Job
Description
Chargebee is the leading Revenue Growth Management (RGM) platform for subscription businesses. Thousands of companies — from startups to enterprises — use Chargebee to unlock revenue growth, experiment with new offerings and pricing models, and maintain compliance as they scale. Chargebee counts businesses like Freshworks, Calendly, and Study.com amongst its global customer base and is proud to have been named a Leader in Subscription Management by G2 for five consecutive years, as well as a Great Place to Work in both the United States and India. We were also recently named a Leader in the 2024 Gartner Magic Quadrant for Recurring Billing Applications. We are backed by some of the most respected investors in the world; Accel, Tiger Global, Insight Partners, Steadview Capital, and Sapphire Venture, who believe in the magic of subscriptions and the world that they can create. Our 1000+ team members work throughout the world, including in India, Europe, and the US. Role Summary The Senior IT Compliance & Infrastructure Engineer is a hands‑on senior engineer who designs, secures, and scales the corporate IT environment—Google Workspace, Okta, Jamf, Slack and other SaaS platforms—while ensuring that controls exceed frameworks such as SOC 2, ISO 27001, and PCI DSS. You will be the connective tissue between Infrastructure, Security, and Compliance, owning the full lifecycle of policies, tooling, audits, and automation that support 1,000+ employees across multiple geographies. Key Responsibilities Internal & External Audits Schedule, execute, and document internal controls testing—user activity review, laptop admin‑access review, asset audits, etc. Provide evidence and SME support for external audits (SOC 2, ISO 27001, PCI DSS) and customer due‑diligence requests. Incident & Risk Management Triage and investigate IT compliance/security incidents and DLP alerts; coordinate remediation with stakeholders. Track root causes, document post‑mortems, and drive continuous control improvements. Policy & Process Engineering Develop, document, and continuously improve IT policies, runbooks, and KPIs—leveraging AI and automation wherever possible. Champion the adoption of an “AI‑first” mindset to streamline repetitive tasks and enhance service quality. Tool Lifecycle Management Lead procurement, renewals, and license expansions for corporate IT SaaS tools. Drive license optimisation and cost control; plan and execute tool sunsets in partnership with business owners. End-to-End Management of Corporate IT Tools Own day-to-day administration and the strategic roadmap for Google Workspace, Okta, Jamf, Slack, and other Corporate IT tools—covering configuration, capacity planning, compliance hardening, feature adoption, and continuous improvement. Access Management & Automation Build and maintain automated provisioning/de‑provisioning with Okta Identity Governance, SCIM, and Workflows. Maintain least‑privilege models and execute periodic user‑access and activity reviews. IT Onboarding & Offboarding Orchestrate end‑to‑end onboarding of new joiners, provisioning “birth‑right” access via both manual and automated workflows. Own the exit process—coordinate with HR, Risk and other teams to revoke all access within defined SLAs. Implementation & Integration of New Tools Integrate SSO, SCIM, and access‑request workflows for newly procured tools. Publish self‑service app bundles in Jamf / Jumpcloud. Service Ownership & Team Leadership Coach and develop junior engineers and support analysts, nurturing a security‑first, compliance‑driven culture rooted in continuous learning and curiosity. Required Skills & Experience AI‑first mindset with demonstrable automation experience (Okta Workflows, Google Apps Script, Zapier, Python, JavaScript). 4+ years in corporate IT infrastructure, with 3+ years focused on compliance and security. Minimum 3 years administering Google Workspace and Okta, including advanced SSO/SCIM configurations. Practical expertise with Okta Identity Governance, Okta Workflows and Okta Device Access. At least 1 year managing Jamf Pro or an equivalent MDM for macOS/Windows fleets. Track record implementing and auditing PCI DSS, ISO 27001, and SOC 2 controls across IT systems. Hands‑on experience conducting internal reviews (user activity & access) and managing enterprise DLP programs. Exceptional written & verbal communication skills paired with meticulous documentation abilities; able to translate technical controls for non‑technical stakeholders and produce clear, audit‑ready runbooks, diagrams, and knowledge‑base articles. Benefits: Want to know what it means to work for a company that genuinely cares about you? Check out just a few of the benefits we give our employees: Unlimited PTO Annual 2-week block leave ESOPs from Day 1 Multiple medical plans designed to fit you and your family’s needs Show more Show less
