Fractional Security & Compliance Lead (IT & GRC) - Remote

Overview

As a Fractional Security & Compliance Lead (20-40%) at Optiml, you will take full ownership of our security and compliance function, running our SOC 2 Type II and ISO 27001 programs end to end.

In Short

• Manage the full lifecycle of SOC 2 Type 2 and ISO 27001 compliance programs.
• Serve as the primary liaison for external compliance auditors.
• Lead responses to technical security questionnaires.
• Securely administer Google Workspace and Microsoft 365/Entra ID.
• Handle IT onboarding/offboarding processes.
• Design and audit Role-Based Access Controls (RBAC).
• Maintain essential security policies and documentation.
• Work independently with flexibility around hours.
• Collaborate closely with CTO and Head of Operations.
• Drive complex, cross-functional security projects.

Requirements

• Direct experience with SOC 2 and ISO 27001 compliance.
• Hands-on experience with Microsoft 365/Entra ID and Google Workspace.
• Knowledge of IAM principles including RBAC and MFA.
• Proficiency in automation platforms or scripting languages.
• Proven ability to operate independently.
• Outstanding written and verbal communication skills.

Benefits

• Impact: Play a critical role in scaling a transformative company.
• Ownership: Build and own the operational backbone of a startup.
• Growth: Work closely with an exceptional leadership team.
• Culture: Join a mission-driven and collaborative team.
• Benefits: Competitive salary, equity options, learning budget, additional insurance support, and 25 days paid vacation.