Role: Technical Program Manager

Location: Whittier, CA, onsite 5 day/week 

Compensation: 180-185k base target, full time direct hire

IV Process: 3 rounds 

Position Overview

We are seeking a Technical Program Manager (TPM) to oversee and coordinate security programs across the organization. This role serves as the critical mediator between the security engineering team and executive leadership, ensuring that security initiatives align with business objectives. The TPM will be responsible for managing multiple complex security programs, assigning work to engineers, and ensuring smooth execution across teams.

Key Responsibilities

• Oversee and drive security programs, ensuring strategic alignment with organizational goals.
• Act as the primary liaison between the CIO, security engineering team, and other stakeholders to ensure seamless communication and execution.
• Understand high-level security architecture and technical requirements to effectively assign work to engineers and ensure programs are executed efficiently.
• Ensure that security programs meet regulatory and compliance requirements, including HIPAA, HITECH, and NIST frameworks.
• Develop and refine processes to enhance efficiency in security program execution and delivery.
• Provide regular updates on security program status, risks, and milestones to executive leadership.
• Work with engineering leadership to prioritize tasks and allocate resources effectively across multiple security programs.

Qualifications & Experience

• 7+ years of experience in program management, preferably in cybersecurity or IT security domains.
• Strong technical background, ideally in security architecture, engineering, or IT infrastructure.
• Experience managing multiple complex security programs in a dynamic environment.
• Familiarity with Microsoft security solutions, cloud security (Azure), and enterprise IT environments is a plus.
• Strong understanding of risk management, compliance frameworks (NIST, HIPAA, ISO 27001), and security best practices.
• Excellent communication, leadership, and problem-solving skills.
• Relevant certifications such as PMP, CISSP, or SAFe Program Consultant (SPC) are highly desirable.

Hampton North is partnering with a Series A, Generative AI company in the Bay area who are looking to add a strong full stack engineer to their impressive team. This company specializes in cutting-edge AI-driven voice synthesis and cloning technology. Their platform leverages advanced deep learning models to create synthetic voices that can mimic human intonation, so you'll be working closely with the ML team. Any exposure to ML is a huge bonus!

Compensation: $140-200k base + Equity 

Logistics: San Francisco Bay Area (Hybrid) 

U.S. citizenship required due to eligibility for a U.S. Government security clearance

Here's what you'll be doing:

• Lead the full lifecycle of design, development, and deployment for the product across on-prem and cloud environments
• Collaborate with leadership to align on strategy while independently driving the product vision forward
• Architect scalable, efficient, and maintainable codebases and systems to support deepfake detection capabilities
• Ensure the performance, quality, and responsiveness of applications
• Identify bottlenecks and bugs, and devise solutions to mitigate and address these issues

And what you need to have:

• Proficiency in Ruby on Rails, React (or another JavaScript framework), Kubernetes, Docker, Python and Linux
• Bachelor’s degree in Computer Science, Engineering, or a related field (Master’s preferred)
• Familiarity with running pre-trained machine learning models in production environments
• Proven track record of successfully delivering complex software projects
• Experience working with cross functional teams: Machine Learning, AI researchers, Product etc.

I'm exclusively looking to hire a Director of Risk Advisory Services to work for a subsidiary company of a global law practice.

We're looking to hire someone who has significant experience in leading cyber security teams, driving governance, risk, and compliance engagements, and delivering projects. A proven track record in identifying, selling, and delivering advisory services is key. Someone who has led and built cyber security risk advisory services teams is crucial.

As well as advisory services, our client supports insurance carriers and other law firms with incident response work. Therefore, this role is to compliment and work in tandem with that practice. So a candidate that has delivered GRC projects in similar lines of work and understands that relationship between DFIR and Risk Services would be beneficial.

Compensation: $200,000 - $300,000 Base

Logistics: US, Remote

Here's what you'll will you be doing:

• Leading multiple engagements while managing client relationships throughout the sales process and delivery.
• Tailoring cyber security strategies and solutions to client needs, ensuring compliance with industry regulations.
• Guiding the advisory team and clients on their cyber security journeys.
• Collaborating across teams to ensure quality outcomes, on-time delivery, and staying on budget.

And what you need to have:

• Proven leadership experience in cyber security risk and advisory services.
• Strong ability to identify and seize opportunities with clients.
• An entrepreneurial, self-starter mentality with a client-first mindset.
• Experience in managing complex projects with multiple engagements.

Job Summary

We are seeking an experienced SOC Lead to lead our security operations team in safeguarding the organization’s critical systems and data. This role is responsible for overseeing threat detection, incident response, security monitoring, and ensuring compliance with regulatory standards. You will collaborate with cross-functional teams, manage security tools and technologies, and drive continuous improvement in our cybersecurity posture. The ideal candidate has a deep understanding of security operations, strong leadership skills, and experience in fast-paced, technology-driven environments.

