Corporate IT Engineer

Maybern is transforming the way private fund managers effectively manage their funds through cutting edge technology. Maybern is founded by top engineering experts with deep knowledge of the fund management space.

Private funds manage $15T in capital and are growing at 20% YoY, but with increasing regulatory scrutiny and investor demands for transparency, the need for world class software to help private fund CFOs is crucial.

This is where Maybern comes in.

We are equipping fund managers with intuitive, flexible fund management software, enabling private investment managers to focus on what they do best: driving returns for their investors. We are backed by leading venture capital firms and a large number of strategic investors.

Maybern is an NYC based company with a strong in-office culture to drive collaboration, and we are looking to make strong additions to our team.

Maybern is scaling to over 100 employees and is hiring our first dedicated IT and Security operator. We're looking for someone with a strong sense of ownership and agency who wants to build and shape this function, not just operate within one. The ideal candidate is as comfortable helping a teammate with Google Meet/Zoom connectivity as they are owning the SOC 2 evidence collection process and responding to security questionnaires.

This role is at the intersection of IT operations and security compliance. You will own and operate end-to-end, with a hands-on approach, and be a champion to our engineering team for critical security and privacy matters. As our first full time IT hire, you'll have real input on the tools, processes, and standards we put in place as we scale.

• Be the reliable face of IT for every Maybern employee. When something isn't working, you are the first call and will follow through to resolution.

• Own endpoint management end-to-end: MDM administration (Kandji or equivalent), device provisioning, inventory, and the complete asset inventory lifecycle.

• Own and maintain our conference room and setup: Google Meet/Zoom Rooms should just work, and when they don't, you fix it fast.

• Administer identity providers (Okta or equivalent) and enforce access policies across our fleet.

• Ensure every new hire is set up correctly from their first day across devices, access entitlements, and tools. You will also ensure every departure is accurately offboarded in partnership with People Ops.

• Set our IT foundations up for success as we scale the business.

• Own continuous SOC 2 evidence collection and control respective monitoring.

• Conduct and document quarterly access reviews; coordinate audit prep and serve as the primary liaison with external auditors.

• Administer endpoint security tooling (CrowdStrike or equivalent); monitor for anomalies,escalate and triage incidents with engineering when warranted.

• Coordinate annual security training completion, track attestations, and flag gaps.

• Maintain and continuously improve a security response library to reduce cycle time on questionnaires.

• Independently respond to vendor security questionnaires (VSQs) and own the security sections of due diligence questionnaires (DDQs).

• Conduct quarterly access audits across our SaaS stack; manage license governance and monitor for "shadow IT".

• Own the vendor security review process for software and hardware procurement.

• Identify opportunities to rationalize the stack and reduce tooling sprawl.

• Systems-Minded: You have strong instincts for how internal systems should be set up, and a knack for spotting inefficiencies or risks.

• Service-Oriented: You are calm under pressure, approachable, and love solving problems for teammates. You bring energy and empathy to every support interaction.

• Reliable & Thorough: You follow through, track issues to resolution, and are meticulous about documentation. You take pride in getting the details right.

• High Agency: You don't wait to be told what to prioritize. You spot the next thing that needs to happen and you go do it. You bring solutions, not just problems.

  Enthusiasm and High Standards: You exhibit passion and excitement for your work and expect nothing short of the best from yourself and your team.

• Collaborative: You communicate clearly, build cross-functional trust, and enjoy working closely with People, Ops, and other stakeholders.

• 6+ years of IT and/or security operations experience, ideally at a scaling SaaS or fintech products: you have a reputation as the person keeping things running while headcount doubles.

• Hands-on experience with SOC 2 Type II: you have collected evidence, managed a control framework, and coordinated with auditors before (or can demonstrate equivalent compliance program ownership).

• Working knowledge of MDM tools (Kandji or equivalent), identity providers (Okta or equivalent), and continuous compliance platforms (Secureframe or equivalent).

• Extensive experience in a primarily Mac environment (although we have a few PC users too).

• Comfortable with coordinating compliance requirements and your engineering team: you don't need to be a security engineer, but you need to speak the language.

• Self-directed, organized, and calm under pressure: whether you're debugging a Zoom Room 10 minutes before an all-hands or coordinating a SOC 2 audit, you don't need someone to manage priorities for you.

• Been the first or one of the first internal IT hires at an earlier stage or smaller company.

• Experience responding to vendor security questionnaires and customer trust reviews independently.

• Direct experience with Crowdstrike, Cloudflare, or DLP tooling.