Apple Desktop/SaaS Systems Administrator

We are seeking a highly capable Desktop Support & SaaS Systems Administrator to serve as our internal IT “go‑to” expert. This role requires deep hands‑on technical support skills across macOS, Windows, hardware/software troubleshooting, and corporate networks — along with administrative-level expertise in Jamf, Okta, Google Workspace, Active Directory, BetterCloud, and other SaaS platforms. You will own the full employee IT lifecycle, ensure our systems are secure and scalable, and maintain a world-class end‑user experience. MUST HAVE Experience with user management in Jamf, Okta, Google, Active Directory, BetterCloud, and other SaaS apps. End‑User IT Support (macOS & Windows) Provide in‑person and remote desktop support for macOS, Windows 10/11, and iOS devices, including hardware/software troubleshooting and network diagnostics. Serve as the primary point of contact for all IT support issues, demonstrating professionalism, empathy, and high‑quality service at all times. Manage and resolve support tickets, ensuring SLA compliance and consistent documentation in the ticketing system. Systems Administration – (Jamf, Intune, Okta, Google Workspace, AD, BetterCloud) This role requires administrator‑level experience, not just user‑level interaction. Jamf (macOS MDM Administration) Create, deploy, and manage configuration profiles, policies, scripts, and patch management for macOS fleets. Build and maintain zero‑touch provisioning workflows using PreStage Enrollments. Develop compliance baselines, security controls, and automation for macOS devices. Okta (Identity & Access Management Administration) Manage lifecycle automation, group rules, app assignments, SSO integrations, MFA policies, and identity governance. Create and maintain custom Okta workflows, enforce adaptive MFA, and integrate new SaaS applications via SAML/OIDC. Oversee joiner/mover/leaver access processes with automated deprovisioning. Google Workspace Administration Create and manage user accounts, groups, shared drives, and security/OAuth configurations. Administer Gmail, Drive, Calendar, and Workspace security settings. Monitor alerts, devices, and suspicious login activities. Active Directory (On‑prem or cloud) Administer user objects, passwords, group policies, security groups, and workstation join processes. Audit and update permissions, group memberships, and access provisioning. BetterCloud (SaaS Automation & Governance) Build automated workflows for onboarding/offboarding across SaaS apps. Manage alerts, bulk actions, SaaS file exposures, and security configurations. Maintain automated license assignment/removal and SaaS compliance reporting. Other SaaS Applications Act as primary admin for corporate apps, ensuring proper configuration, permissions, integrations, and lifecycle management. Onboarding / Offboarding Ownership Fully own the new hire onboarding process, including account creation, hardware prep, MDM enrollment, and access provisioning across all systems. Execute secure and compliant offboarding, including remote lock/wipes, access revocation, license reclamation, and asset retrieval. Partner closely with HR, management, and department leads to ensure a seamless employee experience. IT Infrastructure & Security Support office networks, wireless access points, printers, VoIP phones, Zoom Rooms, and conferencing systems. Respond to outages and escalate issues to IT or vendors when necessary. Implement and enforce security best practices, including OS patching, endpoint hardening, MFA enforcement, and access controls. Assist with IT audits, compliance tasks, vulnerability remediation, and device health monitoring. Asset Management & Inventory Oversee all IT inventory including laptops, accessories, peripherals, and software licenses. Manage the full hardware lifecycle: procurement → deployment → maintenance → refresh → decommissioning. Coordinate with external vendors for equipment servicing or warranty claims. AV & Event Support Support Zoom, Zoom Rooms, and in-office/hybrid meetings. Coordinate and run company-wide or department-level AV events or presentations.