Partnering with visionary founders to build iconic companies in the central U.S.
Lewis & Clark Ventures is an early stage venture firm managed by former founders and operators. We invest in late seed through Series B companies between the coasts.
Security & IT Administrator
ObservIQ
IT
Remote
Posted on Apr 1, 2025
About Us
Bindplane is a software startup developing the first observability pipeline built for OpenTelemetry. We're building powerful open-source solutions used by Fortune 500 companies and small technology companies alike. Our observability solutions help organizations collect, process, and route telemetry data efficiently, integrating with top platforms like Google Cloud Operations Suite, Datadog, and New Relic. As we continue to grow, we're seeking a talented Security & IT Administrator to help us maintain a secure, efficient, and compliant technology environment.
Role Overview
As a Security & IT Administrator at BindPlane, you will wear two important hats. You'll be responsible for managing our internal IT infrastructure, ensuring smooth operations of our employee-facing systems, and handling day-to-day IT needs. More critically, you'll be responsible for maintaining and enhancing our security posture across our entire organization, including our product development lifecycle, data operations, cloud hosting environments, and customer-facing SaaS offerings. You'll ensure our compliance with industry standards, customer agreements, and partner requirements while implementing risk management processes that protect both our infrastructure and our products. This dual role requires someone who can balance operational IT responsibilities with comprehensive security oversight across all aspects of our business.
Responsibilities
Security Management
- Maintain and update security policies including Information Security Policy, Data Retention, and Risk Management
- Lead the Security Advisory Board meetings and coordinate security initiatives
- Conduct annual risk assessments and maintain a risk register
- Manage the vendor assessment program, including reviewing security documentation from vendors
- Oversee SOC 2 compliance, ISO 27001 compliance, and other certification processes to ensure our SaaS product meets industry standards
- Respond to customer security questionnaires and RFPs regarding our product security practices
- Collaborate with development teams to implement secure coding practices and security testing
- Ensure data security through proper access controls, encryption, and audit procedures
- Guide implementation of security controls for cloud systems (primarily Google Cloud) hosting our SaaS applications
- Develop and enforce security standards for our software development lifecycle
- Verify that our product meets security requirements specified in customer and partner agreements
- Support incident response planning and exercises for both infrastructure and product-related security events
- Develop and deliver security awareness training for employees
IT Administration
- Manage employee accounts and services across Google Workspace, SaaS applications, and development platforms
- Lead employee onboarding and offboarding processes, ensuring timely account provisioning and de-provisioning
- Administer and support mobile devices, laptops, and other hardware throughout their lifecycle
- Maintain documentation for IT systems and processes
- Manage relationships with IT vendors and service providers
Qualifications
- 5+ years of experience in IT administration and information security, particularly in SaaS environments (Required)
- Experience managing Google Workspace and other cloud-based productivity tools (Required)
- Experience with account lifecycle management and identity systems (Required)
- Deep knowledge of security frameworks (SOC 2, NIST, ISO 27001) (Required)
- Experience with cloud security, particularly GCP (Required)
- Experience managing compliance and certification processes (Required)
- Strong documentation and communication skills (Required)
- Understanding of DevOps and software development processes (Required)
- Experience implementing and managing endpoint security solutions (Required)
- Security certifications (CISSP, CISM, or similar) (Preferred)
- Experience with OpenTelemetry or observability platforms (Preferred)
- Background in software development or engineering (Preferred)
- Experience with incident response and security event management (Preferred)
- Familiarity with automated security tooling and controls (Preferred)
- Bachelor's degree in Computer Science, Information Technology, or related field (or equivalent work experience) (Preferred)
Key Functions
- Maintain and improve security policies, processes, and controls
- Ensure compliance with relevant standards and frameworks
- Lead security and IT initiatives to support company growth
- Balance operational IT tasks with strategic security planning
- Serve as the primary point of contact for employee IT needs and security concerns
Benefits
- 401(k) retirement savings plan with employer matching
- Comprehensive health, dental, and vision insurance
- Life insurance coverage
- Employee assistance program for personal and professional support
- Generous paid time off, including vacation, sick leave, and holidays
- Opportunities for professional development and continuous learning
Location
Remote, On-site (Grand Rapids, MI), or Hybrid available. For hybrid and remote employees, some initial on-site training may be required.
If you're passionate about building and maintaining secure IT environments, have excellent organizational skills, and want to be part of a growing startup revolutionizing the observability space, we'd love to hear from you!