Logistics: 100% onsite in Austin, TX (relocation assistance available)

Compensation: 200-240k + equity 

Here's what you'll be doing:

• Manage daily cybersecurity operations, ensuring 24/7 monitoring and incident response readiness.
• Maintain and regularly update an operational security framework that defines protocols for threat detection, incident response, and system recovery.
• Oversee the implementation and upkeep of core security tools, including firewalls, SIEM platforms, endpoint security, and other advanced threat management systems.
• Develop and execute incident response plans, coordinating investigation and containment of security events with speed and precision.
• Continuously monitor threats through automated systems and threat intelligence feeds, ensuring rapid identification and mitigation of risks.
• Conduct post-incident analysis to refine processes and improve resilience against future threats.
• Ensure real-time monitoring of network activity, system logs, and application behavior for signs of unusual or malicious activity.
• Perform regular vulnerability scans and penetration testing to uncover system weaknesses.
• Lead remediation efforts and collaborate with IT teams to ensure systems are secure and up to date.
• Ensure cybersecurity operations align with regulatory standards and frameworks (e.g., NIST, ISO 27001, CMMC).
• Partner with compliance teams to align security policies with data protection regulations and internal governance requirements.
• Support internal and external audit processes, ensuring prompt resolution of any findings.
• Develop and deliver comprehensive cybersecurity awareness programs for employees, covering phishing, social engineering, and insider threat recognition.
• Mentor security operations staff, fostering a culture of continuous improvement and skill development.
• Organize regular tabletop exercises to test and enhance incident response capabilities.
• Lead the deployment and optimization of security tools to ensure proactive protection across the organization.
• Research emerging security technologies and recommend enhancements to the organization’s defenses.
• Work closely with IT to ensure all new systems adhere to security standards and best practices.
• Act as the lead coordinator during security incidents, collaborating with IT, legal, and compliance teams to contain and resolve threats.
• Maintain relationships with external partners and vendors to enhance cybersecurity capabilities.
• Build connections with law enforcement and cybersecurity agencies for intelligence sharing and support.
• Contribute to the development of long-term cybersecurity strategies that align with organizational goals.
• Prepare reports and brief senior management on the state of cybersecurity operations, emerging threats, and response activities.
• Assist in budgeting for cybersecurity initiatives, ensuring optimal use of available resources.
• Work closely with key teams such as IT, engineering, product development, and sales to ensure security objectives are aligned across the organization.

And here's what you'll be doing:

• Bachelor’s degree in IT, Cybersecurity, or equivalent experience.
• 5+ years of experience managing security operations, preferably in technology or related industries.
• Strong time management skills with the ability to handle multiple priorities and meet deadlines.
• Proven experience engaging with senior leadership and communicating complex security concepts in business terms.
• High attention to detail and a focus on quality.
• Proficiency in security operations tools and platforms.
• Experience with defense or military-related projects is a plus.
• Knowledge of autonomous systems or maritime technology is a bonus.

Summary:
We are seeking an experienced Senior Security Engineer to design, implement, and maintain comprehensive security solutions across our systems and products. In this role, you will lead efforts to strengthen our security posture, safeguard critical technology, and ensure compliance with security frameworks and industry standards.

Logistics: 100% onsite in Austin, TX (relocation assistance available) 

Compensation: 200-225k + equity 

Here's what you'll be doing:

• Design and manage security controls for infrastructure, networks, and applications in alignment with industry standards such as Zero Trust, NIST, and other relevant security frameworks.
• Conduct risk assessments, threat modeling, and vulnerability analysis to identify and mitigate risks.
• Integrate security practices throughout the product development lifecycle, from concept to deployment.
• Assist with incident response activities, including investigation and mitigation of security incidents.
• Monitor security events and coordinate with cross-functional teams to contain and remediate threats.
• Create and maintain detailed security documentation, including policies, protocols, and technical references.
• Act as a security advisor to the organization, mentoring team members and providing strategic technical guidance.
• Collaborate with internal and external stakeholders to ensure security practices align with business objectives and compliance requirements.
• Stay informed on emerging security technologies and recommend enhancements to improve our security framework.

And here's what you'll need:

• 5+ years of experience in security engineering
• Strong analytical, problem-solving, and communication skills.
• Proven experience managing multiple projects in a fast-paced environment.
• In-depth knowledge of cybersecurity concepts and technologies.
• Experience with security tools such as firewalls, SIEM, endpoint protection, cloud-native security controls, and encryption solutions.
• Proficiency in programming or scripting languages (e.g., Python, C/C++, Java).
• Familiarity with secure software development practices and cloud security.
• Strong understanding of network security and secure communication protocols.
• Ability to explain technical concepts to both technical and non-technical audiences.
• Eligible to obtain and maintain a security clearance
• Experience working with government or defense-related security projects.
• Knowledge of autonomous systems or emerging technologies.

Job Summary:

The Technical Engagement Manager (TEM) plays a pivotal role within the Service Delivery and Support (SDS) team, overseeing technical service delivery to clients. The TEM ensures successful service implementation by aligning stakeholders, defining technical requirements, and creating structured project plans. This role requires strong project management expertise, excellent communication skills, and a solid understanding of enterprise security technologies.

