Simplify Logo

Full-Time

Information Security Architect

BambooHR

BambooHR

1,001-5,000 employees

Cloud-based HR software for SMBs

No salary listed

Utah, USA

Hybrid

Utah-based hybrid role with regular in-office days per week; background and credit checks required.

Category
IT & Security (1)
Required Skills
Microsoft Azure
Threat modeling
Computer Networking
SOC 2
AWS
Cryptography
Google Cloud Platform
Requirements
  • Bachelor’s degree in Information Security, Computer Science, Information Systems, or a related field, or equivalent professional experience.
  • 6–7+ years of hands-on experience in information security, security engineering, cloud security, or closely related roles.
  • Demonstrated experience leading security architecture or design decisions for production cloud and/or corporate environments.
  • Strong working knowledge of at least one major cloud platform (AWS, Azure, or GCP), including IAM, networking, encryption, key management, and logging.
  • Practical experience across corporate security domains such as identity and access management, endpoint security, SaaS governance, and data protection.
  • Ability to independently assess risk, define security control objectives, and translate them into clear architectural guidance and implementation requirements.
  • Ability to drive architectural consistency across diverse cloud and corporate systems with varying ownership and constraints.
  • Experience balancing security risk reduction with delivery speed, usability, and operational realities.
  • Excellent written and verbal communication skills, with the ability to influence and align technical and non-technical stakeholders.
  • Strong organizational and prioritization skills; ability to manage multiple initiatives in a fast-paced environment.
  • Experience in a SaaS or cloud-first organization.
Responsibilities
  • Lead the design and evolution of security architecture across cloud infrastructure, SaaS platforms, and corporate information systems, ensuring solutions are secure-by-design, scalable, and operationally sustainable.
  • Own and maintain security architecture standards, reference architectures, and secure design patterns spanning identity and access management, data protection, logging/telemetry, endpoint security, and third-party integrations.
  • Conduct and lead security architecture reviews for new systems, material changes, vendor tools, and integrations; document decisions, required control outcomes, and implementation guidance that teams can execute.
  • Drive threat modeling and architectural risk assessments for strategic initiatives; translate findings into prioritized remediation plans and architecture improvements that balance risk reduction with usability and delivery velocity.
  • Define and validate cloud security control expectations, including IAM, network segmentation, encryption and key management, secrets management, centralized logging, and least-privilege access models; validate adoption through partnership with engineering and IT.
  • Influence detection and response architecture in collaboration with SecOps to improve visibility, telemetry quality, and response effectiveness; support investigations by providing architectural context and remediation guidance as needed.
  • Partner with Security Engineering, Application Security, Security Operations, and GRC to ensure security controls are consistently designed and implemented across prevention, detection, response, and governance/audit domains (e.g., SOC 2, ISO 27001, and customer requirements).
  • Create clear and accessible architecture documentation (standards, diagrams, patterns, decision records) and communicate security tradeoffs effectively to both technical and non-technical stakeholders.
  • Mentor and guide security practitioners and cross-functional partners by improving shared understanding, raising architectural maturity, and promoting consistent adoption of security patterns and secure-by-default approaches.
  • Demonstrate an AI-forward mindset and proficiency by actively using AI tools to improve productivity, quality, and decision-making in security architecture and engineering workflows, and be able to speak to real-world examples of using AI to conduct work and to design and implement practical, secure solutions (e.g., accelerating architecture documentation, threat modeling, control validation, detection logic development, policy/standard drafting, or automating analysis).
Desired Qualifications
  • Experience supporting SOC 2, ISO 27001, and customer security assessments.
  • Familiarity with infrastructure-as-code, CI/CD pipelines, and cloud-native architectures.
  • Experience with SSO/IdP platforms, MDM/endpoint management tools, and modern SaaS security controls.
  • Security certifications such as AWS Security Specialty, CCSK, SSCP, CISSP (Associate or full), or equivalent.
BambooHR

BambooHR

View
Website

BambooHR provides cloud-based human resources software for small and medium-sized businesses. It helps with hiring, onboarding, employee data management, time tracking, and performance management through an easy-to-use platform. The product works by offering core HR modules stored in the cloud, with a marketplace of integrations (e.g., real-time analytics with Employee Cycle, automated 401(k) with Human Interest, interview software with Spark Hire) that extend its capabilities. This differentiates BambooHR from competitors by combining essential HR functions with a broad ecosystem of integrations in a subscription-based model. The company’s goal is to help SMBs streamline HR tasks, centralize employee data, and improve HR efficiency through a flexible, scalable solution.

