VentureWell

• Manage VentureWell’s device fleet (macOS, iOS, iPadOS) using Jamf, including configuration profiles, patching, encryption enforcement, and endpoint hardening • Configure, administer, and secure SaaS platforms including Google Workspace, Okta, Slack, Zoom, Salesforce, Box, and BetterCloud, including integrations and lifecycle management • Administer and maintain cloud-based systems and services (including AWS), partnering with vendors and internal teams to ensure uptime and security • Serve as the escalation point for complex technical issues related to SaaS platforms, device management, identity systems, and integrations • Maintain a transparent, documented SaaS application inventory and support software request review, vetting, and decision documentation • Develop and maintain SOPs and technical documentation for systems, integrations, and operational processes • Identify opportunities to improve system architecture, scalability, and reliability across SaaS and cloud environments and lead implementation of those improvements • Drive continuous improvement of IT systems and processes, balancing day-to-day operational support with longer-term optimization initiatives • Monitor and respond to security alerts, vulnerability findings, and threat intelligence across endpoint, SaaS, and cloud environments • Perform root cause analysis on security incidents and recommend corrective actions • Manage endpoint security tooling and monitoring (e.g., Jamf Protect) and integrate telemetry with logging platforms (e.g., Datadog, CloudWatch) • Lead vulnerability scans, penetration test coordination, and remediation tracking • Review logs and security reports to identify risks, trends, and required remediation • Proactively identify security gaps, risks and emerging threats and implement improvements to strengthen VentureWell’s overall security posture • Continuously enhance monitoring, detection and response capabilities across endpoint, SaaS and cloud environments • Partner with internal team members to priorities and remediate vulnerabilities based on risk, business impact and organizational priorities • Support implementation and ongoing maintenance of NIST SP 800-171 and CMMC Level 2 controls • Maintain and update the System Security Plan (SSP) and Plan of Action & Milestones (POA&M) • Draft, review, and maintain security policies, standards, baselines, and procedures