🛠 Tech Stack

💼 About This Role

You'll own information security and compliance programs as the security authority for Mill. You'll set the standard for data protection and SOC 2 compliance, while technically overseeing our managed IT provider. This role combines policy, risk management, and hands-on security tooling in a self-directed, cross-functional environment.

🎯 What You'll Do

• Define and enforce security policies and access controls
• Lead SOC 2 program from roadmap through audit readiness
• Manage security tooling including phishing simulation and endpoint management
• Conduct regular access reviews and vulnerability assessments

📋 Requirements

• 5–8 years in IT operations and information security
• Demonstrated experience owning or contributing to a SOC 2 audit
• Hands-on familiarity with identity and access management (Okta, OneLogin)
• Experience managing or technically overseeing a managed IT provider (MSP)

✨ Nice to Have

• CISSP, CISM, CISA, or Security+ certification
• Experience at a hardware/IoT or consumer product company
• Familiarity with business systems environments (ERP, e-commerce, CRM)

🎁 Benefits & Perks

• 💵 Equity grant
• 🏖️ Base salary $185k–$210k
• 🏥 Health benefits (inferred)

📨 Hiring Process

Estimated timeline: 2-4 weeks · AI estimate

1. 1Recruiter Screen· 30 min
2. 2Technical Interview· 60 min
3. 3Onsite Interview· 90 min