IT & Security Operations Manager

About The Position

Requirements

• 4-7 years of experience in IT operations, security operations, or SaaS business operations
• Hands-on SOC 2 evidence collection and audit coordination experience
• Google Workspace administration experience (security settings, groups)
• Experience with compliance platforms like Vanta, Drata, or similar
• SaaS vendor management experience (renewals, license optimization, procurement intake)
• Comfort with automation tools to streamline established workflows
• Ability to work directly with a CTO on security operations without needing hand-holding on fundamentals
• A builder's mindset - you'd rather create a process than follow a broken one, and you document what you build
• Organized and reliable
• Ability to work across teams (Engineering, Finance, GTM) and translate security and IT requirements into plain language

Nice To Haves

• Experience completing customer security questionnaires
• Office or facilities coordination at a startup
• MDM deployment experience

Responsibilities

• Manage day-to-day identity and access management (Google Workspace, Slack, AI platform, shared inbox)
• Run employee onboarding provisioning (account creation, checklist management, Vanta onboarding, welcome communications, completion tracking)
• Run employee offboarding (access revocation, system owner coordination, equipment return, deprovisioning verification)
• Serve as the internal IT point of contact (password resets, hardware troubleshooting, software support, connectivity issues)
• Manage the asset lifecycle (laptop procurement, serial number tracking, equipment reassignment, peripherals ordering)
• Coordinate the annual SOC 2 audit process (evidence collection, documentation organization, control status tracking, remediation follow-up, auditor liaison)
• Execute quarterly and annual access reviews (verify active users, document findings, remediate stale access)
• Manage Vanta day-to-day (dashboards, compliance summaries, Trust Center access requests, failed test remediation)
• Monitor and drive employee security compliance (agent installs, 1Password provisioning, MFA enforcement, security awareness training)
• Take first pass on inbound customer security questionnaires and maintain an answer library
• Track and execute data governance action items (tool policy enforcement, vendor risk monitoring)
• Maintain and improve a centralized SaaS inventory (tools, seat counts, renewal dates, costs, renewal calendar)
• Manage new software requests (intake, triage, security review routing, approval tracking, provisioning)
• Prepare vendor security assessments (collect SOC 2 reports, DPAs, documentation)
• Support office IT and facilities (conference room AV, key fob provisioning, building management coordination)
• Document key processes (onboarding/offboarding runbooks, SOC 2 evidence collection guides, vendor review steps, AI usage best practices)
• Identify and implement automation opportunities (workflows for onboarding, access requests, renewal reminders, offboarding checklists)

Benefits

• Competitive salary and meaningful equity ownership
• Comprehensive health, dental, and vision coverage
• 401(k) plan
• Flexible PTO and company holidays
• Remote-friendly work environment with flexibility and autonomy
• Opportunity to work alongside a high-caliber, mission-driven team
• Career growth and leadership opportunities