IT Support Manager (f/m/d)

bunch is building the backbone of private markets. We are enabling next-gen fund operations with one integrated system that combines secure data infrastructure, AI-powered workflows and expert fund services. If you value ownership, growth through real responsibility, and working with a thoughtful, ambitious team, this role might be for you.

We're looking for a hands-on, security-minded IT professional to join bunch as our first dedicated IT Operations. This role owns the full spectrum of corporate IT: from keeping our Berlin office running smoothly — monitors, cables, network — to managing device security, access governance, and our ISO 27001 compliance program.

This is a broad, high-impact role for someone who thrives equally in the server room and in a compliance audit.

How the role contributes to the company's vision

• Ensure every bunch employee has a secure, reliable, and well-configured working environment from day one

• Support the security and compliance posture that underpins bunch's trust with institutional clients and investors — executing the operational layer while Engineering leadership owns governance and risk

• Enable the company to scale confidently through Series B and beyond with reliable access controls, device management, and audit-ready evidence

• Protect sensitive fund and LP data through disciplined identity management, endpoint security, and vendor access controls

• Make security invisible to employees — removing friction while maintaining rigor

Top Responsibilities

Helpdesk & Hardware

• Provision and manage employee devices (laptops, monitors, peripherals) across the full lifecycle: procurement, setup, tracking, and offboarding

• Handle day-to-day IT support — software installs, connectivity issues, account troubleshooting

• Own the hardware asset inventory and device refresh cycle

• Set up and maintain meeting room AV and conferencing equipment

Security & Compliance Support (ISO 27001)

• Support bunch's ISO 27001 compliance program — the strategic governance and risk ownership sits with Engineering leadership, but the operational execution lives here

• Manage the compliance platform (Vanta): keeping controls green, collecting evidence, chasing evidence owners across teams, and closing findings

• Maintain and update security policies (Acceptable Use, Password Policy, Incident Response) in collaboration with Engineering leadership

• Support external auditors during certification cycles with evidence packages and control walkthroughs

• Run phishing simulations and coordinate security awareness training across the company

• Flag security gaps and risks to the appropriate owner — you are the eyes on the ground, not the sole decision-maker

Identity & Access Management

• Provision and deprovision access across all SaaS tools (Slack, Notion, Linear, AWS, Google Workspace, and others) during onboarding and offboarding

• Own SSO/IdP configuration and enforce least-privilege access principles

• Conduct regular access reviews — a core requirement for ISO 27001 control A.9

• Manage vendor and tool access policies, ensuring employees access only what they need

Office Network & Infrastructure

• Own the Berlin office network: routers, switches, Wi-Fi access points, and VLAN configuration (guest vs. corporate separation)

• Maintain network documentation: IP schema, hardware inventory, topology

• Troubleshoot connectivity issues and manage ISP relationships

• Manage Cloudflare Zero Trust or equivalent for secure remote access

Endpoint Security & MDM

• Own and operate the MDM platform (Kandji) — enforcing disk encryption, screen lock, patch compliance, and configuration profiles

• Monitor endpoint security alerts from EDR/AV tooling

• Ensure device compliance across the fleet at all times

What you bring with you

• 3–5 years of experience in a corporate IT, IT security, or IT operations role — ideally at a startup or scale-up (50–200 people)

• Hands-on MDM experience: Kandji, Jamf, or Mosyle

• At least one full ISO 27001 implementation or audit-support cycle

• Solid experience with an IdP / SSO platform (Okta, JumpCloud, or Google Workspace as IdP)

• Familiarity with a compliance platform such as Vanta or Drata

• Comfortable configuring and troubleshooting office networks (Ubiquiti, Cisco Meraki, or similar)

• Experience in fintech, financial services, or another regulated environment is a strong plus

• Proactive, ownership-oriented mindset — you close tickets and fix the root cause

• Strong communicator who can translate security requirements into plain language for non-technical colleagues

Why you should join bunch

• Take part in a network of people passionate about investment and work closely with the most interesting players in the private market

• Benefit from working with a diverse mix of talents, unrivaled energy, and team spirit within a culture of inclusion

• Flexible hours and a hybrid office setup (3 days/week in office)

• 4 remote calendar weeks/year

• 28 days of vacation, 2 company days, plus local public holidays

• A competitive compensation package

• A great tech and work setup with everything you need

What your interview journey will look like

• Introductory Interview with our Talent Acquisition team to get acquainted with bunch and explore alignment (20 min)

• Hiring Manager Interview to discuss the role in depth, your experience, and how your background has prepared you for it (60 min)

• Deep Dive with a few team members to explore your approaches and working style (60 min)

• Final Interview with key stakeholders to align on vision and discuss any open questions (45 min)

About bunch

bunch is building the operating infrastructure for the next generation of private markets. We combine AI-powered automation with deep regulatory expertise to replace fragmented spreadsheets and manual processes with one integrated platform across the fund lifecycle, purpose-built for private markets heading toward $32 trillion in Assets Under Management.

We've 4x our ARR in 2025, crossed 150 fund managers and 12,000 LPs on the platform, and just closed our $35M Series B in May 2026. We're looking for ambitious people who want real ownership of hard problems, and who care about building infrastructure that actually matters to the people using it.

____

At bunch, we're committed to an inclusive environment where diversity is valued and celebrated. We provide equal opportunities to all qualified applicants.

We process personal data in line with applicable laws (including GDPR). See our Privacy Policy for details on your rights and how to reach us.