Company Size

1,001-5,000

Company Stage

Acquired

Total Funding

N/A

Headquarters

Lindon, Utah

Founded

2008

Simplify Jobs

Simplify's Take

What believers are saying

  • Managed payroll services create a higher-value revenue tier for scaling customers.
  • Compliance Training with EasyLlama deepens stickiness across 300 courses in 10 languages.
  • Global hiring integrations with Remote and RemoFirst expand BambooHR's international workflow reach.

What critics are saying

  • Add-on pricing for payroll and time tracking drives SMBs toward bundled alternatives.
  • Third-party integrations let partners own screening, EOR, and compliance workflows.
  • Managed services reveal product complexity; customers require expensive support to operate BambooHR.

What makes BambooHR unique

  • BambooHR unifies HRIS, payroll, benefits, and performance in one SMB platform.
  • Its Marketplace and 150-plus integrations extend workflows without replacing core employee records.
  • Easy-to-use onboarding and reporting fit 50-to-500 employee companies outgrowing spreadsheets.

Help us improve and share your feedback! Did you find this helpful?

Your Connections

People at BambooHR who can refer or advise you

Benefits

Health Insurance

Dental Insurance

Vision Insurance

401(k) Retirement Plan

401(k) Company Match

Unlimited Paid Time Off

Paid Holidays

Flexible Work Hours

Educational Benefits

Wellness Program

Company News

Brainner
May 5th, 2026
How fraud detection works alongside Your ATS.

