Director of IT, Infrastructure & Security

About The Position

Requirements

• 10+ years of experience in IT, infrastructure, corporate technology, identity, security operations, or related functions, including experience leading IT operations in a high-growth technology company.
• Hands-on experience driving SOC 2 Type II audits, with at least one of FedRAMP, ISO 27001, or CMMC also under your belt.
• CISSP or equivalent senior security certification/experience.
• Strong network infrastructure experience equivalent to CCNA-level knowledge, including switches, firewalls, VLANs, routing, VPNs, Wi-Fi, segmentation, and network troubleshooting.
• Strong working knowledge of corporate cybersecurity controls, including endpoint security, IAM, MFA, vulnerability management, patching, logging, EDR, SIEM/SOC coordination, vendor risk, incident response coordination, network security, and security awareness.
• You can evaluate security tooling, work with MSP/MSSP partners, identify meaningful risks, and make practical security decisions without overengineering the environment.
• Experience working with SIEM, EDR, vulnerability management, logging, and SOC/MSSP workflows.
• You can evaluate alerts, coordinate incident response, and work with internal and external partners to keep security operations effective.
• Comfort using scripting, APIs, workflow automation, or low-code tools to improve onboarding, offboarding, access management, asset tracking, SaaS administration, reporting, and compliance evidence collection.

Responsibilities

• Oversee day-to-day IT operations, including help desk, employee onboarding and offboarding, endpoint support, Google Workspace and JumpCloud administration, Linux/Ubuntu endpoint support, and service delivery across multiple sites.
• Ensure laptops, desktops, mobile devices, peripherals, software licenses, and related IT assets are procured, deployed, tracked, maintained, and retired through a disciplined asset lifecycle process.
• Own the operation and lifecycle of Field AI’s physical and corporate network infrastructure, including switches, firewalls, routers, Wi-Fi, VPNs, VLANs, network segmentation, secure remote access, cabling coordination, ISP/vendor management, monitoring, documentation, and refresh planning.
• Maintain and improve Field AI’s existing compliance programs, including SOC 2 Type II, ISO 27001, and CMMC readiness/certification efforts.
• Own day-to-day compliance operations, including control monitoring, evidence collection, access reviews, asset records, policy maintenance, vendor coordination, and audit support.
• Own practical corporate security controls, including endpoint security, IAM, MFA, patching, vulnerability remediation, logging, EDR, SIEM/SOC coordination, vendor risk, incident coordination, and security awareness.
• Ensure security controls are effective, lightweight, and appropriate for a fast-moving engineering company.
• Communicate risk in plain language to engineers, executives, and customers.
• Lead architectural review for security-sensitive changes.
• Build buy-in for the controls that matter and friction-free paths for the ones that don't.

Benefits

• Generous salary range
• Opportunity to work with a world-class team
• Work with cutting-edge AI and robotics technology
• Diverse and inclusive work environment