IT Operations & Risk Governance Lead

IT Operations & Risk Governance Lead at Mavie

At Mavie, we're on a mission to transform healthcare by providing holistic solutions that support individuals throughout their entire well-being journey—helping them stay healthy and get healthier. We're reimagining how people experience healthcare services, making them more connected, innovative, and accessible. To turn this vision into reality, we need exceptional talent—innovative thinkers, problem-solvers, and collaborative team players who are driven by a passion for creating modern healthcare solutions. As a fast-growing startup, we offer a dynamic, flexible work environment where you’ll have the freedom to bring your bold ideas to life, while learning and growing along the way.

To strengthen our IT foundation, we are looking for an IT Operations & Risk Governance Lead who will own Mavie’s identity and access landscape, drive operational excellence, and ensure our IT environment remains compliant, secure, and well-governed.

This is a hands-on operational role with governance responsibilities: you will run Entra ID, automate user lifecycle processes, lead IT change projects, and provide independent second-line oversight across risk, security, and continuity.

Your Challenge / Tasks

IT Operations

• Manage and optimize Entra ID tenants (security, Conditional Access, MFA, privileged identities).
• Design and automate workflows for onboarding, offboarding, access approvals, and privileged access.
• Govern SaaS applications, ensuring proper onboarding, SSO/MFA configuration, data classification, and lifecycle management.
• Lead key IT change initiatives, including tenant merges, identity architecture improvements, platform migrations, and operational tooling rollout.
• Build operational dashboards and continuously improve processes, security posture, and efficiency.
• Oversee Mobile Device Management (MDM) and endpoint security policies across company devices (iOS, Android, Windows, macOS).
• Configure and manage device compliance policies, conditional access rules, and remote wipe capabilities via Intune or equivalent platforms.
• Ensure devices meet security baselines, enforce encryption, and maintain audit trails for device lifecycle events.
• Support onboarding and offboarding of staff, ensuring appropriate access provisioning and timely deprovisioning across all systems.
• Deliver training and guidance to IT teams and end users on identity management, security best practices, and device compliance.
• Create and maintain documentation for IT processes, runbooks, and operational procedures.

Second Line of Defense

• Maintain policies and standards for IT Risk, Security, TPRM, and BCM.
• Challenge and oversee IT risk decisions, exceptions, high-risk changes, and vendor assessments.
• Monitor compliance, maintain the IT risk register, and support audits and regulatory assessments.
• Review incident root-cause analyses and ensure structural fixes.

What You Bring

• 7+ years in IT Operations, IAM, or Cloud Operations.
• Strong hands‑on experience with Entra ID (Azure AD), M365, identity automation, and SaaS governance.
• Solid understanding of IT risk, governance, and change management.
• Certifications such as SC‑300, AZ‑500, MS‑102, CISSP, CISM, CRISC, ISO 27001 are a plus.
• A builder mindset: structured, proactive, and comfortable owning complex environments.

What You Can Expect

We empower our team members to take on responsibility, with no rigid role definitions and many possibilities for continuous on-the-job learning. Our work is diverse, with an emphasis on innovation and real impact. You can really make a difference in healthcare. But you have to be aware that working here is more than just a “job” for most of us. It can be tough. We are pushing our boundaries – as a team and individuals – and you should be able to manage your energy within a fast-paced, often high-expectations environment. Our mission is extremely ambitious. If we achieve our high goals, this is going to significantly impact on the quality of life of the generations to come and will be a great story to tell your grandchildren. Worried, we're all working and no play? Fear not! We're a bunch of passionate team players with diverse backgrounds who also like to have fun at work and forge personal connections.

Benefits

• An individual learning and development budget of 1.500 € per person / year to fuel your growth.
• Flexible working hours and the freedom to regularly work from home.
• A lunch offer in our office (“Schrankerl”) complemented by free fruit baskets, snacks, and beverages.
• Regular team events, “Thirsty Thursdays” and memorable Off-sites to further strengthen our bond.
• A modern office environment which fits our innovative mindset and enables us to collaborate with our diverse team (of more than 15 nationalities).
• Corporate mental health counseling (EAP) from Mavie (which is part of our company portfolio).
• A health insurance discount from our mother company UNIQA.

Due to legal requirements in Austria, we are obliged to state the minimum salary for this position. Our salary range for this position starts at 80.000€. Based on your experience and qualifications, our final offer will be a competitive market value-based salary.

Key skills/competency

• Identity and Access Management (IAM)
• Entra ID (Azure AD)
• M365 Governance
• IT Risk Management
• Security Operations
• Compliance Monitoring
• Mobile Device Management (MDM)
• SaaS Application Governance
• Change Management
• Process Automation