Security Manager

Ever Driven is the nation’s leading provider of alternative student transportation, partnering with school districts to serve students who need it most—including those experiencing homelessness, living with disabilities, or outside traditional bus routes. Our tech-enabled, human-led model helps remove barriers to learning through safe, reliable transportation.

Since 2006, we’ve helped organizations solve complex transportation challenges through strong partnerships, dependable service, and a people‑first approach. Guided by integrity, ownership, and collaboration, we move with urgency, lead with data, and never settle. Our success is driven by people who bring curiosity, accountability, and a commitment to continuous growth.

As a Security Manager, you’ll lead Ever Driven’s enterprise security function, ensuring the protection of our data, infrastructure, and operations across both internal and production environments. You’ll set the vision for a proactive, risk‑based security program—building systems, processes, and a culture that protects the students and families we serve. This role blends strategic leadership with technical depth: you’ll coach engineers, influence policy & architecture, and drive security maturity across the organization.

Salary Range: $150,000 – $170,000/year (based on experience) + bonus potential Location: Greenwood Village, CO.
Hybrid: 4 days in office, 1 day remote

• Lead and mature Ever Driven’s enterprise security program by defining strategy, measurable objectives, and execution rhythms across corporate and production environments.
• Own the full lifecycle of security policies—drafting, updating, communicating, and measuring adoption to ensure practicality, auditability, and alignment with evolving business needs.
• Manage the company’s security awareness program (KnowBe4), driving measurable behavioral change through ongoing simulations, role‑based training, and targeted communications.
• Govern Ever Driven’s partnership with its MSSP, overseeing expectations, detection tuning quality, and continuous improvement opportunities.
• Oversee third‑party risk management, ensuring vendors meet security standards, documenting remediation plans, and aligning with procurement and legal stakeholders.
• Lead annual disaster recovery and business continuity planning, ensuring system resilience and readiness through realistic testing and cross‑team coordination.

• Protect student, employee, and operational data through Microsoft security solutions including Azure, Sentinel, Entra , Defender XDR, Purview, and Intune.
• Champion zero‑trust architecture across Azure and M365, ensuring identities, access pathways, and network controls scale securely with Ever Driven’s growth.
• Integrate security into engineering workflows—embedding controls into CI/CD pipelines, code review standards, and infrastructure‑as‑code practices, enabling secure automation without slowing delivery.
• Lead the end‑to‑end incident response, vulnerability management, and threat hunting programs—establishing playbooks, maturing detection capabilities, coordinating response, and driving continuous learning through retrospectives and tabletop exercises.

• Align security, compliance, and risk management with HIPAA, FERPA, and SOC 2 frameworks—ensuring Ever Driven maintains trust with school districts, auditors, and partners.
• Coordinate and deliver responses to customer and district security assessments, questionnaires, and due‑diligence requests, ensuring clarity, accuracy, and alignment with Ever Driven’s security posture.
• Partner with Engineering, IT, and Business Operations to translate compliance into actionable controls, documentation, and audit‑ready processes.
• Drive operational excellence by establishing repeatable controls, reporting mechanisms, and accountability frameworks used across teams.
• Evaluate emerging technologies—including AI‑assisted detection, confidential computing, advanced identity tooling, and passwordless authentication—and pilot solutions that…