This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description RYZ Labs is hiring for a Data Center Security Manager to develop and enforce physical security policies, protect facilities from threats, and lead access control, surveillance, and incident response. On-call rotation required. - Develop and maintain security policies, SOPs, and incident response plans. - Manage access control, badging, visitor management, and key/lock programs. - Oversee CCTV/VMS, alarms/IDS, and monitoring; ensure timely response and reporting. - Lead incident handling and investigations; perform RCA and corrective actions. - Conduct risk assessments, audits, and drills; track metrics and compliance. - Manage guard force and security vendors; coordinate with DC ops, EHS, and legal. - Plan lifecycle upgrades and maintenance for security systems and infrastructure. Qualifications - Bachelor’s in Security, Criminal Justice, or related field, or equivalent experience. - 5+ years in physical security for data centers or critical facilities. - Hands-on with PACS (e.g., Lenel/Genetec), VMS, alarms/IDS; basic integration with IT/SIEM a plus. - Knowledge of security and compliance frameworks (ISO 27001, SOC 2, NIST, TIA-942, PCI). - Experience with incident response, investigations, audits, and vendor management. - Certifications preferred: CPP, PSP (ASIS), or equivalent. Company Description RYZ Labs is a startup studio built in 2021 by two lifelong entrepreneurs. The founders of RYZ have worked at some of the world's largest tech companies and some of the most iconic consumer brands. They have lived and worked in Argentina for many years and have decades of experience in Latam. What brought them together is the passion for the early phases of company creation and the idea of attracting the brightest talents in order to build industry-defining companies in a post-pandemic world. - Our teams are remote and distributed throughout the US and Latam. - They use the latest cutting-edge technologies in cloud computing to create applications that are scalable and resilient. - We aim to provide diverse product solutions for different industries, planning to build a large number of startups in the upcoming years. - At RYZ, you will find yourself working with autonomy and efficiency, owning every step of your development. - We provide an environment of opportunities, learning, growth, expansion, and challenging projects. - You will deepen your experience while sharing and learning from a team of great professionals and specialists. - Customer First Mentality - every decision we make should be made through the lens of the customer. - Bias for Action - urgency is critical, expect that the timeline to get something done is accelerated. - Ownership - step up if you see an opportunity to help, even if not your core responsibility. - Humility and Respect - be willing to learn, be vulnerable, and treat everyone who interacts with RYZ with respect. - Frugality - being frugal and cost-conscious helps us do more with less. - Deliver Impact - get things done in the most efficient way. - Raise our Standards - always be looking to improve our processes, our team, and our expectations.

• Establish measurable KPIs for security maturity (e.g., time-to-remediate, incident severity, audit readiness) and report quarterly progress to executives and the board. • Define and execute a comprehensive security strategy aligned with company vision, government compliance requirements, and customer trust. • Serve as the authority on cybersecurity, risk management, and compliance matters. • Provide regular updates to cross-functional leaders on risk posture and mitigation. • Oversee security budget allocation, vendor selection, and ROI optimization for tools and services. • Build and manage security policies, risk assessments, and audit readiness across the enterprise. • Lead efforts to achieve and maintain GovRAMP and FedRAMP authorizations across multiple product lines. • Oversee adherence to regulatory frameworks including CJIS, NIST, SOC 2, and other applicable standards. • Partner with legal for risk management, including TPRM and oversee compliance teams. • Establish governance processes for security reviews, and penetration testing. • Develop and run proactive monitoring, detection, and response capabilities. • Ensure secure multi-cloud and hybrid hosting environments across the product portfolio. • Recruit, lead, and mentor security professionals across multiple specialties. • Drive a “security by design” culture throughout engineering, product, and operations teams. • Champion security awareness, secure by design across the entire company. • Own Security Awareness Training design.

• Join a highly collaborative security operations team delivering vulnerability management services to Cloud Service Providers, and other organizations operating highly regulated environments. • Review vulnerabilities and data from various sources (e.g., penetration testing, vulnerability scanning) across different technologies and environments to assess the risk level to business assets. • Conduct recurring and on-demand OS/DB & Web scanning activities for multiple customer environments. • Build, configure, and manage vulnerability management tools within customer environments, serving as the subject matter expert for vulnerability management queries. • Assist customers with scanning their FedRamp environment, establishing standards, and managing false positives and exceptions. • Utilize customer scan data to create a Plan of Action and Milestones (POAM) for regular delivery to customers. • Communicate with internal management to provide insights into the current risk posed by vulnerabilities in customer environments and proposed remediation strategies. • This position will be the liaison between the vulnerability management team and various SRE teams and customer teams and must be able to provide technical remediation details or workarounds, help track and identify asset inventory, log work tickets and exceptions and research vulnerability findings. • Develop and maintain standard operating procedures, training documents, technical documentation, and troubleshooting guidelines for security solutions. • Configure and troubleshoot scanning devices and resolve agent & authentication issue. • Implement technical solutions to automate repetitive tasks. • Provide guidance, instruction, and thought leadership to clients and team members. • Manage and follow up on tickets and customer requests. • Work independently and with vendors’ professional services to diagnose and troubleshoot any issues with vulnerability assessment tools. • Provide oversight and orchestrate key parties from Coalfire and client teams during escalations with a focus on expedited resolution. • Provide analysis of Information Security vulnerabilities and determine true or false positive, and work with appropriate teams for remediation. • Analyze identified vulnerabilities to identify false positives or environmental factors that affect the risk scoring and ensure the POAM is updated to reflect that analysis.

• Collaborate closely with our DevOps, CI/CD engineers, and Architecture team to implement and maintain security best practices across our infrastructure. • Leverage your expertise in security architecture to help engineers build and securely operate products and services from the ground up • Assess, design, and implement security processes and controls to meet security, compliance, and audit requirements • Conduct proactive research to identify emerging threats and attack vectors • Collaborate within a highly agile product security team and across other cross-functional teams