We're a technology company reimagining how creators work by designing powerful, modern tools that make it simple to manage, distribute, and scale their work.
The creator economy is on track to exceed $480B by 2027, yet the software powering it is fragmented and outdated. Our ecosystem of products—trusted by the biggest names in the industry—streamlines content management, distribution, and monetization.
We're a global team of 150+ engineers, designers, marketers, and operators with experience at Meta, TikTok, Microsoft, N26, TIER, and WeWork. United by a shared mission: to empower creators to grow across platforms and markets by centralizing their content, sales, and operations into a single connected ecosystem.
We're looking for an IT Governance & Security Specialist (our internal "Technical Bouncer") to act as INFINNI's Sword and Shield.
You will enforce technical discipline by owning our infrastructure security and neutralizing "Shadow IT," while simultaneously managing our IT assets and access controls. Your philosophy is "Security by Design & Audit-Ready": ensuring every system has multiple layers of protection (Defense in Depth) and is ready for inspection at any moment.
IT Asset Management & Access Control (The "Governor")
¿Listo para inscribirse? Antes de hacerlo, asegúrese de leer todos los detalles pertenecientes a este trabajo en la descripción a continuación.
Neutralize Shadow IT: Conduct continuous scanning to identify, map, and purge unauthorized tools or data silos that jeopardize our liability shield.
Manage Identity & Access (IAM): Implement and enforce strict Role-Based Access Control (RBAC) and Zero Trust principles. License Optimization & Asset Control: Partner with Finance to audit our software stack. SaaS & Tooling Governance: rigorous onboarding and offboarding of internal tools. You control what software enters the ecosystem and who has the keys to use it.
Cybersecurity & Infrastructure Defense (The "Guardian")
Perimeter & Endpoint Security: Deploy and manage EDR (Endpoint Detection and Response) solutions and cloud defenses to protect against sophisticated external threats.
Incident Response: Monitor potential threats (using Dark Data intelligence and logs) and lead the response to any security incidents, ensuring business continuity.
Hardening Infrastructure: Protect the company against ransomware and extortion-focused attacks by hardening endpoints, servers, and cloud environments.
Design technical controls that map simultaneously to SOC 2 and ISO 27001, ensuring technical evidence (logs, configs) is generated automatically.
To succeed as our Technical Bouncer, ensuring both operational efficiency and fortress-level security, the candidate should have:
IT Operations & Asset Management (ITAM)
Jamf, Kandji, Intune) for fleet management.
Deep knowledge of Identity Providers (IdP) and IAM (e.g., Okta, Google Workspace, Azure AD), specifically configuring SSO, MFA, and RBAC policies.
Proven track record in "Shadow IT" discovery and SaaS management (reducing tool sprawl).
Cybersecurity & Defense
CrowdStrike, SentinelOne, Microsoft Defender for Endpoint).
Cloud Security
Familiarity with securing cloud infrastructure (AWS, GCP, or Azure).
Experience implementing controls for SOC 2, ISO 27001, or GDPR.
Proficiency in Python, Bash, or PowerShell to automate security checks and evidence collection.
CISSP, CISM, CompTIA Security+, or vendor-specific certifications (AWS Security, Okta Certified).
What's in it for you
Attractive compensation package commensurate with experience and skills.
Remote Work and Yearly Company Offsite: Flexible working hours and location options. xohynlm
Professional Growth: Opportunity to build the security culture of a scaling tech company from the ground up.
Your work directly prevents breaches and optimizes significant budget by rationalizing our toolset.