Role Summary

Sparkfund is seeking a hands-on Senior Manager of IT & Cybersecurity to build, operate, and mature our internal IT and security environment end-to-end. This role owns the day-to-day administration of core IT systems, cybersecurity tooling, onboarding/offboarding workflows, and SOC 2 readiness efforts while shaping the processes and controls needed for a growing remote-first company operating across regulated environments.

This is a senior individual contributor role for a builder who likes designing and implementing solutions directly, enjoys simplifying imperfect systems, and thrives in environments with autonomy and broad ownership.

Location and Travel Requirements

Sparkfund is a remote-first company with a digital workplace built around emerging hub-offices; as a result, this role is flexible on location. There will be company required travel up to 5% of the time, including meetings within the Minneapolis, Denver, and Washington, DC areas as well as meetings in other parts of the continental US, to be determined. These meetings may include visits to utility customer offices and project sites as well as scheduled team and company gatherings to collaborate with other members of the team / company, learn the ins and outs of our business, and contribute to our company culture.

Key Responsibilities

IT & Security Strategy & Roadmap Ownership

• Own and maintain the IT and Security roadmap aligned to business needs, SOC 2 expectations, and customer requirements

• Prioritize and sequence investments across identity, devices, endpoint protection, SOC 2 controls, and collaboration tooling

• Define and communicate IT and Security standards, policies, and architectural decisions

• Partner with leadership to develop budget forecasts and resourcing plans for IT and cybersecurity

• Identify operational and compliance risks and propose mitigation strategies and tradeoffs

IT Operations & Tooling

• Administer collaboration and identity platforms (Google Workspace, Microsoft 365, Slack, IAM, MDM, endpoint protection, etc.)

• Configure and manage onboarding/offboarding workflows and IT provisioning

• Implement and maintain IT helpdesk processes (low-volume)

• Support vendor evaluations, integrations, and continuous improvements across the IT stack

• Maintain secure device and access management across remote environments

Security & Compliance Operations

• Execute SOC 2 readiness and evidence collection in partnership with external consultants

• Maintain IT and security policies, documentation, and control evidence

• Coordinate responses to client security questionnaires and due diligence requests

• Support vendor risk management and access control processes

• Monitor and support incident response workflows in collaboration with leadership and vendors

Project Implementation

• Implement incremental improvements to device management, identity tooling, and endpoint management

• Support responsible adoption of AI tooling and assess operational risks on a practical basis

• Document workflows and train internal users on IT processes and tools

Qualifications

Required Qualifications

• 6–10+ years of experience in IT, security, or technology operations roles

• Builder mentality: enjoys improving imperfect systems

• Hands-on administration of collaboration platforms, identity tooling, and endpoint management

• Experience supporting SOC 2 or similar security frameworks (ISO 27001, NIST, etc.)

• Demonstrated ability to improve systems through iterative execution

• Comfort operating as a senior IC who both defines strategy and executes tactically

• Practical knowledge of security frameworks, risk management, and control implementation

Preferred Qualifications

• Curious about emerging technologies, including AI

• Being an excellent internal trainer

• Background in Computer Science or equivalent field

• Working knowledge of SDCL or DevOps

• Experience working in energy, utilities, distributed infrastructure, or other regulated operational environments.

Knowledge, Skills & Abilities

• Strong background in identity and access management, endpoint management, and cloud collaboration environments

• Experience in administration of Slack, Google Workspace, Microsoft 365 (primary company platforms)

• Experience in administration of Cloudflare, DocuSign, LastPass, Proofpoint, SalesForce

Compensation & Benefits

Base Pay Range:

• The anticipated salary range for this position is $140,000 - $170,000, with the final offer dependent on the candidate's experience, qualifications, and location.

Benefits for full-time positions:

Sparkfund offers a comprehensive benefits package, designed to support employee well-being, including but not limited to:

• Employer subsidized medical, vision, and dental as well as disability and life insurance.

• Employer sponsored 401(k) plan with 2% match.

• Flexible vacation policy encouraging strong work life balance and paid time away.

• We observe all federal holidays.

• Alternating 4-day work weeks, with every other Friday off.

• 12 weeks of gender-neutral paid leave for caregivers when they have a new addition to their families and an additional 4 weeks of paid leave for birthing parents.

• A one-time, work-from-home stipend to help cover any equipment, hardware, etc. you need to set up your remote office.

• A monthly allowance of $100 to help cover phone and Wi-Fi expenses.

Interview Process:

• Recruiter Screen, 30-45 min

• Hiring Manager, 30-60 min

• Peer Panel, 45-60 min