ABOUT US:

Cramium Labs (www.cramiumlabs.com) is a division of CrossBar, Inc. (www.crossbar-inc.com) designing microcontrollers based on ARM M-series and Risc-V CPUs with peripherals including advance security accelerators and countermeasures.

REQUIREMENTS:

• Education: Bachelor’s degree in Cybersecurity, Computer Science, or a related field (or equivalent experience).
• Experience: 2-5+ years in cybersecurity, DevOps, SecOps, or systems engineering with a focus on security.
• Some familiarity with at least one (and preferably more than one) of our main deployment channels: Cloud Native app, Mobile App, Embedded App, and Browser extension.
• Top priorities are Cloud and Mobile.
• Experience with SIEM and/or CNAPP
• Some familiarity with EPP/EDR/MDR/XDR practices.
• Some familiarity with CI/CD flows, particularly relating to security
• Knowledge of container security (Docker, Kubernetes).
• Understanding of compliance frameworks (ISO-27001, SOC 2).
• Soft Skills: Strong analytical, problem-solving, and communication skills; ability to work under pressure in incident response scenarios.
• Certifications (optional): CISSP, CEH, CompTIA Security+, AWS Certified Security Specialty, or Certified Kubernetes Security Specialist (CKS).

ABOUT THE ROLE:

We are seeking an experienced Security Operations leader to establish and run SecOps function as a new Department within the company. Operations include deployment of cloud-native applications on Google Cloud Platform (GCP) or other similar services, deployment of mobile applications on iOS and Android, and deployment of embedded software on a hardware device designed by the company. The ideal candidate will have experience managing Security Operations for products with large user bases, including strategies for managing multiple products across multiple accounts and entities. Experience with cryptography is advantageous.

KEY RESPONSIBILITIES:

• Build SecOps function within company and determine SecOps roadmap and function. Collaborate with other teams such as:
• Cloud/Mobile Software Team: Help to embed security controls into CI/CD pipelines, infrastructure, and applications using tools such as Blackduck DCA/SAST/DAST. Recommend and implement delineation responsibilities between SecOps and DevOps.
• Embedded Software Team: Help deploy and run internally-generated tools for signing and deploying embedded SW to our proprietary HW devices, before and after sale.
• Legal and Certification: Collaborate to determine and implement relevant regulatory compliance and certification requirements for SecOps.
• Marketing & Business: Collaborate to set and meet SecOps goals for our overall product marketing and performance.
• IT: Collaborate with internal IT support.
• Create, implement and maintain SecOps functions within company, such as:
• Threat Detection & Response: Monitor systems for vulnerabilities and incidents using SIEM tools such as Google SecOps and respond to security alerts, performing root cause analysis and remediation.
• CNAPP: Monitor Cloud Native portions of application with CNAPP tools such as Google Security Command Center.
• Access Control: Work with IT and HR to implement and manage identity and access management (IAM) policies, multi-factor authentication (MFA), and role-based access controls (RBAC).
• Automation: Develop scripts and automation workflows (e.g., Python, Bash) to streamline security processes, such as vulnerability scanning and patch management.
• Compliance & Audits: Ensure systems adhere to regulatory standards (e.g., GDPR, HIPAA, SOC 2) and support audits by maintaining security documentation and controls.
• Incident Management: Lead or support incident response efforts, including forensic analysis, mitigation, and post-incident reporting.
• Vulnerability Management: Conduct regular vulnerability assessments, penetration testing, and risk analyses to proactively address security gaps.
• Title and compensation dependent on candidate qualifications and experience.