Fractional Security & Compliance Lead (It & Grc)

TL;DR

Fractional Security & Compliance Lead (IT & GRC): Taking full ownership of security and compliance functions, you'll run SOC 2 Type II and ISO 27001 programs end to end, coordinating audits, managing evidence and remediation, and ensuring controls stay effective as the company scales with an accent on the administration and securing internal IT and identity stack. Focus on designing and enforcing RBAC and least-privilege access, and owning onboarding and offboarding processes.

Location: Remote (Germany)

Company

hirify.global is revolutionizing real estate with our Real Estate Decision Intelligence (REDI) software—a new class of decision technology that embeds AI to help decarbonize buildings while optimizing asset financial performance.

What you will do

• Manage the full lifecycle of SOC 2 Type 2 and ISO 27001 compliance programs, utilizing automation platforms like Vanta to ensure continuous control monitoring.
• Serve as the primary liaison and coordinator for external compliance auditors, managing all evidence submission and remediation timelines.
• Lead rapid and accurate responses to technical security questionnaires that arise during the enterprise sales due diligence process by maintaining a knowledge base.
• Securely administer and harden core internal IT infrastructure, specifically Google Workspace and Microsoft 365/Entra ID.
• Handle the IT onboarding/offboarding process for new employees.
• Design, implement, and audit Role-Based Access Controls (RBAC) across all systems to strictly enforce the Principle of Least Privilege and protect customer data.

Requirements

• Direct experience managing compliance frameworks (SOC 2, ISO 27001) using Vanta or other.
• Hands-on experience administering Microsoft 365/Entra ID and Google Workspace security configurations.
• Knowledge of Identity and Access Management (IAM) principles, including RBAC, SSO, and Multi-Factor Authentication (MFA) enforcement.
• Proficiency in no-code platforms or scripting languages for automating administrative tasks and enforcing configuration standards.
• Proven ability to operate independently and drive complex, cross-functional security projects.
• Outstanding written and verbal communication skills.

Culture & Benefits

• Play a critical role in scaling a company transforming how real estate decarbonizes.
• Build and own the operational backbone of a fast-growing startup.
• Work closely with an exceptional leadership team and gain exposure to all company functions.
• Join a mission-driven, high-performance, and collaborative team.
• Competitive salary, equity options, learning budget (CHF 1k), and additional insurance support.
• 25 days paid vacation.