Security Specialist

Mexico

Apply with AI Apply

$60,000 – $85,000Compensation

Senior (5 to 8 years)Experience Level

Full TimeJob Type

UnknownVisa

Construction TechnologyIndustries

Requirements

Candidates should have 5+ years in security, infrastructure, or DevOps roles with proven ownership of SOC 2 Type II audit cycles at a SaaS company. Hands-on AWS security experience, familiarity with Terraform and CI/CD pipelines, and experience with tools like Datadog, Snyk, or other SIEM platforms are required. Strong written communication skills and a proactive, self-sufficient, pragmatic, and collaborative startup mindset are also essential. Familiarity with Vanta, Drata, ISO 27001, or similar compliance tools, basic secure coding knowledge, and experience supporting phishing simulations or employee security training are considered nice to have.

Responsibilities

The Security Specialist will own and lead SOC 2 Type I & II readiness, audits, and ongoing compliance. They will develop and enforce internal security policies and controls, improve and monitor AWS security posture, and manage secrets, access, and vulnerability remediation. The role involves triaging real-time security alerts, leading incident response efforts, and supporting secure CI/CD practices, infrastructure as code, and engineering reviews. Additionally, the specialist will partner with leadership and auditors for security reviews and vendor risk management.

Skills

SOC 2

AWS security

incident response

access control

policy management

risk oversight

IAM

GuardDuty

encryption

secrets management

vulnerability remediation

CI/CD

infrastructure as code

vendor risk management

Kojo

Procurement platform for construction industry

About Kojo

Kojo is a procurement platform tailored for the construction industry, focusing on helping trade and self-perform contractors manage their material needs effectively. The platform provides tools for real-time inventory tracking, price comparison, and order management, allowing contractors to have better control over their procurement processes. By integrating with other construction management tools like Procore, Kojo enhances its usability and efficiency for users. Unlike many competitors, Kojo operates on a subscription-based model, which ensures consistent revenue while delivering significant cost savings and productivity improvements for its clients. The company's goal is to streamline the construction procurement process, ultimately helping contractors save money, reduce waste, and improve labor productivity.

San Francisco, CaliforniaHeadquarters

2018Year Founded

$81MTotal Funding

SERIES_CCompany Stage

Industrial & Manufacturing, Enterprise SoftwareIndustries

51-200Employees

Benefits

Remote Work Options

Company Equity

Risks

Rapid expansion into new sectors may stretch Kojo's resources, causing inefficiencies.

Kojo's subscription model may be vulnerable during economic downturns affecting construction budgets.

Scaling challenges may arise from rapid growth, impacting service quality and support.

Differentiation

Kojo consolidates procurement for contractors, enhancing visibility and control over materials.

The platform integrates with tools like Procore, streamlining construction management processes.

Kojo Prefab connects prefab shops to business operations, optimizing offsite construction.

Upsides

Kojo's expansion into prefabrication aligns with the growing trend of offsite construction.

The launch of Kojo AP meets the demand for digital financial solutions in construction.

New integrations with major electrical suppliers tap into the $130 billion U.S. market.

Land your dream remote job 3x faster with AI

Try Jobo Free