SOC Analyst

We started Novo to challenge the status quo— we’re on a mission to build the operating system to destroy the back office, so small businesses (SMB’s) can do more of what they love. Novo is flipping the script of the FinTech world, and we’re excited to lead the small business FinTech revolution.

We are looking for people of character. Pragmatic and capable people who want to see their work drive better outcomes for small businesses — the backbone of our economy. You will join our team and work on the building blocks of everything Novo ships.

  Why Novo?

• Novo is a rapidly growing series B fintech startup with a mission-driven team that’s passionate about helping every small business in America
• Positive, inclusive, supportive culture cheering you on your journey
• We work with very new technologies and architecture patterns 
• We provide learning and development budgets to help you grow and bond with your team 
• Able to work from the office 3+ days per week
• Offices in NYC, Miami, India, and Colombia

We are looking for a SOC analyst who understands how to manage EDR, MDM, and ZTN systems and conduct third-party risk assessments while ensuring compliance with SOC2, ISO, NIST, and CIS benchmarks. If you're passionate about building secure, scalable, and compliant systems while driving innovation in information security, then we want to chat. Are you ready to revolutionize the small business banking industry with us?

About the Role:
- Lead the implementation, management, and optimization of critical security solutions, including Endpoint Detection and Response (EDR), Mobile Device Management (MDM) tools like Kandji, and Zero Trust Network (ZTN) architecture.
- Oversee configuration management aligned with CIS benchmarks and perform cybersecurity vendor risk assessments. 
- Ensure compliance with frameworks like SOC2, ISO, and NIST, helping us maintain a robust security posture

Requirements for the Role: 

• 3–5 years in Information Security or a related role, with a focus on EDR, MDM, ZTN, and CIS benchmarks.
• Proven expertise in deploying and managing Kandji or similar MDM platforms.
• Strong understanding of cybersecurity frameworks such as SOC2, ISO, and NIST.
• Hands-on experience with configuration management and security auditing.
• Solid grasp of risk assessment methodologies and third-party vendor evaluations.

How We Define Success: 

• Consistent optimization of EDR, MDM, and ZTN systems.
• Maintaining full compliance with SOC2, ISO, and NIST standards.
• Proactive identification and mitigation of vendor risks.
• Sustained alignment of system configurations with CIS benchmarks.

Novo values diversity as a core tenet of the work we do and the businesses we serve. We are an equal opportunity employer, indiscriminate of race, religion, ethnicity, national origin, citizenship, gender, gender identity, sexual orientation, age, veteran status, disability, genetic information or any other protected characteristic.