Build Your Career in Cybersecurity -
YOUR WAY

Summary

This is a broad-responsibility, high-judgment technical leadership role managing the InfoSec function and implementing the security and IT infrastructure of a rapidly growing startup company with engineering offices in Berkeley and Santa Clara. As the Head of Information Security, you will lead and oversee the design, implementation, and maintenance of robust security solutions within platform, data, and engineering environments.

​

The ideal candidate will possess strong leadership skills, deep technical expertise, and a strategic mindset to safeguard the organization's digital assets. This is a full-time, onsite position in either our Berkeley or Santa Clara office, with a need to work from the other office occasionally.

​

Company Overview

Atomic Machines is ushering in a new era in micromanufacturing with its Matter Compiler (MC) technology. The MC enables new classes of micromachines to be designed and built by offering manufacturing processes and a materials library that is inaccessible to semiconductor manufacturing methods. The MC promises to unlock MEMS manufacturing both for the many device classes that never could be made by semiconductor methods but also to open up entirely new classes. Furthermore, the MC is fully digital in the way 3D printing is digital, but where 3D printing produces parts of a single material using a single process, the MC is a multi-process, multi-material technology: bits and raw materials go in and complete, functional micromachines come out. The Atomic Machines team has also created an exciting first device – one that was only made possible by the existence of the Matter Compiler – that we will be unveiling to the world soon.

• Directly manage the Information Security functions of Atomic Machines.
• Develop a strategic vision for protecting Atomic Machines’ assets, including intellectual property (IP), financial records, personal information for staff and customers, and physical assets such as computers and lab equipment.
• Lead the design, development, and implementation of robust security architectures and policies for cloud-native and locally hosted systems, ensuring scalability, resilience, and efficiency.
• Conduct regular security assessments, threat modeling, and risk analysis to identify vulnerabilities and recommend appropriate mitigations.
• Stay up-to-date with the latest threat landscape and security technologies, tools, and frameworks to continuously enhance the company's security posture.
• Implement security controls into the development team’s continuous integration and deployment pipelines.
• Develop and present training materials for all employees to allow the team to understand and follow best security practices.
• Plan, execute, and document all security-related aspects of the rapid growth of our networking and software infrastructure.
• Proactively monitor and expand systems as the company grows to ensure continued robust and reliable performance of network infrastructure.
• Own and manage information security as it extends to physical access control systems.
• Partner with and manage external agencies and vendors when additional coverage and support are needed.
• Lead and execute on IT Risk & Compliance roadmap.
• Lead IT security incident response, performing triage and determining if security incidents require escalation and/or further response.
• Implement cybersecurity best practices using relevant security frameworks, such as ISO 27001, NIST, SANS Critical 20, COBIT, etc.
• Perform internal audit tasks.
• Read and interpret ISO 27001, SOC 2, and other relevant certification reports from vendors to assess their security preparedness and representation of Atomic Machine's interests.
• Review contractual agreements and comment on security and data protection as needed.

Required Qualifications:

• 8+ years of experience in Information Security, ideally with at least 3 years of management.
• Experience managing all of Information Security for a company, including Cyber Security (ideally including startup experience).
• Experience developing and presenting a cyber security training program.
• Experience managing security concerns for modern cloud-first architectures as well as complex on-site production systems.
• Proven experience with incident response, vulnerability management, and risk assessment methodologies.
• Extensive AWS and Azure AD (Entra ID) cloud security experience, including cloud security monitoring, logging, security configuration, and IAM.
• High-level proficiency with SAML/SSO solutions and using hardware MFA keys.
• Hands-on experience with security tools and technologies, such as SIEM, MDR, IDS/IPS, WAF, DLP, and vulnerability scanners.
• Knowledge of IT processes and controls and strong understanding of risk and control frameworks such as (CoBIT, ISO, NIST, ITIL, PCI).
• General knowledge of information security regulatory requirements and standards such as ISO 27001/2, SOC 1/2/3, SANS top 20 and NIST 800-53.
• CISSP, CCSP, CISM, CSSP or similar security credentials.
• Propensity to work in fast-paced environments with minimal guidance.
• Ability to explain complex issues in terms appropriate for technical or non-technical audiences.
• Flexibility to work daily in our Berkeley office and commute to our Santa Clara office as needed.

​

Preferred Qualifications:

• BS in Computer Science, Information Security, IT Management, or a related field preferred.

$220,000 - $280,000 a year

The compensation for this position also includes equity and benefits.

Our story

​

Strada is a technology-enabled, people powered company committed to delivering world-class payroll, human capital management, and financial management solutions to organizations globally.

​

With a team of more than 8,000 experts and over 30 years of expertise, Strada blends leading-edge technology with human ingenuity to help businesses across the globe design and deliver at scale. Supporting over 1,400 customers in 33 countries, Strada partners with customers at every stage of their journey, to help drive their vision forward.

