Security & Compliance Manager

Proda Technology is a dynamic and fast-growing Managed IT and Security Services Provider headquartered in Atlanta, GA. For over 15 years, we’ve partnered with organizations to deliver strategic technology solutions that create lasting impact. We’re proud to be recognized as a 2025 Top 25 Small Business for the fourth consecutive year and the 2022 Woman-Owned Business of the Year by the Cobb Chamber of Commerce.

Proda Technology is a great opportunity to be part of an innovative and fast-growing company with unique roots. Our Niche is creating a unique culture that fosters the best in our people. Our Vision is to drive client success through strategic technology partnerships and solutions.

Our core values are what will get us there: lead with soul, have fun, adapt and evolve, be resourceful, and commitment to people. If this is motivating for you, then we invite you to apply for this opportunity

The Security & Compliance Manager owns and leads security and compliance programs for Proda Technology and its clients. This role is responsible for ensuring security initiatives align with business objectives, client risk tolerance, and recognized frameworks such as NIST, HIPAA, CIS, and SOC 2. Serving as a trusted advisor, this role balances strategic oversight with hands‑on involvement where it matters most.

The Security & Compliance Manager plays a key role in incident response, vendor risk management, and security monitoring efforts, while documenting findings and tracking remediation activities. Acting as a trusted security advisor, the Security & Compliance Manager communicates risks and recommendations in clear, business‑focused language and helps promote a strong security‑aware culture.

Duties and Responsibilities

Security & Compliance Program Ownership

• Own internal and client‑facing security and compliance initiatives aligned with industry frameworks and regulatory requirements (NIST, HIPAA, and SOC 2).
• Lead risk assessments, compliance reviews, and governance activities from discovery through remediation.
• Maintain risk registers, compliance roadmaps, and documentation; report posture, trends, and recommendations to leadership and clients.
• Serve as the primary point of contact for client audits, assessments, and compliance‑related inquiries.
• Define, track, and report on security and compliance KPIs to leadership and clients.
• Identify, evaluate, and document security and compliance risks across internal and client environments.
• Develop and guide mitigation and remediation plans in partnership with internal teams and clients.
• Advise stakeholders on risk, controls, and tradeoffs using clear, business‑focused language.
• Design, lead or facilitate tabletop exercises and incident readiness activities.
• Conduct risk assessments and vulnerability analyses.
• Lead incident response activities and investigations.
• Ensure incidents are properly documented, communicated, and reviewed.
• Maintain and improve incident response plans and playbooks based on lessons learned.

Security Operations Oversight

• Provide oversight, management and administration of security monitoring, vulnerability management, and tooling effectiveness (e.g., SIEM, MDR, EDR).
• Review vulnerability and security findings; ensure remediation efforts are tracked and completed.
• Partner with internal technical teams to improve security posture and operational consistency.
• Review security metrics and KPIs to identify gaps and improvement opportunities.

Security Education & Culture

• Encourage and reinforce a security‑first culture across Proda Technology and with clients.
• Lead security‑focused trainings for internal team members, tailored to role and risk.
• Educate clients and prospects through workshops, presentations, and advisory sessions on security and compliance topics.

Third-Party & Vendor Risk Management

• Assess the security posture of third‑party vendors and partners through risk reviews, questionnaires, and supporting documentation.
• Support vendor due diligence reviews for new and existing relationships, including coordination with internal stakeholders.
• Monitor and track contractual security and compliance requirements, ensuring vendors meet agreed-upon standards.
• Identify and communicate third-party

Client, Prospect & Industry Engagement

• Act as a security and compliance advisor during prospect conversations, pre‑sales activities, and client engagements.
• Represent Proda Technology at industry events, conferences, and potential speaking engagements as a subject matter expert.
• Travel approximately 20% for conferences, speaking opportunities, prospect meetings, and client engagements.

Business Rhythm & EOS Participation

• Operate within Proda Technology’s EOS (Entrepreneurial Operating System) framework.
• Actively participate in departmental Level 10 (L10) meetings, contributing to scorecards, Rocks, issue‑solving, and quarterly priorities.
• Support continuous improvement through data‑driven decision‑making and accountability.

Knowledge, Skills, and Qualification Requirements

• 4-year bachelor’s degree or equivalent professional experience.
• Minimum 3 years’ experience working at a Managed Services Provider.
• Minimum 7 years’ experience in security engineering, security operations, or security consulting role
• Understanding of core technology and security concepts, including the following: Networking. Endpoint security, Identity and access management, Vulnerability management, Private and Public datacenters
• Demonstrated experience performing the following: Risk assessments and vulnerability management, Security governance and compliance (ISO, NIST, SOC 2), Experience participating in or leading incident response activities, Client‑facing security advisory and consulting activities, Management and administration of SIEM, MDR, and EDR tools
• Preferred Certifications: CISSP, CISM, CRISC, CISA
• Understand and consistently act in accordance with the company core values.
• Understanding and embracement of accountability, ownership, and customer experience concepts.
• Understanding of basic best‑practice security processes.
• Ability to document all activity in detail and an appreciation of the importance of quality documentation.
• Ability to work in a fast‑paced environment and effectively meet deadlines.
• Excellent time management/organization skills with the ability to handle multiple tasks and accurately document activity.
• Demonstrated logical troubleshooting methodology.
• Excellent written and verbal communication skills and ability to adapt to different audiences as required.
• Able to explain technical concepts in clear and understandable “human” language.
• Self‑motivated with the ability to function autonomously with minimal supervision.
• Strong customer service mentality.
• Strong team player with the ability to collaborate with staff of differing skillsets and personalities.
• Exposure to Core MSP Tools is a Plus: Datto Autotask (PSA), Datto AEM (RMM), and IT Glue

Working Conditions

This role is based at Proda Technology’s headquarters in Atlanta, GA, a collaborative and pet‑friendly office where small dogs are frequent companions. The work environment is fast‑paced, supportive. Most responsibilities will be carried out onsite at our headquarters.

Approximately 20% travel is expected for conferences, prospect meetings, client engagements, and speaking opportunities. Occasional after‑hours participation may be required. Candidates should be comfortable lifting and repositioning standard IT equipment, up to 30 lbs. as needed.

Most work will be performed at a desk using a computer, mouse, and keyboard for extended periods.

This job description outlines the primary functions of the role but is not all‑inclusive. Team members may be asked to support other responsibilities to meet the needs of the business and our clients.