How fraud detection works alongside Your ATS. Federico grinblat. May 5, 2026 Brainner adds an intelligence layer on top of your existing ATS. One-click integration with Greenhouse, Workday, Lever, SmartRecruiters, BambooHR, Ashby, Recruitee and others. Candidates apply through your ATS like always. Brainner screens them in real-time, flags fraud risks, and syncs everything back. Your team saves time, reduces hiring costs, and avoids the risks that come with fake applicants - all without changing how they work. Your ATS handles the process. Brainner adds the intelligence. Your ATS is built for workflow: * Job postings and candidate tracking * Interview scheduling and offer management * Reporting and audit trails * System of record for your hiring pipeline Brainner connects to platforms like Greenhouse, Workday, Lever, Smartrecruiters, JazzHR, Ashby, Workable and BambooHR to add criteria-driven candidate evaluation and fraud detection. Think of it as an intelligence layer that sits between candidate applications and recruiter review - giving your TA team the full picture before they make any decision. What Brainner adds: screening + fraud detection. Two layers: AI screening surfaces the most qualified candidates, and fraud detection flags High Risk profiles before any recruiter opens a resume. Layer 1: AI screening (who's qualified?). 400 applications hit your ATS. Brainner evaluates every single one against role-specific criteria you define: * Technical skills (specific languages, frameworks, tools) * Experience level (years in role, seniority progression) * Industry background * Education requirements * Custom criteria per role Ranks them by fit. Surfaces the top 10-15% automatically. Result: Your team reviews 25-30 qualified candidates instead of 400 resumes. That's 20-40 hours saved per role. Layer 2: fraud detection (who's genuine?). Once Brainner identifies the top qualified candidates, the Identity Check Report runs on each profile - giving your team the full picture before review: * Contact verification (email domain age, phone carrier history) * Profile consistency (LinkedIn vs. resume alignment) * Location verification (IP patterns, phone country match) * Behavioral signals (application timing, automated generation signs) Flags High Risk profiles with specific context before any recruiter opens them. Result: Your team doesn't waste time on fake applicants. No security risks from fraudulent hires. No compliance violations from accidentally hiring from sanctioned regions. How this saves time, money, and headaches. Time saved: No more manual resume reviews on unqualified candidates. No more LinkedIn stalking to verify identities. Brainner handles both. TA teams report saving 20-75 hours per role. Cost reduced: Fewer wasted interviews with fake candidates. Faster time-to-hire means less revenue lost to unfilled roles. No bad hires from fraud that slipped through. Risks avoided: Security breaches from fraudulent hires. Compliance violations (OFAC sanctions, work authorization fraud). Pipeline pollution that buries real talent under fake applicants. The integration: one click, Zero disruption. Connect Brainner to your ATS in one click. Choose which jobs to activate it on. Candidates start applying. Brainner screens them in real-time as they come in. Ranked candidates and fraud flags sync back to your ATS automatically. Two ways to access results: 1. Quick view inside your ATS: Tags, scores, High Risk flags appear as notes or custom fields in Greenhouse, Lever, Workday. 2. Full analysis in Brainner's dashboard: Criteria breakdowns, Identity Check details, justifications. Bidirectional sync: Advance a candidate in Brainner, it updates in your ATS. Archive someone in your ATS, Brainner reflects it. Your team stays in control. What this looks like for your team. A remote Data Analyst role goes live in Greenhouse. 300 applications come in over 48 hours. Without Brainner: * Recruiter spends 2-3 days manually reviewing resumes * Spots 50-100 profiles that "look suspicious" * Spends another 20-40 hours doing LinkedIn checks, phone verification, email validation * Some fakes still slip through * Real top candidates accept offers elsewhere while you're verifying With Brainner: * 300 applications | Brainner screens in real-time * 30 qualified candidates surface * Identity Check flags 5 as High Risk * Recruiter reviews 25 genuine candidates in 2-3 hours total * Zero fakes reach phone screens * Top talent moves faster "With their fake applicant detection tool, we can confidently move forward knowing that the candidates we're speaking with are legitimate. That's been a huge advantage for our team." Lauren Fischer, Senior Manager of Talent Acquisition at IMO Health Which ATS platforms work with Brainner? One-click integration with: * Greenhouse * Lever * Workday * iCIMS * BambooHR * Ashby * Recruitee * Workable * SmartRecruiters * JazzHR * Zoho Recruit Don't see your ATS? Brainner, Inc. can likely integrate it -> Book a demo No engineering team required. Brainner maintains the integration. When your ATS updates its API, Brainner updates automatically. FAQs. How does Brainner work with my existing ATS? How long does it take to set up the integration? How accurate is the fraud detection tool? What happens when a candidate is flagged as High Risk? Does Brainner block them? What data sources does Brainner use to verify candidates? Is Brainner compliant with GDPR, CCPA, and SOC 2? Save up to 40 hours per month. HR professionals using Brainner to screen candidates are saving up to five days on manual resume reviews.

The Associated Press
Mar 19th, 2026
BambooHR launches services arm with managed payroll to help growing teams scale HR operations

BambooHR, the HR and payroll platform, has launched BambooHR Services to help growing companies manage increasingly complex HR responsibilities. The offering provides flexible support options including strategic guidance, technical optimisation and hands-on operational assistance. The service comprises three distinct offerings: HR Consulting provides ongoing access to dedicated HR experts who offer guidance and administrative support. Technical Services helps organisations implement and optimise their BambooHR platform, including configuration and integrations. HR Outsourcing, starting with Managed Payroll, offers done-for-you solutions for time-intensive functions whilst customers maintain full control. BambooHR is used by more than 30,000 companies across 190 countries. The services are delivered by consultants with extensive HR experience and expertise in the BambooHR platform.