​

It’s why we’re so driven to connect passion with purpose. Our team’s experience in human insights and cloud technology gives companies and employees around the world the ability to power confident decisions, for life.

​

With a comprehensive total rewards package, continuing education and training, and tremendous potential with a growing global organization, Strada is the perfect place to put your passion to work.

​

To learn more about us, visit stradaglobal.com

​

Job Summary: The Business Information Security Officer (BISO) will play a critical role in the Security Department at Strada. The BISO will be responsible for aligning security initiatives with business objectives, ensuring that our global payroll operations are secure and compliant with international standards while meeting client needs and maintaining high security standards across the organization. This role requires a strategic thinker with deep expertise in information security and a strong understanding of the global payroll landscape.

• Strategic Alignment: Align security initiatives with business goals and objectives, ensuring that security measures support the overall mission of Strada. Advocate for security best practices and risk management solutions to enhance the organization's overall security posture.
• Risk Management: Identify, assess, and mitigate security risks associated with global payroll operations. Develop and implement risk management strategies to protect sensitive information.
• Policy Development: Develop and enforce security policies, standards, and procedures to ensure compliance with international regulations and industry best practices.
• Security and Business Integration: Work closely with business units, IT, and other stakeholders to integrate security into all aspects of the organization’s operations. Provide guidance and support to ensure security is considered in all business decisions. Help drive security initiatives within sales processes to improve client-facing security strategies. Act as a bridge between technical and business teams, ensuring alignment and smooth integration.
• Client Collaboration: Work closely with clients and prospects by presenting Strada’s security program, identifying their security concerns and requirements, and ensuring that tailored security solutions meet their unique needs. Provide expert guidance on addressing these needs and proactively offer solutions.
• Training and Awareness: Drive security awareness initiatives across the business to foster a security-conscious culture.
• Continuous Improvement: Continuously monitor the effectiveness of security measures, identify gaps, and recommend improvements. Work with internal teams to develop innovative solutions to enhance security across business operations.

• Required Qualifications:
• Bachelor’s degree in Information Security, Computer Science, or a related field.
• Minimum of 7 years of experience in information security, with a focus on business alignment and risk management.
• Strong understanding of global payroll operations and associated security challenges.
• Excellent communication and interpersonal skills, with the ability to influence and collaborate with stakeholders at all levels.
• Ability to translate complex security concepts into business language and align them with business goals.
• Proven track record of developing and implementing security policies and procedures.
• Experience with incident response and crisis management.
• Knowledge of international security standards, frameworks and regulations.

​

• Preferred Qualifications:
• Master’s degree.
• Professional certifications such as CISSP, CISM, or CISA are a plus.

Benefits

We offer programs and plans for a healthy mind, body, wallet and life because it’s important our benefits care for the whole person. Options include a variety of health coverage options, wellbeing and support programs, retirement, vacation and sick leave, maternity, paternity & adoption leave, continuing education and training as well as a number of voluntary benefit options.

​

By applying for a position with Strada, you understand that, should you be made an offer, it will be contingent on your undergoing and successfully completing a background check consistent with Strada’s employment policies. Background checks may include some or all the following based on the nature of the position: SSN/SIN validation, education verification, employment verification, and criminal check, search against global sanctions and government watch lists, credit check, and/or drug test. You will be notified during the hiring process which checks are required by the position.

​

Our commitment to Diversity and Inclusion

Strada is committed to diversity, equity, and inclusion. We celebrate differences and believe in fostering an environment where everyone feels valued, respected, and supported. We know that diverse teams are stronger, more innovative, and more successful.

​

At Strada, we welcome and embrace all individuals, regardless of their background, and are dedicated to creating a culture that enables every employee to thrive. Join us in building a brighter, more inclusive future.

​

Diversity Policy Statement

Strada is an Equal Employment Opportunity employer and does not discriminate against anyone based on sex, race, color, religion, creed, national origin, ancestry, age, physical or mental disability, medical condition, pregnancy, marital or domestic partner status, citizenship, military or veteran status, sexual orientation, gender, gender identity or expression, genetic information, or any other legally protected characteristics or conduct covered by federal, state or local law. In addition, we take affirmative action to employ and advance in the employment of qualified minorities, women, disabled persons, disabled veterans and other covered veterans.

​

Strada provides reasonable accommodations to the known limitations of otherwise qualified employees and applicants for employment with disabilities and sincerely held religious beliefs, practices and observances, unless doing so would result in undue hardship. Applicants for employment may request a reasonable accommodation/modification by contacting his/her recruiter.

​

Authorization to work in the Employing Country

Applicants for employment in the country in which they are applying (Employing Country) must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the Employing Country and with Strada.

