Information Security Lead

Gridware's mission is to create a future where power outages and electric grid hazards (think wildfire ignition) are a thing of the past. We provide a truly full-stack (hardware + firmware + software) solution for the real time monitoring of America’s critical infrastructure. The system centers around low-cost hardware platforms that are easily and permanently deployed to power poles. The platform detects and predicts physical fault phenomena, expedites repairs during power outages, and helps utilities demonstrate risk reduction to regulators through comprehensive asset health profiles.

Gridware's technology is designed to unlock essential values for other adjacent verticals. Our unique positioning allows us to solve some of the world's most burning challenges -- from helping policy makers make data-driven infrastructure decisions to helping farmers overcome micro-climate challenges. While others turn a blind eye to these aged and highly-regulated industries, we at Gridware believe it's our duty to find win-for-all scenarios that lead to a prosperous future for coming generations.

Gridware is a privately-held, YC-backed company with funding from some of the best climate & hard tech investors in the world.

Role Description

The Information Security Lead is responsible for managing and enhancing the organization’s information security posture to protect the confidentiality, integrity, and availability of information assets. This role involves developing and implementing security policies, conducting risk assessments, responding to security incidents, and ensuring compliance with relevant regulations and standards. The ideal candidate will possess strong technical expertise, leadership skills, and the ability to work collaboratively with various departments.

Responsibilities 

This is what you’ll be doing:

Security Strategy and Planning:

• Develop and implement a comprehensive information security strategy aligned with business objectives.
• Conduct regular risk assessments and vulnerability analyses to identify and mitigate security risks.

Policy and Compliance:

• Develop, implement, and enforce security policies, procedures, and standards.
• Ensure compliance with industry standards, regulations, and best practices, such as ISO 27001, NIST, GDPR, and HIPAA.
• Coordinate and support internal and external audits.

Security Operations:

• Monitor security systems, networks, and applications for potential threats and vulnerabilities.
• Respond to and manage security incidents, including investigation, containment, and remediation.
• Conduct regular security assessments, penetration tests, and security audits.

Security Awareness and Training:

• Develop and deliver security awareness training programs for employees.
• Promote a culture of security awareness throughout the organization.

Incident Response:

• Develop and maintain an incident response plan.
• Lead incident response activities, including coordination with external partners and stakeholders.

Technology Management:

• Evaluate, implement, and manage security technologies and tools.
• Stay current with emerging security trends, threats, and technology solutions.

Required Skills

To move forward in the application process you should have all of these:

• Bachelor’s degree in Information Technology, Computer Science, or a related field
• 7+ years of professional experience in information security or cybersecurity
• Relevant certifications such as CISSP, CISM, or CISA
• Strong knowledge of information security principles, compliance management, cybersecurity frameworks, and best practices
• Hands-on DevOps/Infrastructure/SRE experience working with security technologies such as firewalls, intrusion prevention systems, and encryption in linux-based systems

Most relevant to people with degrees in:

• Information Technology
• Computer Science
• Computer Engineering

Application

Although we do not require candidates to submit a cover letter, candidates who wish to have their application stand out are invited to write a cover letter outlining one or all of the following things in a bullet-point format:

• Where you have acquired the required skills
• Which (if any) of the bonus skills you have and where you acquired them
• Why you are interested in this role

Benefits

We offer competitive benefits that help employees to thrive and grow. These benefits include:

• Flexible starting hours to reduce commute
• Health Insurance = We cover 100% of Gold and Platinum health insurance plan premiums and up to $800 of plan premiums for dependents.
• Dental & Vision = We also cover 100% of the premiums of an excellent Dental and Vision Plan and 100% of the premiums for one dependent.
• Paid Parental Leave
• 401K
• Free parking and a commuter allowance

Gridware is an equal-opportunity employer. We want applicants of diverse backgrounds and hire without regard to color, gender, religion, national origin, citizenship, disability, age, sexual orientation, or any other characteristic protected by law.

Gridware is currently located in Walnut Creek but will be headquartered in San Francisco starting January 2025.