Network & Cybersecurity

Company Overview

Gastronomous Technologies is a hard tech company redefining what's possible in the quick-service restaurant industry. Our flagship product — the ChronoGrill™ — is a fully autonomous, AI-powered grill deployed across commercial kitchens in the USA and Canada. Our infrastructure spans internal corporate systems, servers, cloud services, and the embedded hardware in our products. We take security seriously.

About the Role
We're looking for an experienced Network & Cybersecurity contractor to assess, harden, and document our security posture from the network layer up. This is a hands-on, on-site role with broad scope — you'll work across our internal infrastructure, our server environment, and the embedded systems that ship with our products. We expect rigorous documentation alongside every deliverable. SOC 2 certification is on our near-term roadmap, and this role anchors the network and infrastructure security track.

WHAT YOU'LL DO

Network Architecture & Security

• Audit, redesign, and document our network architecture — segmentation, VLANs, access controls
• Review firewall policies —tighten existing rules, eliminate unnecessary exposure, and document the final ruleset
• Configure and maintain VPN access for remote team members and contractors
• Implement and document network monitoring and alerting for anomalous traffic

Server Infrastructure

• Lead the setup and configuration of new server clusters — racking, OS hardening, services, and access controls.
• Review, document, and strengthen backup configurations.
• Manage patch cadence and system hardening across all servers and critical hosts.

Penetration Testing & Vulnerability Assessment

• Conduct penetration testing on our internal infrastructure — identifying and remediating exploitable vulnerabilities
• Conduct or coordinate breach simulation exercises to validate detection and response capabilities
• Produce formal reports with findings, risk ratings, and remediation priorities for each assessment

Compliance & Documentation

• Drive the network and infrastructure security controls workstream for our SOC 2 readiness program
• Produce and maintain thorough documentation: network diagrams, firewall policies, configurations, incident response runbooks
• Advise on policy creation — acceptable use, incident response, vulnerability management, and third-party access

WHAT WE'RE LOOKING FOR

*MINIMUM 7+ YEARS OF RELEVANT CANADIAN-INDUSTRY EXPERIENCE REQUIRED.*

Strong hands-on networking background — firewall configuration, VLANs, routing, and network segmentation

Proven penetration testing experience — infrastructure and/or embedded/IoT systems

Familiarity with Linux server hardening, server cluster setup, and infrastructure automation

Practical knowledge of SOC 2, NIST CSF, or equivalent frameworks

Strong written documentation skills — diagrams, reports, and runbooks that a future team member can actually use

Able to work independently with minimal oversight, and communicate clearly with non-technical leadership

Experience with AWS Platform (NICE TO HAVE)

Experience with embedded Linux, IoT device security, or OT/ICS environments is a meaningful advantage given the nature of our product.

The scope of work is not limited to what is listed above — and you don't need to check every box. We're kicking off some significant initiatives and are looking for someone who can help lead the charge, grow with the work, and bring their own perspective on what needs to get done.

WHY THIS ENGAGEMENT

Unique scope: internal corporate infra AND embedded hardware security in deployed commercial equipment

Greenfield opportunity to build things the right way from the ground up

Direct input into a SOC 2 program from day one

Small team, real authority — your recommendations get implemented

ENGAGEMENT DETAILS

This is an independent contractor role, structured in two phases:

1. Initial phase (first 3–4 months): Approximately 80–120 hours per month above baseline, focused on scoping and delivering defined projects. *Potential opportunity to transition too full-time.
2. Ongoing: Approximately 30 hours per month for support, maintenance, and continuous improvement.
   

The preference is to work on-site at our facility in Oakville, Ontario, scheduled as full days rather than short daily visits. Exact scheduling is flexible and can be arranged based on project priorities