Customer.ioRemote
Information Security Specialist
Oregon, United States of America
Full Time
2 days ago
$151,000 - $170,000 USD
No Visa Sponsorship
Key skills
AWSCloudCyber SecurityGoogle Cloud PlatformAIMLGCPGoogle CloudSaaSLeadershipCommunicationRemote WorkCloud Security
About this role
Role Overview
- Develop and maintain a practical framework for evaluating, approving, and securely deploying AI tools across the organization.
- Own our vulnerability management program — scanning, triaging, coordinating remediation, and tracking resolution across infrastructure, applications, and endpoints.
- Support and improve our compliance posture (SOC 2, ISO 27001).
- Lead security incident response — investigate alerts, coordinate containment, document root causes, and drive improvements.
- Manage and tune security tooling (EDR, SIEM/logging, DLP, email security, identity and access management controls).
- Conduct security reviews of third-party vendors.
- Develop and maintain security policies, standards, and runbooks.
- Partner with Platform Security and Engineering on application security topics.
- Drive security awareness initiatives.
- Monitor and assess emerging threats and translate them into actionable recommendations for leadership.
Requirements
- 4+ years of experience in information security, cybersecurity, or a related technical discipline.
- A pragmatic, enabling mindset toward AI — you understand the risks but you're not reflexively restrictive.
- Hands-on experience with compliance frameworks (SOC 2, ISO 27001).
- Strong knowledge of cloud security fundamentals (AWS, GCP, or similar).
- Experience with security tooling — EDR, SIEM, vulnerability scanners, DLP, and email security platforms.
- Solid understanding of incident response processes.
- Familiarity with SaaS environments and the security challenges that come with them.
- Strong written communication skills.
- Self-starter mentality.
- Experience evaluating AI/ML tools for data privacy and security risks is a strong plus.
- Experience in vendor risk assessment and third-party security reviews.
- Security certifications (CISSP, CISM, CompTIA Security+, or similar) are a plus but not required.
Tech Stack
- AWS
- Cloud
- Cyber Security
- Google Cloud Platform
Benefits
- 100% coverage of medical, dental, vision, mental health, and supplemental insurance premiums for you and your family
- 16 weeks paid parental leave
- Unlimited PTO
- Stipends for remote work and wellness
- Professional development budget and more.