jobs Logo
Longbow Advantage logo

Head of Infrastructure & Security

Longbow Advantageabout 24 hours ago
Remote
Senior Level
Full-Time

Top Benefits

Health Insurance
Dental Benefits
401k Matching

About the role

We operate two connected businesses: Rebus, a B2B SaaS platform serving enterprise warehouse and fulfillment operations, and Longbow Advantage, a WMS implementation and professional services firm. Rebus ingests and stores sensitive operational and personally identifiable data on behalf of our customers, which makes us a data processor with real security and compliance obligations. Longbow runs the corporate technology backbone that both businesses depend on, plus a small hosted-services footprint.

What To Expect…

We are looking for a Head of Infrastructure & Security; a senior leader to own infrastructure, security, and IT across both businesses end to end. Today these responsibilities sit with our VP of Product. This role exists to take full ownership of that domain; not just to maintain it, but to mature it, secure it, and scale it as we grow past our current stage.

This is a hands-on leadership role, not a purely strategic one. The Head of Infrastructure & Security will set direction and own outcomes, but at our scale you will also stay close enough to the technical detail to make sound architectural decisions and lead a small team of strong individual contributors

This role is Work From Home & remote, located in Montreal with some in-person team meetings

What You'll Own as Head of Infrastructure & Security:

SaaS Infrastructure (Rebus)

End-to-end ownership of our cloud infrastructure on GCP, architecture, reliability, cost, scalability, and operational excellence The full cloud-native application environment; containerized and serverless workloads, cloud networking, and the large-scale, multi-tenant data layer (many terabytes of customer data on MongoDB Atlas), including the architecture, performance, and scaling decisions across all of it Deployment, release, and maintenance processes, with a focus on uptime and minimizing customer-facing disruption, recognizing that a platform outage during an active warehouse shift is a customer event, not just a ticket Leadership of our senior SRE, providing direction and architectural vision to move the platform forward

Security & Compliance

Our overall security program, policy, posture, tooling, and incident response, across both businesses Achieving and maintaining SOC 2 Type II (and evaluating ISO 27001 as the customer base demands), including driving the program, evidence, and audit relationships Customer-facing security: questionnaires, audits, and trust conversations with security-conscious enterprise buyers Data protection obligations as a data processor, including PII handling and relevant privacy regimes (e.g. GDPR, CCPA) Managing security vendor relationships (MDR/EDR, SIEM, endpoint protection, penetration testing)

Corporate IT & Hosted Services (Longbow Advantage) — oversight, not day-to-day

This is the smaller part of the role; expect it to take no more than -15% of your time. We have a strong, capable IT team already in place, so what's needed here is direction, guidance, and oversight rather than hands-on operation.

Strategic direction and oversight of the internal IT function, corporate network, on-prem and cloud infrastructure, identity, endpoint management, help desk, and vendor relationships Light-touch oversight of a small, hosted WMS environment on GCP, including its reliability and availability commitments Mentorship and development of an established IT team, including an IT Manager and IT Administrators who handle the day-to-day

What We're Looking For

This role is weighed heavily toward SaaS infrastructure and security; this is the core of the job. A smaller component (15% of time) involves providing direction and oversight to an already-strong corporate IT team.

We are hiring first and foremost for depth in cloud infrastructure and security; the ability to give sound guidance to a capable IT function follows from that. The reverse profile — a strong IT manager stepping up into SaaS security, is not what this role needs

Required

Significant experience owning production cloud infrastructure at scale, ideally on GCP, in a SaaS context Demonstrated ownership of a security program at a company handling sensitive customer data, including direct experience driving SOC 2 Type II (or equivalent) to completion Strong grasp of operating large, multi-tenant database environments — MongoDB experience is a significant advantage given our stack The credibility to lead technical conversations with enterprise customers' security teams Experience leading and developing technical staff, including senior individual contributors, and providing direction to an established IT team Sound judgment on the reliability/ve1ocity/cost trade-offs that define infrastructure decisions at a growing company

Strong assets

Experience in a dual-business or services-plus-product environment Familiarity with the privacy obligations of a data processor (GDPR, CCPA) A pragmatic, build-vs-buy mindset on tooling and outsourced services (MDR, pentest, compliance automation)

The Litmus Test

The candidate we're looking for can credibly do all three of the following: drive a SOC 2 Type II program to completion, speak intelligently to the architecture and scaling risks of a large multi-tenant cloud-native environment, and hold a substantive security conversation with a demanding enterprise customer. Strong candidates clear all three. Providing oversight to the corporate IT team follows naturally from that foundation.

Why This Role Matters

You would be taking ownership of the single most concentrated area of risk and opportunity in the company: the infrastructure our product runs on and the security posture our customers increasingly evaluate us against.

It's a rare scope: enough breadth to shape the whole technology foundation of two businesses, enough depth to stay genuinely technical, and a direct line to senior leadership with the mandate to build the function as we scale.

Why Join Longbow?

Supportive work environment Work/life balance Competitive Salary 4-weeks of paid vacation 6 paid sick days, 2 paid personal days per year Excellent health and dental benefits, eligible as of your first day! Group RRSP/401k Matching Work from Home

Longbow Advantage is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law.

We are not able to assist with relocation or work permit applications for this role.

All your information will be kept confidential according to EEO guidelines.

Powered by JazzHR

HmQSdzVYXA

About Longbow Advantage

Technology, Information and Internet

Similar Jobs