KnowledgeNile
Mar 11th, 2026
RemoFirst Integrates with BambooHR to Streamline Global Hiring and Workforce Management

RemoFirst integrates with BambooHR to streamline global hiring and workforce management. New integration helps HR teams reduce administrative burden, maintain data accuracy, and scale international hiring with confidence. SAN FRANCISCO, March 11, 2026 (GLOBE NEWSWIRE) - RemoFirst, a global Employer of Record platform operating in 185+ countries, has launched a new integration with BambooHR, the leading people intelligence platform for HR, payroll, and benefits. This integration enables customers to sync employee records directly from BambooHR into the RemoFirst platform, minimizing repetitive data entry and helping HR teams maintain consistency across systems. The result is faster onboarding, fewer manual errors, and more connected global workforce operations. "BambooHR is already a core platform for many of our scaling customers," said Nurasyl Serik, CEO of RemoFirst. "This integration automatically connects their people data with RemoFirst, streamlining global hiring while maintaining accuracy during rapid growth." Designed for growing teams with global reach. As companies expand internationally, managing HR operations across borders becomes more complex. Disconnected systems waste time, forcing teams to re-enter data manually or fix inconsistencies across platforms. With this new integration, HR and People Operations leaders can: * Connect BambooHR to RemoFirst in minutes * Import existing employee data into RemoFirst to begin onboarding * Reduce data duplication and maintain consistency across systems * Work faster with fewer manual processes or spreadsheet workarounds The integration supports HR teams that want to scale their global workforce while remaining in compliance with local laws in each country. It's especially helpful for companies hiring full-time employees through RemoFirst's Employer of Record services, as well as those managing contractors alongside internal teams. No extra cost, no long setup. RemoFirst built this integration to be self-serve and simple to activate. Admins can enable it in minutes by following this step-by-step guide. There are no additional fees or long implementation timelines. The synced data includes basic employee profile information like name, job title, department, and email address - helping ensure the right people are onboarded compliantly and efficiently, no matter where they're located. "Our focus has always been making global hiring more accessible," said Serik. "By integrating with tools our customers already use, we're removing barriers and giving them more flexibility to build great teams anywhere in the world." Built to support compliance and scale. RemoFirst offers a flat-rate pricing model with no hidden fees and no annual contracts. The platform is built for compliance from day one, with exclusive partners who have been managing payroll for 20+ years and processed $30B+ in international payroll. Whether companies are hiring in one new country or 30, RemoFirst provides the local expertise and technology to do it right. The BambooHR integration is the latest example of how RemoFirst is simplifying global employment infrastructure. It adds to a growing list of product capabilities designed to help teams move quickly, stay compliant, and reduce overhead. Getting started. The BambooHR integration is available now to all RemoFirst customers. Learn how to enable it here, or book a demo with its team to see it in action. About RemoFirst. RemoFirst is your go-to Employer of Record (EOR), here to make global employment easy and affordable starting at $199/mo. Forget the stress of setting up foreign entities or navigating complex local labor laws, Knowledgenile handle it for you. With RemoFirst, you can onboard and manage employees and contractors in 185+ countries, all while staying fully compliant. Fast, simple, and built for teams ready to scale their talent pool globally. About BambooHR. BambooHR(R) is the leading global HR software platform that sets people free to do great work(TM). It unifies AI-powered HR, payroll, benefits, talent management, and more than 150 integrations in a single system designed to simplify people processes and improve workforce clarity. Through its people intelligence platform, BambooHR delivers real-time insights that help organizations unlock potential and adapt as work evolves. Trusted by more than 30,000 companies across 190 countries and 50 industries, BambooHR supports millions of employees worldwide. Discover more Human resource management system HR software

Yahoo Finance
Mar 11th, 2026
RemoFirst integrates with BambooHR to streamline global hiring across 185+ countries

RemoFirst, a global Employer of Record platform operating in over 185 countries, has launched an integration with BambooHR to streamline international hiring. The integration allows customers to sync employee records directly from BambooHR into RemoFirst, reducing manual data entry and administrative errors. The self-serve integration can be activated in minutes at no additional cost. It syncs basic employee information including names, job titles, departments and email addresses, helping HR teams maintain data consistency across systems whilst scaling global operations. "This integration automatically connects their people data with RemoFirst, streamlining global hiring whilst maintaining accuracy during rapid growth," said Nurasyl Serik, RemoFirst's CEO. The platform offers flat-rate pricing with no hidden fees or annual contracts.

