Head of Information Security

Organization:

Gecko Robotics

Location:

Washington, DC

Description:

About the job

What We Do

Gecko Robotics is helping the world’s most important organizations ensure the availability, reliability, and sustainability of critical infrastructure. Gecko's complete and connected solutions combine wall-climbing robots, industry-leading sensors, and an AI-powered data platform to provide customers with a unique window into the current and future health of their physical assets. This enables real-time decision making to increase the efficiency and safety of operations, promote mission readiness, and protect the environment and civilization from the effects of infrastructure failure.

Role at a Glance

As the Head of Information Security, you will be responsible for all of the strategic and operational decisions that impact the Information Security of the people, process, Hardware and Software that powers Gecko. As the Head of InfoSec, you will embed deeply with Information Technology, Software Platform and in the business to understand challenges and gaps in workflows, and ensure the security, stability, and scalability of Geckos infrastructure. The Head of InfoSec will also be a key driver of internal data and working with Gecko leadership to help maximize resources. Additionally, you are process minded but action oriented and know how to walk the line of immediate fixes and scaling for the future.

What You Will Do

• Identify and assess security risks and develop strategies to mitigate them.
• Conduct regular security audits and penetration testing to ensure the robustness of systems.
• Manage the response to security incidents and coordinate recovery processes.
• Create, update, and enforce security policies, standards, and guidelines.
• Ensure compliance with commercial industry and U.S. Government specific laws, regulations, policies, and standards, such as ISO 27001, SOC2, GDPR, FedRAMP, CMMC, NIST SP 800-171/2, NIST SP 800-161, and Department of Defense (DoD) IL4/IL5.
• Embed deeply with Business Stakeholders to define InfoSec Roadmap and OKRs.
• Create processes and infrastructure to respond quickly and effectively to the evolving Cybersecurity needs of the business.
• Build the Information Security team at Gecko, hiring, managing performance and promoting Information Security team members.
• Negotiate and manage relevant vendors as well as budgets to ensure optimal investments.
• Provision and management of Gecko corporate devices.
• Support of the technical operations and maintenance needs of remote offices.
• Define and monitor security controls on Gecko infrastructure managed by IT.

Technologies We Use

We use a variety of technologies, but we primarily operate using Python, React, and Typescript with Google Cloud Platform (GCP) as our cloud provider. Workstations are Mac and Windows. This is a non-exhaustive list, and we are tech agnostic in our interview process, so we encourage you to apply regardless of your background.

Qualifications:

About You

You are a forward-thinking information security professional with a strong technical background and a strategic mindset. Your experience and passion for cybersecurity are matched by your ability to lead and inspire teams in a collaborative environment. You thrive in dynamic, fast-paced settings and are excited by the opportunity to build and guide information security initiatives from the ground up in a small but growing company.

Required Skills

• Deep understanding of security protocols, cryptography, authentication, authorization, and security frameworks
• Experience establishing and maintaining Information Security compliance with relevant frameworks for both commercial and U.S. Government business (e.g. NIST 800-171/2, NIST 800-161, FedRAMP Moderate/High, DoD IL4/5, CMMC, ISO27001, SOC2)
• Associate or Bachelor's degree in Computer Science, Information Technology, System Administration, or a closely related field (or equivalent experience)
• 5-7 years of Information Security experience with advancing responsibilities
• Outstanding oral and written communication skills
• Operational and People leadership experience, with proven experience managing people
• 1-3 years of startup experience
• 1-3 years of experience administering a rapidly scaling network infrastructure
• 1-3 years of experience managing Information Security compliance particular to U.S. Government (preferably DoD) customers
• Effective stakeholder management
• Proven experience in a senior information security role, preferably within the technology or robotics industry
• Experience managing MSSP
• Experience with DoD incident response and reporting requirements and procedures (DFARS 252.204-7012)

Preferred Skills

• Certifications such as CISSP, CISM, or equivalent
• Familiarity with emerging Information Security Technologies and paradigms
• Experience obtaining and managing ATO for Cloud Service Offerings for USG (particularly DoD) clients
• Working knowledge of Cybersecurity Supply Chain Risk Management (NIST 800-161) controls

Compensation:

At Gecko, our people are our greatest investment. In addition to competitive compensation packages, we offer company equity, 401(k) matching, gender-neutral parental leave, full medical, dental, and vision insurance, mental health and wellness support, ongoing professional development, family planning assistance, and flexible paid time off.

Gecko values collaboration, innovation, and partnership, and we believe we do our best work when we're together in person. We’re an office-first culture but understand that sometimes you may need to work from home. Many people are in the office five days a week, others need a bit more flexibility. Ultimately, we care about the outcomes we achieve - and creating a culture of autonomy and trust that enables that impact.

Gecko is committed to creating a culture of inclusion and belonging, and we are proud to be an equal opportunity employer. We believe it is our collective responsibility to uphold these values and encourage candidates from all backgrounds to join us in our mission to protect today’s infrastructure and give form to tomorrow’s. All qualified applicants will be treated with respect and receive equal consideration for employment without regard to race, color, creed, religion, sex, gender identity, sexual orientation, national origin, disability, uniform service, veteran status, age, or any other protected characteristic per federal, state, or local law. If you are passionate about what you do and want to use your talents to support our critical mission, we’d love to hear from you.

Compensation Range: $190K - $270K

How to Apply:

Apply Online

URL:

https://jobs.ashbyhq.com/gecko-robotics/f28f4aa2-be33-417c-89e5-6d14cc4e82db

Posted:

27-Nov-2024

Return to list of jobs.