us to harness the potential of Azure cloud services effectively and efficiently. The overarching goal is to enable Resilinc's hyper growth and cultivate a culture of product innovation and customer focus within our organization.

About The Role (US Citizenship required)

As the Information Security Lead, you will partner with all parts of the business to build security solutions that help secure the brand and protect the organization, company and customer environments. You will be responsible for executing security engineering programs and managing security technologies across the board. The ideal candidate for this role is someone who can build innovative ways to deliver frictionless security capabilities to enhance the security posture of the organization.

Key Responsibilities

• Deploy and operate security solutions and supporting infrastructure in cloud and data center environments in support of internal customer security needs and FedRAMP requirements.
• Manage a scalable and highly available solution for security logging and drive efforts of logging onboarding for increased security visibility.
• Develop and automate Security tasks that span from Security Operations to Infrastructure as Code in support of InfoSec initiatives.
• Leading and managing requirements per FedRAMP specifications/controls and turning them into operational models and implementations for the InfoSec organization
• Develop and maintain metrics and data models related to the FedRAMP program to drive compliance and optimization improvements.

Technical Skills and Capabilities

• 4+ years experience in security engineering, building and managing security solutions across the stack (on-prem and cloud)
• Strong understanding of logging and data management best practices and strong experience in any logging and/or SIEM platform
• Proficiency in any scripting language (Python, PowerShell, Perl, Ruby, shell, etc.)
• Working experience in Azure (preferred), AWS or GCP
• Experience with security automation and data management tools (XSOAR, Phantom, Snowflake, etc)
• Leadership experience collaborating with internal customers to establish strong requirements, prioritize work based on outcomes that drive risk reduction and operational effectiveness
• Prior experience working in environments with SOC 2 Type 2, NIST 800-53, NIST 800-171 controls or FedRAMP requirements

Preferred Qualifications

• Security certifications are a plus (CISSP, CISM, SANS certs, vendor certs, etc.)
• Basic knowledge of container technologies (Docker, Kubernetes, etc), microservices and CI/CD pipelines