Security Coordinator (Access/ Data Governance)

We are looking for a Security Coordinator who will help us keep our company’s data, infrastructure, and SaaS ecosystem secure and well-governed.

This role focuses on access control, SaaS security, and risk management, ensuring that our systems are used safely and only by the people who actually need access.

Responsibilities

• Maintain a complete inventory of company systems and assets, including:
  • Cloud infrastructure
  • Databases
  • Google Workspace / shared drives
  • Internal tools
  • Third-party SaaS applications
  • AI tools used by the team
• Ensure proper access management across all systems:
  • Apply the principle of least privilege
  • Review and revoke unnecessary permissions
  • Monitor shared accounts and external access
• Conduct periodic access audits for:
  • Cloud environments
  • Databases
  • Google Drive and internal documentation
  • SaaS tools and integrations
• Identify and mitigate security risks related to AI tools, including:
  • Preventing sensitive data from being uploaded to AI platforms
  • Managing access to AI tools
  • Creating safe usage policies
• Work with engineering and operations teams to:
  • Improve security practices
  • Document access processes
  • Maintain internal security guidelines
• Track and manage security risks from third-party services
• Assist with security documentation and compliance processes (e.g., SOC2 or internal security policies).

Requirements

• Experience with cloud platforms (AWS, GCP, Azure, or similar)
• Familiarity with identity and access management concepts
• Experience managing SaaS ecosystems (Google Workspace, Slack, etc.)
• Understanding of data security risks and access control
• Ability to analyze system permissions and identify unnecessary access
• Awareness of AI-related security risks (data leakage, prompt injection, uncontrolled usage)

Nice to Have

• Experience with SOC 2 / security compliance
• Familiarity with IAM tools or security monitoring platforms
• Background in DevOps, IT administration, or security operations

What Success Looks Like

• All company systems are properly inventoried and documented
• Access is granted strictly on a need-to-know basis
• No forgotten accounts, open shares, or unnecessary privileges
• AI tools are used safely and responsibly