ABOUT GASTRONOMOUS

Gastronomous Technologies is a hard tech company redefining what's possible in the quick-service restaurant industry. Our flagship product — the ChronoGrill™ — is a fully autonomous, AI-powered grill deployed across commercial kitchens in the USA and Canada.

Our infrastructure spans internal corporate systems, servers, cloud services, and the embedded hardware in our products. We take security seriously.

THE ROLE

We're looking for an experienced Network & Cybersecurity contractor to assess, harden, and document our security posture from the network layer up. This is a hands-on, on-site role with broad scope — you'll work across our internal infrastructure, our server environment, and the embedded systems that ship with our products.

We expect rigorous documentation alongside every deliverable. SOC 2 certification is on our near-term roadmap, and this role anchors the network and infrastructure security track.

WHAT YOU'LL DO

Network Architecture & Security

• Audit, redesign, and document our network architecture — segmentation, VLANs, access controls
• Review firewall policies —tighten existing rules, eliminate unnecessary exposure, and document the final ruleset
• Configure and maintain VPN access for remote team members and contractors
• Implement and document network monitoring and alerting for anomalous traffic

Server Infrastructure

• Lead the setup and configuration of new server clusters — racking, OS hardening, services, and access controls.
• Review, document, and strengthen backup configurations.
• Manage patch cadence and system hardening across all servers and critical hosts.

Penetration Testing & Vulnerability Assessment

• Conduct penetration testing on our internal infrastructure — identifying and remediating exploitable vulnerabilities
• Conduct or coordinate breach simulation exercises to validate detection and response capabilities
• Produce formal reports with findings, risk ratings, and remediation priorities for each assessment

Compliance & Documentation

• Drive the network and infrastructure security controls workstream for our SOC 2 readiness program
• Produce and maintain thorough documentation: network diagrams, firewall policies, configurations, incident response runbooks
• Advise on policy creation — acceptable use, incident response, vulnerability management, and third-party access

WHAT WE'RE LOOKING FOR

MINIMUM 7+ YEARS OF RELEVANT CANADIAN-INDUSTRY EXPERIENCE REQUIRED.

• Strong hands-on networking background — firewall configuration, VLANs, routing, and network segmentation
• Proven penetration testing experience — infrastructure and/or embedded/IoT systems
• Familiarity with Linux server hardening, server cluster setup, and infrastructure automation
• Practical knowledge of SOC 2, NIST CSF, or equivalent frameworks
• Strong written documentation skills — diagrams, reports, and runbooks that a future team member can actually use
• Able to work independently with minimal oversight, and communicate clearly with non-technical leadership
• Experience with AWS Platform (NICE TO HAVE)

Experience with embedded Linux, IoT device security, or OT/ICS environments is a meaningful advantage given the nature of our product.

The scope of work is not limited to what is listed above — and you don't need to check every box. We're kicking off some significant initiatives and are looking for someone who can help lead the charge, grow with the work, and bring their own perspective on what needs to get done.

WHY THIS ENGAGEMENT

• Unique scope: internal corporate infra AND embedded hardware security in deployed commercial equipment
• Greenfield opportunity to build things the right way from the ground up
• Direct input into a SOC 2 program from day one
• Small team, real authority — your recommendations get implemented

ENGAGEMENT DETAILS

This is an independent contractor role, structured in two phases:

Initial phase (first 3–4 month