IT Operations/Security Manager

We’re hiring an IT Operations Manager to run IT for our globally distributed engineering organization. You’ll own day-to-day IT operations, drive automation and modernization of our IT stack, and serve as the hands-on technical owner of SOC 2 Type II maintenance and client security reviews.

Must Haves:

• 5+ years in IT operations or IT security, including 2+ years leading an IT Support team.
• Hands-on experience running day-to-day IT for a distributed/remote workforce: Google Workspace administration, SSO, VPN, endpoint protection.
• Hands-on  Mac fleet management experience via MDM (Hexnode MDM, or equivalent).
• Experience owning onboarding/offboarding, access management, and asset/licensing processes.
• SOC 2 Type II maintenance - evidence collection, control upkeep, annual audit prep, responding to client security reviews.
• Player-coach comfort - one direct report today; the role requires individual contribution alongside leadership.

• Fluent English; comfortable responding to client security questionnaires and participating in due-diligence reviews.

   

Nice to Have:

• Prior experience in a technology services, consulting, or outsourcing company (familiar with managing IT around client-specific security requirements).
• Experience leading client security questionnaires and due-diligence responses at scale.

Key Responsibilities:

IT Operations Leadership (primary focus)

• Run day-to-day IT operations for a remote, globally distributed team - endpoint management, identity and access, device lifecycle, collaboration tooling.
• Own onboarding and offboarding end-to-end: account provisioning, MDM enrollment, access grants, secure de-provisioning.
• Maintain asset inventory, software license hygiene, and vendor relationships.
  ‍

IT Automation & Modernization

• Identify repetitive IT workflows and automate them — scripts, SSO flows, provisioning integrations, ticket automation.
• Evaluate and adopt tooling that reduces manual IT touch work (MDM, HRIS↔IT sync, compliance automation).
• Improve self-service so the organization solves common IT needs without opening a ticket.
   

Security Compliance Maintaining

• Maintain Transcenda’s SOC 2 Type II program — evidence collection, control ownership, annual audit prep.
• Keep IT-side security baselines current: endpoint protection, access controls, MDM policies.
• Respond to client security reviews, questionnaires, and due-diligence requests as the primary technical contact.
• Monitor relevant IT security risks and adjust baselines; no expectation to author new frameworks from scratch.
   

Cross-Functional Partnership

• Partner with HR on onboarding/offboarding automation and policy enforcement.
• Partner with Legal on contractual security obligations and client review responses.
• Partner with Delivery on client-specific IT setups and access requirements.
• Communicate changes in IT and security posture clearly to the broader organization.