Hansen Gress is a fast-growing, Alaska-based Managed Services Provider with deep roots in Juneau and active expansion into Anchorage. We’re 23 people today, scaling quickly, and investing in the leadership capacity needed to grow sustainably and serve our clients with consistency and excellence.
We are not a corporate machine — and we don’t want to be. We run lean, trust our team, and believe in leadership that works with the team, not above it. We are relationship-first, execution-focused, and allergic to bureaucracy.

WHAT WE’RE LOOKING FOR

As we continue to grow, we’re looking for a Director of Security, Compliance & Risk. This role is equivalent to a security executive in scope, but with the builder’s mentality of a startup.
We are looking for a security leader who thrives on building programs from the ground up — someone who will take ownership of both our internal security posture and create a client-facing vCISO service that becomes a cornerstone of our growth strategy.
This person is not just managing existing security programs — they are creating them. You’ll build the frameworks, write policies, handle incidents, and develop the services that our clients will pay premium rates for.

WHAT YOU’LL ACTUALLY DO

Build Internal Security Excellence:

• Own Hansen Gress’s internal security posture: NIST alignment, HIPAA compliance, risk management
• Implement principle of least privilege, JIT access, and other enterprise-grade security controls
• Manage all security incidents and breaches, keeping ownership out of escalations.
• Design and enforce security policies that protect both HG and client data
• Lead internal security audits, tabletop exercises, and compliance assessments

Create Client-Facing vCISO Services:

• Design and launch our vCISO service offering from scratch
• Package security advisory services that integrate with our MSP contracts
• Develop BCDR planning, risk assessments, and compliance readiness programs
• Build frameworks for NIST CSF, CMMC, HIPAA, and other compliance standards
• Create client security dashboards, reports, and executive briefings

Lead Security Operations:

• Engineer our client security stack for maximum effectiveness and margins
• Be the subject matter expert when clients face BEC, ransomware, or other threats
• Coordinate incident response across client environments
• Train and develop our technical team on security best practices
• Manage vendor relationships for security tools and services

WHY THIS ROLE IS SPECIAL

• You’re not inheriting someone else’s security program — you’re building it from day one
• Direct impact on company valuation through both risk reduction and revenue generation
• You’ll be respected as a peer-level leader, not a subordinate
• Opportunity to shape security culture at a fast-growing, high-integrity company
• Your security program becomes a competitive differentiator in Alaska’s MSP market
• Clear path from cost center to profit center as vCISO services scale