Location: 100% Remote, US

Salary: 120-140k base 

Here's what you'll be doing:

• Serve as the primary point of contact for clients during service implementation, ensuring clear communication and stakeholder alignment.
• Develop and manage project plans, defining technical milestones and acceptance criteria.
• Collaborate with Security Operations, Engineering, and Sales teams to ensure seamless service delivery.
• Gather and document client requirements, translating them into actionable technical specifications.
• Provide regular updates on project status, risks, and mitigation strategies to internal and external stakeholders.
• Ensure services are deployed efficiently while maintaining security best practices and compliance standards.
• Identify and resolve implementation challenges, escalating issues to technical teams as needed.
• Contribute to continuous improvement by documenting lessons learned and refining processes.

Here's what you'll need:

• Proven project management experience in complex IT environments, coordinating technical teams.
• Strong written and verbal communication skills, with the ability to convey technical concepts to both technical and non-technical audiences.
• Solid understanding of enterprise IT, cloud architecture, networking, and security tools.
• Familiarity with security technologies such as SIEM, EDR, SOAR, XDR, and enterprise deployment solutions.
• Experience in a customer-facing technical role, preferably in security or managed services.
• Proficiency in creating functional designs, technical specifications, and service documentation.
• Ability to multitask, prioritize, and work in both proactive and reactive environments.
• Relevant certifications (PMP, CISSP, ITIL, or cloud security credentials such as AWS, Azure, GCP).
• Experience with regulatory compliance frameworks (NIST, ISO 27001, SOC 2).
• Familiarity with scripting and IT workflow automation.

As a Lead Threat Detection and Response Engineer, you’ll lead advancing threat detection capabilities and responding to security incidents. You’ll work closely with security operations, enterprise security, and product teams, optimizing tools and strategies whilst mentoring more junior members of the team.

Salary - Up to $220,000 Base + Bonus
Location - US, 100% Remote
Work authorization: Must be a US Citizen or permanent resident

Key Responsibilities:

- Collaborate with MDR providers and SOC teams to monitor security events
- Incident Response: Lead investigations and lead security cloud breaches
- Tune SIEM, SOAR, EDR, NDR to improve detection capability
- Integrate the latest threat intelligence into detection strategies

Qualifications:

- 5+ years in security operations or detection engineering, with a focus on SOC environments.
- Expertise in SIEM, SOAR, EDR tuning and deployments.
- Deep knowledge of cloud platforms AWS, Azure and IR

We are seeking a Senior Security Operations Engineer to establish and enhance security operations within a high-growth, remote-first environment. As the first hire in this function, you will have the opportunity to define security processes, strengthen situational awareness, automate cloud security detection and response capabilities, improve the security posture of third-party tools, and ensure timely handling of security incidents.

This role is highly autonomous and impact-driven, with a strong emphasis on speed and effectiveness. Ideal candidates will have experience in SIEM management, security detection & response (D&R), and cloud-based security operations.

Logistics: This is a 100% remote role open to individuals legally authorized to work in the United States.

Compensation: $160-200k base salary with an equity package.

What you'll be doing:

• Lead investigations into security alerts and reported incidents within a cloud-based environment.
• Automate investigation workflows and integrate tools to enhance response times and reduce manual work.
• Act as Incident Commander during security incidents, overseeing containment, recovery, and post-mortem analysis.
• Develop and maintain security operations playbooks to streamline incident response processes.
• Collaborate with IT and support teams to refine security-related procedures.
• Develop and implement SIEM detections and alerting mechanisms using Terraform, Datadog, or similar tools.
• Onboard, enrich, and normalize diverse log sources across cloud environments, applications, and endpoints.
• Work with engineering teams to enhance security auditing, instrumentation, and visibility across deployed resources.
• Oversee vulnerability tracking and reporting, ensuring clear ownership and timely remediation.
• Collaborate with teams to negotiate remediation priorities and implement security fixes.
• Drive proactive vulnerability mitigation efforts and ensure compliance with best practices.
• Assess and improve the security posture of third-party services and integrations (e.g., Google Workspace, Slack, Zapier).
• Monitor and respond to phishing attempts and security threats within cloud-based collaboration tools.

What's required of you:

Must-Have:

• 5+ years of experience in security incident response, such as working in a SOC or on a CIRT/DIRT team.
• Proven experience leading security incidents as an Incident Commander.
• Strong ability to investigate security events and coordinate responses across teams.
• Expertise in cloud security operations (AWS, GCP) and cloud technologies like Docker.
• Comfortable working in Linux environments, with experience using scripting languages (e.g., Bash, Python) to automate tasks.
• Deep understanding of web & cloud vulnerabilities, familiarity with CVSS, and best practices for mitigation.
• Strong grasp of SaaS platform security, including access controls and phishing prevention.
• Ability to pragmatically balance business needs against security risks.
• Excellent written communication skills, with experience documenting processes and corresponding with stakeholders.

Nice-to-Have:

• Experience using infrastructure-as-code (e.g., Terraform) for security detections.
• Background in vendor security reviews and assessing third-party risk.
• Familiarity with SAML SSO configurations and authentication security best practices.
• Experience with systems administration or software development.
• Prior work experience in fast-paced, high-growth tech environments.