​

Salary Pay Range

• Minimum: 72,200 USD
• Maximum: 114,500 USD

​

Pay Transparency Statement: Strada considers a variety of factors in determining whether to extend an offer of employment and in setting the appropriate compensation level, including, but not limited to, a candidate’s experience, education, certification/credentials, market data, internal equity, and geography. Strada makes these decisions on an individualized, non-discriminatory basis. Bonus and/or incentive eligibility are determined by role and level. Strada also offers a comprehensive benefits package; for specific details on our benefits package, please visit: https://bit.ly/3Viqv69

​

DISCLAIMER:

Nothing in this job description restricts management's right to assign or reassign duties and responsibilities of this job to other entities; including but not limited to subsidiaries, partners, or purchasers of Strada business units.

Company:

The Boeing Company

​

The Boeing Company is currently seeking a Cybersecurity – Information System Security Officer (ISSO) to support Department of Defense (DoD) and Special Program activities in Seal Beach, CA.

​

The selected candidate will rely on Cybersecurity and Information Assurance (IA) background to be a technical leader and support Enterprise activities and Boeing customers throughout multiple classified computing domains. The ISSO is responsible for maintaining and implementing all Information System Security policies, standards, and directives to ensure assessment and authorization of information systems processing classified information.

• Contribute to the development and deployment of program information security for assigned systems to meet the program and enterprise requirements, policies, standards, guidelines and procedures
• Implement Assessment and Authorization (A&A) processes under the Risk Management Framework (RMF), as well as product development and product maintenance for assigned systems
• Perform security compliance continuous monitoring (CONMON)
• Participate in security assessments and audits
• Prepare and present technical reports and briefings
• Contribute to the identification of root causes, the prioritization of threats, and recommend/implement corrective action
• Provide mentoring and technical leadership within the information security program team
• Explore the enterprise and industry for the evolving state of industry knowledge and methods regarding information security best practices
• Support development of enterprise-wide information security policies, standards, guidelines and procedures that may reach across multiple stakeholder organizations

Basic Qualifications (Required Skills/Experience):

• Successfully completed Tier 5 Investigation (T5), formerly known as a Single Scope Background Investigation (SSBI) by the federal government within the last 5 years, or requires candidate to have been enrolled in a Continuous Vetting program within the last 5 years
• IAM Level 1 DoD 8140.01 (previously 8570.01) compliant certification (i.e. CAP, GSLC, Security+ CE, CISSP, CASP, CISM)
• 1+ years of experience with cyber security policies and implementation of Risk Management Framework (RMF): e.g. DAAPM, CNSSI 1253, ICD-503, JSIG, and/or NIST SP 800 series

​

Preferred Qualifications (Desired Skills/Experience):

• 1+ years of experience as an information system security officer (ISSO) or information system security manager (ISSM) supporting classified programs
• 1+ years of experience utilizing security relevant tools, systems, and applications in support of Risk Management Framework (RMF) to include NESSUS, ACAS, DISA STIGs, SCAP, Audit Reduction, and HBSS
• 1+ years of experience in assessing and documenting test or analysis data to show cyber security compliance

Drug Free Workplace:

Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies.

​

Pay & Benefits:

At Boeing, we strive to deliver a Total Rewards package that will attract, engage and retain the top talent. Elements of the Total Rewards package include competitive base pay and variable compensation opportunities.

​

The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work.

​

The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location, date of hire, and the applicability of collective bargaining agreements.

​

Pay is based upon candidate experience and qualifications, as well as market and business considerations.

​

Summary pay range: $99,450 - $134,550

​

Language Requirements:

Not Applicable

​

Education:

Not Applicable

​

Relocation:

This position offers relocation based on candidate eligibility.

​

Export Control Requirement:

This position must meet export control compliance requirements. To meet export control compliance requirements, a "U.S. Person" as defined by 22 C.F.R. §120.15 is required. "U.S. Person" includes U.S. Citizen, lawful permanent resident, refugee, or asylee.

​

Safety Sensitive:

This is not a Safety Sensitive Position.

​

Security Clearance:

This position requires an active U.S. Top Secret/SCI Security Clearance (U.S. Citizenship Required). (A U.S. Security Clearance that has been active in the past 24 months is considered active)

​

Visa Sponsorship:

Employer will not sponsor applicants for employment visa status.

​

Contingent Upon Award Program:

This position is not contingent upon program award

​

Shift:

Shift 1 (United States of America)

​

Stay safe from recruitment fraud! The only way to apply for a position at Boeing is via our Careers website. Learn how to protect yourself from recruitment fraud - Recruitment Fraud Warning

​

Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.

​

EEO is the law

​

Boeing EEO Policy

​

Request an Accommodation

​

Applicant Privacy

​

Boeing Affirmative Action, EEO Policy, and Harassment

​

Boeing Participates in E – Verify

​

• E-Verify (English)
• E-Verify (Spanish)

​

Right to Work Statement

​

• Right to Work (English)
• Right to Work (Spanish)