IT Security & Compliance Manager

About StackOne

StackOne is the universal integration layer for modern SaaS products. We've raised $24m in 2 years, and we're backed by top tier investors like Google Ventures and Workday Ventures.

Our unified API platform lets vendors ship hundreds of native, white label integrations in days, not months, by abstracting away dozens of disparate third party APIs into a single, normalized interface. On top of those APIs, we provide AI Agent Actions so customers can build agentic workflows without wrangling OpenAPI specs.

StackOne sits behind the scenes as an embedded iPaaS: SOC 2 compliant, multi-tenant, and invisible to end users powering integrations for future-of-work SaaS categories such as HR, Compliance, and AI Agents.

Our customers are established B2B SaaS companies that:

• Sell to mid market and enterprise buyers
• Are building AI Agents in the near future
• Need deep, native integrations to win competitive deals and power their product
• Value time to integration over building connectors in house

We typically close OEM and embedded licensing deals, multi-year (1 to 3 year) contracts, five to seven figure TCV, with a strong land and expand model. Key buyer personas are the CPO and CTO.

About the role

We're looking for a hands-on IT Security & Compliance Manager to own our security infrastructure, compliance processes, and IT operations as we scale. This is a unique opportunity to build security foundations from the ground up at a fast-growing Series A startup while wearing multiple hats across cloud security, compliance management, and operational IT.

You'll be the go-to person for everything from managing customer security questionnaires and maintaining SOC-2 compliance to deploying Jamf for device management and handling day-to-day IT support. Perfect for someone who thrives in a startup environment and wants to make a real impact on our security posture with the possibility to evolve the role as we keep growing the team and the business.

Key Responsibilities

Security & Compliance

• Own customer security questionnaires and manage the entire response process from initial receipt to final submission
• Drive SOC-2 and ISO 27001 certification projects, coordinating with auditors and implementing required controls
• Maintain and update security policies across the organization, ensuring they reflect current best practices
• Conduct security risk assessments and vulnerability management across our cloud infrastructure
• Collaborate with engineering teams on security architecture decisions and code security reviews

Cloud Security & Infrastructure

• Manage AWS security configurations including IAM policies, network security groups, and logging
• Implement and maintain security monitoring tools for threat detection and incident response
• Oversee backup and disaster recovery processes to ensure business continuity
• Monitor compliance with data protection regulations (GDPR, CCPA, HIPAA)
• Own and maintain VPN security

IT Operations & Support

• Manage Jamf for macOS device management across the organization
• Handle software and hardware onboarding/offboarding for new and departing team members
• Provide general IT support and set-up related processes such as user access management
• Manage vendor relationships for IT services and security tools
• Maintain IT asset inventory and ensure proper lifecycle management

Requirements & Qualifications

Essential

• 3-5 years experience in IT security, compliance, or related field
• Hands-on experience with cloud security (AWS/GCP preferred) including IAM, network security, and monitoring
• Knowledge of compliance frameworks (SOC-2, ISO 27001, GDPR) and audit processes
• Experience with MDM solutions (Jamf preferred) and general IT operations
• Strong written communication skills for security questionnaire responses and policy documentation
• Startup mindset with ability to prioritize and work independently across multiple domains

Preferred

• Previous experience managing security questionnaires for enterprise customers
• Certifications such as CISSP, Security+, AWS Security Specialty, or similar
• Experience with security tools like vulnerability scanners, SIEM platforms, or endpoint detection
• Background in SaaS/API security and understanding of integration security challenges
• Project management experience for compliance certification initiatives

Personal Qualities

• Adaptability - comfortable switching between strategic compliance work and hands-on IT tasks
• Detail-oriented - security and compliance require precision and thoroughness
• Growth mindset - eager to learn new tools and technologies as we scale
• Collaborative - works well with both technical and non-technical teams
• Ownership mentality - takes initiative and sees projects through to completion

Why Join Us?

• Join one of Europe's fastest-growing startups
• Work with a veteran team of ex-employees of Google, Microsoft, Oracle, Coinbase, JP Morgan and more
• Participation in the company's employee share options plan
• 25 days holiday + 1 additional day holiday per year of tenure
• Flexible work setup - we're hybrid-friendly
• £1,000 for your home office set up + £500/year top-up
• Cycle2Work and Electric Cars scheme
• Private health insurance (including dental & optical)
• Health, fitness and gift card discounts
• Annual team offsite to sunny spots (last ones were in Spain and Portugal )

Ready to help us change the game for SaaS integrations? Get in touch and let's chat!

We believe diversity drives innovation. We encourage individuals from all backgrounds to apply. As an equal-opportunity employer, we celebrate diversity and are committed to creating an inclusive environment for all employees.