IT Security Manager
Los Angeles, CA
At HopSkipDrive, our goal is to create opportunity for all through mobility.
We’re a technology company that solves complex transportation challenges where there is a heightened need for safety, equity, and care. Through our marketplace, we connect kids, older adults, or anyone needing extra support to highly-vetted caregivers on wheels. Through our software, we solve the biggest transportation challenges facing schools and school districts around the country.
Founded by three moms as a solution to their own transportation challenges, we’ve now facilitated more than 3.3 million rides and operate across over 13 states across the country. We continue to expand at a rapid pace, making the Inc. 5000 list four times, as well as the Deloitte 500 Fast-Growing Technology list. HopSkipDrive is a Series D company and has raised $100M in funding to date.
Your role:
Safety is everything, and that includes cybersecurity. You will leverage business knowledge and apply industry standards and best practices to HopSkipDrive’s people, processes, and technology. This includes identifying and mitigating security threats and remediation vulnerabilities, safeguarding sensitive information, and ensuring secure configurations of our technology. The ideal candidate will have a solid technical background in IT and the ability to apply cybersecurity principles using an analytical approach. This candidate must excel and collaborate with other departments and stakeholders to achieve the information security program objectives.
What you’ll do:
Information Security:
- Ability to administer a comprehensive information security program that encompasses the following:
- Configuration and monitoring of device management solution
- Administer system and application monitoring
- Implementation of Data Classification program
- Configure Data Loss Prevention
- Configure Patch Management
- Vulnerability management
- Security Audit Logging Review
- Incident Response
- Ensure compliance with SOC2 requirements, NIST CSF Framework, and CIS Controls.
- Support employee onboarding and offboarding processes and application provisioning and de-provisioning through automation
Information Technology:
- Act as primary internal contact for IT matters/decisions with our outsourced IT vendor
- Secure, standardize, and optimize business processes through technical controls in various company projects.
- Document procedures and guidelines in coordination with IT vendors.
- Manage orders for computer equipment and supplies for new and existing employees, manage expense reporting
- Backup for urgent IT matters outside business hours
Skills and Experience:
- 8+ years of experience in IT security with a strong understanding of security principles and best practices.
- Relevant security certifications (e.g., CISSP, CISM, SANS).
- Strong skills in assessing application misconfigurations, testing effects of secure configuration, and implementing in Production.
- Experience with data loss prevention (DLP) technologies and hands-on administration.
- 5+ years of hands-on IT administration tasks, including application management, endpoint management, and patch management.
- Experience with data classification and labeling.
- Track record of success in an environment with similar technologies and processes.
- Strong understanding of SaaS security best practices.
- Excellent communication, interpersonal, and problem-solving skills.
Nice to have experience:
Experience in client incident response, effectively managing AI Security assessments and successfully navigating contracts and RFP responses and contract negotiation about information security requirements, ensuring robust protection and compliance.
Our Investment In You
We want you to be an owner in our company and share in executing our vision, so every full-time employee has equity. In addition, we offer competitive market comp, flexible vacation, FSA, medical, dental, and vision, 401(k), and an opportunity to work for a uniquely positioned, VC-backed company in a hugely attractive space with significant upside potential. HopSkipDrive is committed to fair and equitable compensation practices. The base salary range for this role is $135,000 to $165,000. Final compensation for this role will be determined by several factors such as a candidate’s relevant work experience, skill set, and specific work location. The total compensation package for this role also includes equity stock options.
HopSkipDrive is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, veteran status, or any other protected class.
* This role will be fully remote in one of the following states AZ, CA, CO, CT, DC, FL, GA, IL, IN, KS, MA, MD, MI, MN, MO, NC, NJ, NM, NV, NY, OH, OK, OR, SC, TN, TX, UT, VA, WA, WI**
ApplyJob Profile
CA CO DC FL Fully remote IL IN KS MD MI MO NC NJ NM NV NY OK OR Remote SC TN TX UT VA WA WI
Benefits/PerksDental Equity Flexible Vacation FSA Fully remote Medical Vision
Tasks- Administer information security program
- Configure and monitor device management
- Document procedures
- Ensure compliance
- Implement data classification program
- Manage computer equipment orders
- Manage IT vendor relations
AI Analytical Application management Automation Classification Communication Compliance Configuration Management Contract Negotiation Cybersecurity Data Classification Data Loss Prevention Endpoint Management Excel Incident Response Interpersonal IT Security Mobility Monitoring Negotiation Patch Management Problem-solving SaaS SaaS Security Security Security Audit Logging Testing Transportation Vulnerability Management
Experience8 years
Education Certifications TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9