Information Security Lead

February 25

Apply Now

Receive Emails with Similar Jobs

Enveritas

WebsiteLinkedInAll Job Openings

Enveritas is a company dedicated to providing sustainability assurance for the coffee industry. The organization focuses on environmental protection, social responsibility, and ensuring fair economic practices for smallholder coffee farms around the world. By utilizing geospatial analysis and satellite imagery, Enveritas enhances verification accuracy and efficiency, enabling small farmers to engage in the sustainable coffee market without fees. They work with coffee roasters to address supply chain sustainability issues, offering actionable insights and a responsible sourcing claim for companies that meet their sustainability criteria. Enveritas advocates for a pragmatic approach that protects the environment and improves the livelihoods of coffee farmers, visiting thousands of farms globally to uphold their sustainability standards.

Sustainability • Coffee • Technology • Supply Chains • Machine Learning

51 - 200 employees

Founded 2018

🌾 Agriculture

💰 $120k Seed Round on 2018-08

📋 Description

• Do you want to work for a mission-driven non-profit, managing the cybersecurity of systems that will contribute to helping the livelihoods of millions of coffee farmers around the world? • Enveritas is a 501(c)3 non-profit and Y Combinator-backed startup looking to hire an information security lead. • You will be responsible for cybersecurity policies and practices, ensuring compliance with cybersecurity frameworks and working across teams to implement security best practices. • Your work will include: Assess and improve security policies and risk posture by reviewing audits, prioritizing key improvements, and ensuring compliance with best practices. • Manage security configurations and access controls across Google Workspace, AWS/GCP, and SaaS vendors. • Lead security operations and incident response, including monitoring alerts, running tabletop exercises, and implementing MDM, patch management, and Zero Trust initiatives. • Drive security awareness and training, working with internal teams to enhance security practices, refine IAM roles, and strengthen data protection. • Support IT operations and system security – act as a backup for our Head of IT, assisting with access management, IT troubleshooting, and ensuring secure day-to-day operations.

🎯 Requirements

• 5+ years of experience in cybersecurity, IT security, or a related field, with a focus on policy development, risk management, and incident response. • Strong understanding of identity and access management (IAM), data protection, compliance frameworks (e.g., GDPR, SOC 2, ISO 27001), and security operations. • Hands-on experience managing security configurations in Google Workspace, AWS/GCP, and SaaS applications. • Experience developing and implementing security policies, including asset management, risk governance, and third-party risk management. • Strong communication skills and experience collaborating across IT, legal, and engineering teams.

🏖️ Benefits

• 401k with matching contributions • Medical/Dental/Vision • Flexible Spending Account (FSA) • 4 weeks vacation in addition to 13 standard holidays • personal/sick time • Annual education budget for conferences, books, and other professional development opportunities. • Annual all-company retreat and annual Engineering & Data meetup. • Field visits to our Country Ops teams in coffee-growing countries such as Colombia, Costa Rica, Ethiopia, and Indonesia.