The Security Operations Lead will develop security detection strategies, oversee incident response, manage vulnerabilities, ensure cloud security, and mentor a team to enhance security operations.
Cleo is seeking a Security Operations Lead to build, operate, and continuously improve our security detection, response, and operational resilience capabilities.
This leader will be responsible for protecting Cleo's cloud infrastructure, SaaS platforms, endpoints, and corporate environment from evolving threats while ensuring operational stability and regulatory alignment.
The ideal candidate is hands-on, technically deep, and capable of building scalable security operations in a high-growth SaaS environment.
What You Will Be Doing
Security Monitoring and Detection
Incident Response and Containment
Vulnerability and Exposure Management
Cloud and Identity Security Operations
Operational Metrics and Reporting
Automation and Continuous Improvement
Leadership and Collaboration
Your Skills
Your Qualifications
Education
Experience
A few things we have to offer:
This leader will be responsible for protecting Cleo's cloud infrastructure, SaaS platforms, endpoints, and corporate environment from evolving threats while ensuring operational stability and regulatory alignment.
The ideal candidate is hands-on, technically deep, and capable of building scalable security operations in a high-growth SaaS environment.
What You Will Be Doing
Security Monitoring and Detection
- Own and evolve Cleo's detection and response strategy
- Lead daily monitoring of security events across cloud, endpoint, identity, and application layers
- Continuously tune detection rules to reduce noise and improve signal
- Ensure effective coverage across AWS, SaaS platforms, and corporate systems
- Leverage SIEM, EDR, and cloud-native tooling to improve visibility
Incident Response and Containment
- Lead security incident investigations and coordinate cross-functional response
- Develop and maintain incident response playbooks
- Conduct post-incident reviews focused on systemic improvement
- Reduce mean time to detect and contain security events
- Partner with Legal, Compliance, and Leadership during material incidents
Vulnerability and Exposure Management
- Oversee vulnerability scanning across infrastructure, endpoints, and cloud resources
- Prioritize remediation based on business risk
- Track critical vulnerability exposure windows
- Partner with Engineering and IT to drive timely remediation
Cloud and Identity Security Operations
- Monitor and secure AWS accounts and cloud-native services
- Identify and remediate misconfigurations
- Strengthen identity and access management controls
- Collaborate with Cloud Security and Platform teams on guardrails
Operational Metrics and Reporting
- Define and track security operations KPIs
- Report on detection efficacy, remediation timelines, and exposure trends
- Provide board-ready operational risk metrics
- Support audit and compliance evidence requirements
Automation and Continuous Improvement
- Automate repetitive operational tasks
- Improve alert triage workflows
- Optimize tooling effectiveness and cost efficiency
- Reduce operational friction through process refinement
Leadership and Collaboration
- Lead and mentor security analysts and engineers
- Partner closely with Engineering, IT, and Platform teams
- Contribute to the Security Champion and Guild initiatives
- Build a culture of proactive risk identification
Your Skills
- Experience in mid-market or high-growth SaaS environments
- Experience supporting SOC 2, ISO 27001, or similar audits
- Familiarity with MITRE ATT&CK framework
- Experience building or maturing security operations functions
- Relevant certifications such as CISSP, GCIA, GCIH, or similar
Your Qualifications
Education
- Bachelor's degree required.
Experience
- 7+ years of experience in security operations, incident response, or detection engineering
- Strong experience securing cloud-native SaaS environments, preferably AWS
- Hands-on experience with SIEM, EDR, vulnerability management, and cloud security tooling
- Deep understanding of attacker techniques and threat detection methodologies
- Experience leading incident response efforts
- Strong communication skills with the ability to translate technical risk into business impact
A few things we have to offer:
- Compensation: $120,000 - $140,000
- Great Healthcare + Dental + Vision
- Flexible PTO
- Culture of support, encouraging Life-Work balance
- 401k match
- FSA and HSA options
- Employee Assistance Program
- Paid Parental Leave
- Representing a company with 4,000+ clients and a 99% retention rate
- Accelerated title and salary growth potential
- A fun and energetic work environment that makes you excited to go to work every day
Top Skills
AWS
Edr
SIEM
Similar Jobs at Cleo
Cloud • eCommerce • Information Technology • Professional Services • Software
Lead the implementation of EDI solutions, ensure compliance, collaborate with teams, resolve issues, and document processes. Train clients on EDI best practices and maintain quality assurance.
Top Skills:
Ansi X12As2C#EdiEdifactFtpsJavaOraclePythonSftpSQL
Cloud • eCommerce • Information Technology • Professional Services • Software
The Account Executive will build client relationships, execute sales processes, and collaborate with teams to increase sales for Cleo.
Top Skills:
It Industry KnowledgeSales Tools
Cloud • eCommerce • Information Technology • Professional Services • Software
The Solutions Architect (SA) is a strategic partner to the Sales team, responsible for uncovering complex supply chain inefficiencies and designing tailored integration solutions. You will lead the technical discovery, build high-impact Proof of Concepts (POCs), and serve as the subject matter expert on how our platform integrates customer ecosystems and orchestrates B2B processes to drive resilience and scalability.
What You Will Be D...
What You Will Be D...
What you need to know about the Colorado Tech Scene
With a business-friendly climate and research universities like CU Boulder and Colorado State, Colorado has made a name for itself as a startup ecosystem. The state boasts a skilled workforce and high quality of life thanks to its affordable housing, vibrant cultural scene and unparalleled opportunities for outdoor recreation. Colorado is also home to the National Renewable Energy Laboratory, helping cement its status as a hub for renewable energy innovation.
Key Facts About Colorado Tech
- Number of Tech Workers: 260,000; 8.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Lockheed Martin, Century Link, Comcast, BAE Systems, Level 3
- Key Industries: Software, artificial intelligence, aerospace, e-commerce, fintech, healthtech
- Funding Landscape: $4.9 billion in VC funding in 2024 (Pitchbook)
- Notable Investors: Access Venture Partners, Ridgeline Ventures, Techstars, Blackhorn Ventures
- Research Centers and Universities: Colorado School of Mines, University of Colorado Boulder, University of Denver, Colorado State University, Mesa Laboratory, Space Science Institute, National Center for Atmospheric Research, National Renewable Energy Laboratory, Gottlieb Institute
