Corporate Security Lead

Responsibilities

Corporate IT & Helpdesk

• Own all corporate IT: identity management (Okta), device management (Intune/Jamf/FleetDM), endpoint security, SaaS administration, and helpdesk.
• Provide and oversee hands-on IT support—new hire setup, desk deployment, A/V, asset management—while building automation to eliminate manual work over time.
• Drive Infrastructure as Code for IT systems. Build self-service tooling and integrations that scale operations without scaling headcount linearly.

SIEM & Security Operations

• Stand up Northwood’s SIEM—platform selection, log ingestion across ground stations and cloud infrastructure, correlation rules, and automated alerting.
• Work with product infrastructure engineers on building out things properly.
• Build SOC capabilities: detection and response playbooks, incident response processes, and continuous monitoring for distributed space communications infrastructure.
• Deploy and manage endpoint detection/response, email security, DLP, and zero-trust controls.

Team Building

• Hire and develop a team across security engineering and IT operations.
• Collaborate across engineering, network operations, and mission management as the primary IT and security subject-matter expert.

Basic Qualifications

• 5+ years in IT, security, or DevSecOps engineering with experience leading or building teams.
• Hands-on corporate IT background: identity providers (Okta, Azure AD), endpoint management, SaaS administration, and helpdesk operations.
• Experience deploying and operating SIEM platforms and building security monitoring programs.
• Basic knowledge of compliance frameworks (i.e. NIST 800, SOC 2, FedRamp).
• Technical depth with Infrastructure as Code, scripting (Python, Bash, PowerShell), and cloud environments (AWS).
• Experience in regulated or compliance-heavy environments.
• Ability to obtain and maintain TS/SCI clearance.

Preferred Qualifications

• Active TS clearance or higher.
• Experience in aerospace, defense, or critical infrastructure industries.
• Hands-on with SIEM platforms (Splunk, Sentinel, Panther) and EDR solutions (CrowdStrike, SentinelOne).
• Experience scaling IT and security from startup to enterprise.
• ITAR compliance experience.
• CISSP, CISM, CISA, or similar certifications.