Head of IT & Security Engineering REMOTE FROM ANYWHERE IN THE USA

aytm “Ask Your Target Market” is looking to hire a highly experienced Head of IT & Security Engineering to own and evolve our internal technology ecosystem, security posture, and systems architecture. This is not a traditional IT role.

About Us

aytm delivers state-of-the-art insights automation technology and expert guidance that’s focused on providing answers for the customers of today, while evolving a platform that supports those curious about tomorrow. Advancing research with transparency and flexibility, aytm helps you connect to a community of people, optimize your products, positioning, and concepts, and get from idea to market faster. We have a world-class platform, top-tier customers, and a creative and energetic team.

In this role, you will be responsible for designing and operating a scalable, secure, and automated IT environment across 100+ applications, a distributed workforce, and a modern cloud infrastructure. You will serve as the technical owner of identity and access management, device security (including BYOD), systems integration, and the enforcement of security and compliance controls aligned with ISO 27001, ISO 27701, and ISO 42001.

This role sits at the intersection of IT, security, and systems architecture, and is critical to enabling company-wide efficiency, automation, and risk reduction.

Why This Role Matters

This role is foundational to scaling the company’s infrastructure, security posture, and operational efficiency. You will directly impact how work gets done across the organization by ensuring systems are secure, integrated, and intelligently automated.

What You’ll Own

Identity & Access Management (IAM)

• Architect and manage centralized IAM across all systems (SSO, SCIM, RBAC)
• Automate provisioning and deprovisioning across 100+ applications
• Implement and enforce least-privilege access models aligned with ISO controls
• Design conditional access policies (device-based, location-based, risk-based)

Device & Endpoint Security

• Own MDM strategy and tooling (e.g., Intune, Kandji, Jamf)
• Enforce endpoint security standards (encryption, patching, EDR)
• Design and manage secure BYOD frameworks
• Ensure all endpoints meet compliance requirements and are continuously monitored

  IT Infrastructure & Cloud Environment

• Oversee internal IT infrastructure across cloud environments (GCP preferred)
• Partner with Engineering/DevOps to ensure secure configurations and access controls
• Maintain visibility into system health, logging, and monitoring (SIEM, APM tools)

Systems Integration & Automation

• Design and implement integrations across core business systems (Slack, CRM, Finance, Product, etc.)
• Eliminate manual workflows through automation and API-driven solutions
• Support internal AI tooling and agent integrations as part of operational workflows

Security Operations & Tooling

• Own and manage IT-related security tooling (EDR, SIEM, access monitoring)
• Partner with external security providers for 24/7 monitoring and response
• Ensure visibility, alerting, and response mechanisms are effective and scalable

Compliance & Control Enforcement

• Translate ISO 27001 / 27701 / 42001 requirements into technical implementations
• Maintain continuous audit readiness through system design and automation
• Partner with Corporate Ops to ensure policies are enforced through systems (not manual processes)

Systems & Tooling Optimization (Advisory)

• Develop a deep understanding of the company’s SaaS ecosystem and how systems interact
• Identify opportunities to improve integration, reduce inefficiencies, and strengthen security posture
• Provide technical input on tooling decisions and architecture
• Partner with VP-level stakeholders and team owners, who retain final ownership of vendor selection and tool strategy

What Success Looks Like

• Fully automated onboarding/offboarding with zero manual access gaps
• Centralized identity and access control across all systems
• All devices compliant, monitored, and secured (including BYOD)
• Significant reduction in manual operational work through system integrations
• Continuous ISO audit readiness with minimal reactive effort
• Clear visibility into system access, device posture, and security controls

Qualifications

Required Experience

• 8+ years in IT, Security Engineering, or Infrastructure roles
• Proven experience owning IT in a cloud-first, SaaS environment
• Hands-on experience implementing IAM/SSO solutions (Okta, Azure AD, Google Workspace, etc.)
• Experience with MDM solutions (Intune, Kandji, Jamf, or similar)
• Strong understanding of endpoint security, access control, and device compliance
• Experience supporting ISO 27001, SOC 2, or similar compliance frameworks

Technical Expertise

• Identity & Access Management (SSO, SCIM, RBAC)
• Cloud environments (GCP preferred, AWS acceptable)
• Security tooling (EDR, SIEM, logging/monitoring platforms)
• Systems integration (APIs, automation tools, workflow platforms)
• SaaS ecosystem awareness at scale

Who You Are

• You think in systems, not tickets
• You prioritize automation over manual work
• You can operate at both strategic and hands-on levels
• You are comfortable owning ambiguity and building structure where it doesn’t exist
• You are a strong cross-functional partner across Operations, Engineering, and Security

What we offer:

A work environment built around empathy, creativity, curiosity, organic growth and an abundance mindset. We’re a fun and vibrant group of people, dedicated to putting in the hard work to make a platform we are proud of, serving the needs of our clients with empathy, and making aytm an incredible place to work. We were awarded 2024 Inc 5000 Fastest-Growing Private Company and 2025 Inc Best Places to Work. We’re also fully virtually,  which means you’ll be working remotely from the location of your choosing (home, coffee house, library). While being a Zero-commute company and providing you with an amazing level of freedom, convenience, and flexibility, it requires a certain inner discipline and capacity to be effective at a distance. Remote work experience is preferred, but not required..

Benefits would include:

• Unlimited, responsible PTO - With a recommended minimum number of days taken each year
• Affordable Insurance -$0 deductible Health plans plus dental, vision, and more!
• 401k retirement - Account with automatic company contributions
• Dependent Care - a pre-tax benefit account that you can fund to pay for eligible dependent care services
• Professional Development - Bring your professional Development needs to the table and get your career nourished
• In-Home Snack allowance - Who doesn’t love some yummies to get you through the day?
• Cellphone/Internet credits - Get tax-free credits to use toward your cell phone and internet utilities.
• Equipment and Structured Onboarding - We will provide you with the equipment and tools you need, along with great onboarding courses to set you up for success.
• Paid Volunteer Time - We support you helping others
• Great colleagues and an opportunity to sail into uncharted waters with a profitable company that is changing its industry! 

**aytm is an Equal Opportunity Employer and committed to a diverse, equitable and inclusive culture and workplace.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy), gender, national origin, ancestry, age, physical or mental disability, military status, status as a veteran or disabled veteran, sexual orientation, gender identity or expression, marital or family status, genetic information, medical condition, or any other basis protected by applicable federal, state, or local law, ordinance, or regulation. This employer does not sponsor applicants for work Visas.