IT Security Lead

Ruby Labs is a leading tech company that creates and operates innovative consumer products across the health, education, and entertainment industries.

• At least 5 years of experience in IT security engineering or infrastructure security roles.
• Proven track record of building corporate security infrastructure from the ground up.
• Strong automation (e.g., n8n, getcakewalk, Slack workflows, jumpcloud) and basic REST API knowledge.
• Deep understanding of IT security operations (SecOps) best practices and frameworks.
• Strong engineering background with experience in infrastructure design and implementation.
• Hands-on experience with Google Workspace administration and security configuration.
• Expert knowledge of identity and access management, including user provisioning and deprovisioning workflows.
• Experience with SSO, SAML, OIDC, and identity federation technologies.
• Knowledge of Docker.
• Experience with IAM automation and orchestration.
• Understanding of compliance frameworks (SOC 2, ISO 27001, etc.).

Nice to have:

• Experience with automated user provisioning from Google Workspace to other services.
• Knowledge of zero-trust architecture principles.
• Basic knowledge of Typescript.
• Previous experience in a startup or high-growth environment.

Security Infrastructure & Engineering:

• Design and build operations security infrastructure and IAM from scratch.
• Develop, implement, and maintain comprehensive security policies, strategies, and protocols to safeguard intellectual property and prevent unauthorized access.
• Deploy and manage security tools and solutions, with preference for open-source technologies where appropriate.
• Utilize MDM software with other products to ensure organization-wide device security compliance and enforce consistent protection standards across all endpoints.
• Establish and enforce remote work security standards and best practices for company owned and BOYD devices.

Identity & Access Management:

• Design and implement access structure using identity provider.
• Manage user provisioning and deprovisioning workflows across all company tools and services.
• Automate access lifecycle management, including onboarding and offboarding processes.
• Control and audit access permissions to ensure principle of least privilege.
• Implement and maintain identity federation technologies across multiple platforms.

Google Workspace & Cloud Security:

• Administer Google Workspace with focus on security configurations and compliance.
• Configure policies like Context Aware Access, LDAP, SCIM, and other controls within Google Workspace.

Security Operations & Governance:

• Establish IT security operations (SecOps) best practices and standard operating procedures.
• Conduct regular security assessments and vulnerability management.
• Define security metrics and KPIs; provide regular security posture reports.
• Advise leadership on security risks, compliance requirements, and remediation strategies.

Process & Documentation:

• Develop and maintain comprehensive security documentation, runbooks, and policies.
• Streamline security-related processes for efficiency and effectiveness.
• Create and maintain disaster recovery and business continuity plans.
• Drive security awareness and training initiatives across the organization.

• Remote Work Environment: freedom to work from anywhere, anytime.
• Unlimited PTO: unlimited paid time off.
• Paid National Holidays.
• Company-provided MacBook.
• Flexible Independent Contractor Agreement offering flexibility, autonomy, tax advantages, networking opportunities, and freedom to work from anywhere.

Applicants must be located within approximately ± 4 hours of CET (Central European Time) to ensure optimal collaboration and communication during working hours.