IT Engineer, Sr

About The Position

Requirements

• Proven experience administering enterprise SaaS applications at scale (Slack, GitHub, Atlassian, Okta, or similar).
• Strong hands-on experience with identity and access protocols — SAML 2.0, OAuth 2.0 / OIDC, and SCIM provisioning — including troubleshooting federation and token flows.
• Demonstrated experience implementing and operating SCIM-based user provisioning between an IdP (Okta, Azure AD/Entra ID, Ping) and downstream SaaS applications.
• Strong experience as a Slack administrator (Enterprise Grid preferred), including building Slack apps, workflows, and API integrations.
• Proven experience building and operating CI/CD pipelines using GitHub and GitHub Actions, including reusable workflows, environments, and secrets management.
• Solid knowledge of REST APIs, webhooks, and integration patterns for connecting SaaS platforms with enterprise systems.
• Strong scripting and automation skills (Python, Bash, JavaScript/TypeScript, or similar).
• Working knowledge of Linux systems and cloud platforms (AWS preferred).
• Excellent communication skills with the ability to work effectively across engineering, IT, and security teams.
• 3+ years of IT-related work experience with a Bachelor's degree OR 5+ years of IT-related work experience without a Bachelor’s degree.

Nice To Haves

• Experience with identity providers such as Okta, Azure AD/Entra ID, or Ping Identity, including custom SAML/OIDC app onboarding.
• Experience with infrastructure-as-code tools (Terraform, Pulumi) and SaaS providers (GitHub, Slack, Okta, Atlassian).
• Familiarity with secrets management platforms (HashiCorp Vault, AWS Secrets Manager, GitHub OIDC for cloud auth).
• Experience with GitHub Enterprise administration — organizations, SAML/SCIM, branch protection, GitHub Apps, and audit log streaming.
• Understanding of security compliance frameworks (SOC 2, ISO 27001, SOX) and how SaaS controls map to audit requirements.
• Experience with event-driven automation platforms (e.g., n8n) or serverless integration patterns.
• Exposure to container-based workloads (Docker, Kubernetes) and ephemeral GitHub Actions runners.
• Experience improving developer and end-user adoption of SaaS tooling through automation, self-service, and usability improvements.

Responsibilities

• Administer enterprise SaaS applications (e.g., Slack, GitHub Enterprise, Atlassian suite, Okta, Zoom) including configuration, licensing, role management, and platform health monitoring.
• Own end-to-end user lifecycle management — onboarding, role/group changes, offboarding, and access reviews — across the SaaS portfolio.
• Implement and maintain SCIM provisioning between the corporate identity provider (IdP) and downstream SaaS applications to automate account creation, updates, and deprovisioning.
• Configure and operate SAML and OAuth/OIDC single sign-on integrations; troubleshoot federation, token, and authorization issues across SaaS platforms.
• Define and enforce least-privilege access models, group/role mappings, and entitlement policies aligned with security and compliance requirements.
• Serve as the technical owner for Slack Enterprise Grid administration — workspace governance, channel management, retention, DLP, and compliance exports.
• Build and maintain Slack apps, bots, workflows, and integrations using the Slack API, Bolt framework, and Workflow Builder to streamline internal operations.
• Manage Slack Connect, guest access, and external collaboration policies in line with corporate security standards.
• Monitor Slack usage, audit logs, and Enterprise Key Management (EKM) events to support security and incident response.
• Design, build, and operate integrations between SaaS platforms and internal systems (Jira, Github, Artifactory, Confluence) using REST APIs, webhooks, and event-driven architectures.
• Develop and maintain CI/CD pipelines using GitHub Actions to automate deployment of SaaS configurations, integration code, and infrastructure-as-code for SaaS governance.
• Implement configuration-as-code practices for SaaS platforms (e.g., Terraform providers for GitHub, Slack, Okta) to enable versioned, auditable changes.
• Automate routine SaaS operations — access requests, group memberships, license reclamation, and audit reporting — using Python, Bash, or similar scripting.
• Partner with Security, Compliance, and Engineering teams to define standards for SaaS integration, secrets management, and API governance.
• Troubleshoot complex SaaS, identity, and integration issues across hybrid cloud and on-prem environments.
• Support audit, compliance, and security reviews by providing evidence from SaaS access controls, provisioning workflows, and integration logs.
• Create and maintain clear documentation, runbooks, and architectural designs for SaaS platforms and integrations.
• Provide tier-2/3 support for SaaS-related incidents and partner with vendors on escalations.

Benefits

• competitive annual discretionary bonus program
• opportunity for annual RSU grants
• highly competitive benefits package