IT Manager

We're looking for an IT Manager to own our internal IT and security operations end to end. As the company's first dedicated IT hire, you'll have full ownership of the function. Everything from device management and the SaaS stack to help desk and security hygiene runs through you. This is an individual contributor role reporting into our Operations team, with the autonomy to fully own and build IT the way you think is right as we scale.

We need someone who builds out IT, security, and compliance from first principles, implements the controls that meaningfully reduce risk, and skips the ones that just add process. Speed is a feature here, so the right person designs fast, adaptive policies that protect the company without slowing everyone down.

You'll own and harden our internal operational stack and tooling. It's ideal for a scrappy, hands-on IT operator, ideally someone who has been the first or second IT hire somewhere before, who wants to own a function end to end.

• →

  Own device management across (primarily an Mac / Apple fleet): provisioning, MDM, disk encryption, patch management, and onboarding / offboarding.

• →

  Administer Google Workspace and the wider SaaS and identity stack (SSO, MFA, SCIM provisioning), enforcing least-privilege access and running regular access reviews.

• →

  Stand up and run the help desk and day-to-day support. Build the workflows, set the tooling, and keep employees unblocked.

• →

  Maintain security hygiene across the company: MFA, encryption, access reviews, application inventory, and install / allowlisting policies that balance safety with employee autonomy.

• →

  Own a right-sized compliance program (SOC 2 or similar): policy authorship, control implementation, evidence collection, and audit support, without over-building it.

• →

  Audit what's installed and running across the fleet to identify and minimize attack vectors, keeping our internal ops environment tight.

• →

  Secure and tune local network and on-prem infrastructure: firewalls, VPN, Wi-Fi, segmentation, and office network performance and security.

• →

  Build security and compliance from first principles, right-sizing controls to our stage and implementing what reduces real risk without adding needless friction.

• →

  Manage IT vendors and/or external MSP: scope what to outsource vs. keep in-house, select partners, and own the relationships and SLAs.

• →

  Evaluate, procure, and manage IT and security tooling, owning the budget for your function

• 3+ years in a hands-on IT role, with experience as the first or second dedicated IT hire at a top-tier startup or similarly high-performing organization.

• A scrappy, resourceful operator who can stand up IT and security in a fast-moving environment and figure things out without a playbook handed to them.

• Hands-on experience managing a Mac / Apple-based device fleet (MDM, encryption, patch management) and supporting macOS day to day.

• Familiarity with Google Workspace administration and the wider SaaS / identity stack (SSO, MFA, SCIM provisioning).

• Comfort working with modern AI tools and helping the company adopt them safely.

• A first-principles thinker who can tell the difference between a control that reduces risk and one that just adds process, with the judgment to choose accordingly.

• Practical experience securing and tuning on-prem and local networks: firewalls, VPNs, segmentation, and wireless.

• Experience building or supporting a compliance program (SOC 2 / ISO 27001 / similar) without over building it.

• Experience managing IT vendors and MSPs, including scoping what to outsource and holding partners to SLAs.

• Comfort owning a function as an individual contributor: self-directed, organized, and able to set priorities and drive work independently.

• Excellent communication, including the ability to work directly with executive-level stakeholders, and the instinct to balance security rigor with a frictionless employee experience.

• Familiarity with Rippling for MDM, IT services, and SSO / SCIM provisioning.

• Engineering or scripting skills for tooling and workflow automation.

• Experience building IT systems from scratch (0 to 1) at an early-stage company.

• Relevant certifications (Security+, CISSP, CISM, or equivalent).

• Familiarity with incident response and vulnerability management in practice.

You'll have full ownership of a function that's critical to the business and the autonomy to build it the way you think is right. As the 1-of-1 IT person, you'll set the foundation for how we approach IT and security as we scale, with direct visibility into how the company runs and real latitude to shape it.