Contract IT Manager

Hybrid, London
Initial project: 4-weeks initially
~£500/day for initial project | Higher hourly rate for ongoing BAU (5–10 hrs/month)

About Natcap

Natcap is a fast-moving startup advancing nature risk and sustainability intelligence. As regulatory and market expectations evolve, we help leading companies worldwide integrate nature intelligence into their decision-making. To meet demanding security and reliability requirements, we’re rolling out a high-priority suite of security and IT infrastructure enhancements — and we’re looking for a capable, hands-on IT Contractor to lead the charge.

The Role

You’ll lead the technical execution of IT and endpoint hardening measures to strengthen Natcap’s security posture and operational resilience. Working closely with our CISO, lead infrastructure engineer, and external vendors, you’ll deliver a broad set of IT initiatives on time, securely, and sustainably.

This contract will cover an initial 18 days of project work (which could be delivered either in a block of 3–4 weeks or flexibly over a longer period), followed by ongoing BAU support (5–10 hrs/month) at an agreed hourly rate.

Key Projects You’ll Deliver

• Workspace hardening (Google): Apply CIS Level 2 configurations, enforce 2SV, centralise audit logs.

• Laptop hardening (macOS): Secure all endpoints via Kandji MDM and CIS Level 2 benchmarks.

• Yubikey & passkey rollout: Deploy hardware MFA for privileged/high-risk users.

• Mobile devices & MDM: Roll out phones and secure MDM tooling.

• Data Loss Prevention (DLP): Implement tools to protect sensitive data.

• Privileged Access Management: Establish break-glass accounts and secure workflows.

• Asset inventory accuracy: Ensure complete, integrated endpoint monitoring.

• Office 365 hardening: Strengthen Microsoft 365 security.

• MFA enforcement: Audit and enforce MFA across systems and third-party platforms.

Responsibilities

• Own the technical delivery of these initiatives end-to-end.

• Develop and document security processes, configs, and runbooks.

• Lead tool rollouts (e.g. Yubikey, MDM) including comms and onboarding.

• Configure and tune security tools to balance usability and enforcement.

• Track and report on progress and security milestones.

• Provide ongoing IT support for BAU and user needs.

What We’re Looking For

5+ years in IT systems administration or infrastructure engineering
Strong experience with Google Workspace & macOS security
Hands-on with endpoint hardening (CIS benchmarks, MDM, auditing)
Strong grasp of identity management & MFA
Proven track record delivering technical projects in fast-paced/startup environments
Excellent documentation & communication skills

Nice to have:

• Experience with Kandji or similar MDM

• Yubikey or hardware token rollouts at scale

• Microsoft 365 security configuration

• Exposure to ISO 27001 or similar frameworks

Why Join Us?

• Be part of a mission-driven startup tackling the nature and sustainability crisis.

• Lead critical IT security projects with direct impact on resilience and scale.

• Work in a collaborative hybrid setup in London.

Interested? Apply now and help Natcap strengthen its security foundations while driving positive impact for people and planet.