PR Newswire
Oct 21st, 2025
BambooHR and EasyLlama Partner to Deliver Built-in Compliance Training for Businesses Worldwide

BambooHR and EasyLlama partner to deliver built-in Compliance Training for businesses worldwide. News provided by. BambooHR Compliance Training, Powered by EasyLlama, Delivers Seamless Access to 300+ Courses Across Key Risk Areas at No Additional Cost DRAPER, Utah, Oct. 21, 2025 /PRNewswire/ - BambooHR(R), the easiest-to-use people platform for HR, payroll, and benefits, today announced the expansion of their compliance suite with the launch of BambooHR Compliance Training, powered by EasyLlama, giving small and medium-sized businesses integrated access to world-class compliance education. With over 300 courses offered in 10 languages, this new integration enables organizations to meet legal requirements, mitigate risk, and foster safer, more inclusive workplaces, all within BambooHR. As global regulations expand, from OSHA and HIPAA to GDPR and the EU AI Act, small and mid-sized businesses are disproportionately vulnerable. According to Globalscape, Non-compliance costs businesses in the U.S. alone billions of dollars annually in fines, lawsuits, and lost productivity, with a single incident averaging nearly $15 million when legal fees and reputational damage are included. BambooHR Compliance Training expands BambooHR's compliance offering to level the playing field by giving every customer tools to protect themselves from reputational risk. Customers are already seeing the benefits. "EasyLlama takes the headache out of compliance," said Emily Fieser, Director of Culture & Development at Natural Retreats. "I can send training invitations in minutes, track progress in real time, and rely on automatic reminders." "The stakes for compliance have never been higher. Whether you're a five-person shop or a global company, staying ahead of regulatory expectations is critical," said Brian Crofts, Chief Product Officer at BambooHR. "BambooHR Compliance Training, powered by EasyLlama, makes it simple for our customers to protect their people, their reputation, and their future, at no extra cost." EasyLlama's proven track record underscores the impact: in the past year alone, the company trained 1.7 million employees and delivered 2.7 million trainings across 5,700+ customers. "Compliance training is one of the most universal pain points for HR teams," said Samuel Devyver, CEO of EasyLlama. "Our mission is to make training easy, engaging, and effective, so employees don't just check a box; they understand and apply what they've learned. By bringing EasyLlama's training natively into BambooHR, we're ensuring businesses everywhere can meet the necessary requirements while building stronger, safer workplace cultures." BambooHR Compliance Training is fully integrated into the BambooHR platform, allowing HR teams to assign, track, and manage training directly from their dashboard with no extra logins or systems to juggle. * Core: Harassment prevention training * Pro: 15-course bundle tailored by country * Elite: Unlimited access to over 300 courses in 10 languages To learn more about BambooHR's suite of compliance tools, including Compliance Training, powered by EasyLlama, visit: https://www.bamboohr.com/platform/compliance/ About BambooHR BambooHR(R) is the leading HR software platform that sets people free to do great work(TM). Intuitively designed and user-friendly HR, payroll, and benefits administration in one unified ecosystem means less focus on process and more on growing what matters most - people. With AI-powered insights and comprehensive reporting, HR leaders gain the data they need to craft strategies to enhance employee engagement and retention while effectively measuring success. Trusted by HR professionals in over 30,000 companies across 190 countries and 50 industries, BambooHR supports millions of users throughout their employee journey. About EasyLlama EasyLlama is an all-in-one compliance and learning platform helping companies reduce risk, protect their business, and increase employee productivity with AI-powered compliance and learning solutions. Our mission is to create safer and more productive workplaces where people are empowered to do their best work. More than 5,700 businesses trust EasyLlama to deliver engaging and effective learning experiences that are designed to match how people like to learn today. Learn easier with EasyLlama.