Security Operations Lead

 

About the Role

At Torii, security is the foundation of our business. While we have built a robust security infrastructure, we are looking for a Security Operations Lead who can take what’s established and drive it to the next level. This is a high-impact role where you will act as a strategic owner, ensuring our security posture evolves as fast as our AI-first platform.

You will work closely with our C-level leadership, translating complex security risks into clear business decisions. Beyond internal operations, you will have the unique opportunity to partner with our Product team, providing your expert feedback and helping shape the features that Torii delivers to customers. If you are a proactive professional who thrives on autonomy and wants to influence both the company’s security and its product, this is the challenge for you.

Key Responsibilities

• Security Strategy: Leverage your experience to define, implement, and continuously elevate Torii's Information Security roadmap and practices.
• Infrastructure & Cloud Security: Deploy and manage security solutions across our AWS cloud environment and Mac/Linux endpoints (EDR, SIEM, Patch Management).
• Compliance & Privacy: Own and expand Torii’s security and privacy certifications (SOC2, ISO 27001, GDPR, CCPA).
• Application Security: Partner with Engineering to secure our SDLC and adapt security practices for modern development workflows (including Vibe Coding and AI-assisted development).
• Incident Response: Lead the company’s incident response efforts, from detection to post-mortem analysis.
• Third-Party Risk: Manage Torii’s Vendor Risk Management program, assessing the security posture of our supply chain.
• Trust & Enablement: Directly support the sales cycle by responding to customer security questionnaires and leading annual external penetration testing projects.
• Security Culture: Conduct security awareness training sessions to foster a "security-first" mindset across all Torii staff.
• GRC Collaboration: Partner with the Legal team on GRC efforts to ensure security alignment with business and legal requirements.

Desired Skills & Experience

• 3+ years in Information Security or Security Engineering.
• AWS Hands-on: Solid experience securing AWS cloud environments.
• Compliance: Knowledge of SOC2, ISO 27001, GDPR, and CCPA.
• OS Security: Experience protecting Mac and Linux environments.
• Threat Landscape: Deep understanding of modern attack vectors and mitigation.
• Vendor Risk: Experience assessing 3rd party vendors' security posture.
• Ownership: A self-starter who can lead projects independently from A to Z.

What You'll Love About Us

• You will join the leading company in the SaaS Management Platform market and have a significant impact on the company’s success and overall trajectory.
• Torii’s security is front and center in everything we do and you will take a key role in leading our security posture, interfacing with multiple teams and having cross-department influence.
• You will be part of a team of great people who are passionate about their work and build together the future of SaaS Management.