Proactively manage security functions on WordPress-based websites, including security updates, to maintain a hardened environment.
Monitor centralized server logs, Web Application Firewalls (WAF), and malware alerts to identify and neutralize threats before they escalate.
Act as the primary internal point of contact during website product security incidents, driving containment, remediation, and thorough post-mortem analysis
Develop and enforce a "Security Gold Standard" checklist for all new site launches and third-party integrations.
Translate complex technical logs and security posture data into actionable insights for leadership teams.
Coordinate with internal stakeholders to provide transparent updates and guide client-facing teams on sensitive security communications.
Requirements
Minimum 2 years of experience in security, including website security best practices.
Proven track record of proactive threat hunting and maintaining Indicators of Compromise (IoCs)
Experience leading security incident response, including containment and post-mortem review
Familiarity with digital compliance standards such as GDPR and CPRA.
Strong ability to translate complex technical concepts into clear, actionable advice for non-technical teams
Relevant certifications such as CEH, Security+, OSCP or SSCP are highly desirable