Job Title

Squizify is a Series A food safety and compliance platform that combines IoT hardware (sensors, gateways) with software (mobile app, web dashboard) to help hospitality, QSR, and enterprise customers automate compliance workflows. Our customers include 7-Eleven, Domino''s, MadMex, hotel chains, and manufacturing businesses across Australia, Thailand, and Japan. We are in a high-growth phase expanding into new markets, onboarding major enterprise accounts, and preparing for Series B. Our technology stack spans embedded firmware, cloud infrastructure, and crossplatform applications. About the Role We are hiring our first dedicated Head of IT & Information Security to own the company''s compliance posture, IT operations, and security foundations end to end. This role exists because Squizify has reached a stage where ISO 27001 certification is a commercial requirement. Enterprise customers and new markets (particularly Japan) expect it. At the same time, our internal IT operations need to be professionalised: device management is ad hoc, onboarding/offboarding procedures are manual, and our growing public profile is increasing our exposure to security threats. You will report directly to the CTO and operate with significant autonomy. This is not a project it is a permanent, operational function. ISO compliance runs on a threeyear cycle (certification surveillance surveillance repeat), and the IT and security processes you will need to be maintained and improved indefinitely. We are looking for someone who is processoriented, can work independently, and is comfortable owning a broad remit as a team of one. Key Responsibilities ISO 27001 & Compliance Drive ISO 27001 certification end-to-end using the Vanta compliance platform Manage the relationship with Vanta and external auditors through initial certification and ongoing surveillance cycles Create, customise, and enforce company policies using Vanta''s template framework covering data protection, access control, change management, and incident response Coordinate compliance training across the organisation via Vanta Prepare for and manage external audits (Year 1 certification, Years 23 surveillance) Lay groundwork for SOC 2 certification as a followon initiative Conduct vendor and thirdparty risk assessments as required by the compliance framework IT Operations Implement and manage MDM (Mobile Device Management) across all company laptops, phones, and devices controlling application usage, data transfer, and device configuration Build and maintain a complete inventory of the company''s device fleet Standardise device provisioning and lifecycle management Design and automate onboarding and offboarding procedures with strictly enforced access controls ensuring departing employees lose access immediately and completely Own account management hygiene across all company systems Manage day-to-day IT support and operations Information Security Establish and run security awareness training, including phishing prevention and response Own incident response and postmortem processes Monitor and respond to security threats as the company''s public profile grows Collaborate with the engineering team on securityadjacent infrastructure work: secrets management, security scanning in CI/CD pipelines, audit trails, and CloudTrail configuration Ensure organisationwide visibility into resources and access patterns Requirements MustHaves Handson experience implementing ISO 27001 certification (not just maintaining an existing certification you have taken a company through the process) Experience with compliance platforms, ideally Vanta Practical experience rolling out and managing MDM solutions Strong understanding of IT operations: device fleet management, identity and access management, onboarding/offboarding automation Demonstrated ability to create and enforce security policies in a company of 3080 people Meticulous, processoriented working style you follow procedures to the letter and ensure others do the same Comfortable working independently with minimal oversight Based in Melbourne with ability to work from the office NicetoHaves Experience in a startup or highgrowth environment Familiarity with cloud infrastructure security (AWS) Background covering APAC compliance requirements Experience managing security for companies with IoT / hardware products What We Offer Competitive base salary plus equity participation (ESOP) at Series A valuation Ownership of a critical function at a company targeting significant growth Direct report to the CTO with high autonomy The opportunity to build IT and security operations from the ground up A clear commercial mission your work directly unblocks enterprise deals and market expansion #J-18808-Ljbffr