What we are building Mimica's mission is to accelerate the discovery and deployment of automation with AI. Our first product, Mapper , learns patterns from employee clicks and keystrokes, identifies key steps, decisions and repetition, and generates "blueprints" for automation.
Today, it supports RPA teams, that build software bots for repetitive computer tasks such as data entry, form completion and claim processing.
Alongside creating process maps for automation, we've introduced Miner, which helps enterprises identify and prioritize automation opportunities.
Your mission As our founding Security Lead, you'll take full ownership of Mimica's mission-critical security program.
You'll be the architect of our security processes, systems and team, ensuring our growth is underpinned by a robust security strategy.
You'll play a pivotal role in shaping our technical direction, making security a strategic strength whilst at the same time supporting audits, vendor onboarding and external processes involving prospects, customers and partners.
Part of your day-to-day Designing and implementing Mimica's security strategy, leading initiatives to enhance our security posture.
Developing and maintaining security policies, procedures and tools.
Expanding our certifications and conducting security assessments, including ISO 27000 and SOC 2 audits.
Acting as the primary contact for external compliance requests, including vendor questionnaires and user data requests.
Collaborating with Sales and Product teams on secure architecture inquiries and serving as the escalation point for security challenges.
Coordinating vulnerability assessments, pen testing and incident investigations.
Creating and managing business continuity and disaster recovery plans.
Delivering security training and managing awareness programs to keep employees aligned with the latest security standards and best practices.
Requirements Background in security management and program leadership roles in the B2B SaaS space.
Expertise in infosec compliance for enterprise software/SaaS, including SOC 2, ISO 2700, NIST, and CIS controls.
Proficiency in risk assessments, threat identification, vulnerability analysis and impact assessment.
Experience in BCDR planning and remediation management.
Working knowledge of data privacy regulations (e.g., GDPR, CCPA).
Exceptional communication skills, with the ability to convey complex concepts to diverse audiences, including C-level executives, and a strong customer presence.
A strategic mindset, paired with a willingness to execute day-to-day tasks and dive into tactical details.
Bonus points Success in building and leading teams–owning process, structure, and documentation.
Hands-on experience with cloud architecture, security technologies, and tools like IDP, SIEM, DLP and MDM.
Technical skills in network security, firewalls and data encryption.
Knowledge of automation, process transformation, AI, or related domains.
Experience in high-growth environments, delivering value quickly and iteratively.
We'd love to hear from you, even if you feel you don't quite have all of the above.
Location This is a fully remote position.
You can be based anywhere in the Americas, UK, or Europe within a UTC-8 to UTC+2 timezone.
Benefits We take a structured approach to determining salaries and take into consideration our salary framework, market data, and candidates' skills.
We also offer health benefits and ample paid time off, as well as a range of non-tangible benefits like flexible schedules and location, start-to-finish project ownership, and the opportunity to contribute to projects that will change the future of work.