• Manage and monitor enterprise security tools (EDR, DLP, vulnerability scanners, SIEM) to detect and respond to threats. • Partner with our engineering team to investigate incidents, conduct root-cause analysis, and implement preventive measures. • Administer identity and access management systems (Okta, SSO, MFA), ensuring principle of least privilege and conduct quarterly access reviews. • Serve as a key resource for SOC 2, GDPR, and related frameworks by facilitating audits, coordinating evidence collection, and managing customer security assessments. • Partner with stakeholders to update and enforce security policies, standards, and procedures. • Support privacy and compliance initiatives by documenting processes and aligning with legal/regulatory requirements. • Support enterprise risk management by collaborating with cross-functional stakeholders to evaluate threats, implement mitigation strategies, and ensure adherence to security and compliance frameworks. • Support secure employee onboarding/offboarding (access management, security training, equipment issuance and retrieval). • Administer and harden MacOS endpoints using enterprise tools such as Kandji. • Provide occasional IT troubleshooting and technical support, with a security-first mindset. • Research, evaluate, and deploy new security technologies and processes. • Automate repetitive tasks to improve detection, response, and compliance tracking. • Develop technical and procedural documentation that supports operational resilience.