IT Systems Engineer

About The Position

Requirements

• 4+ years in systems engineering, corporate IT, or a hybrid IT/security role — ideally at a startup
• Deep macOS fluency: shell/Python scripting, configuration profiles, and hands-on MDM troubleshooting
• Hands-on MDM experience (i.e., Rippling, Jamf, Kandji) — enrollment, policies, smart groups, zero-touch provisioning
• Okta administration: lifecycle management, device trust policies, group rules
• Proficient in scripting and building software — bash and Python at minimum. Expected to own automation scripts and internal tooling.
• SaaS stack management: tool inventory, vendor renewals, access governance
• Proficient using AI tools (Claude, Cursor, Codex or similar) as part of your daily workflow

Nice To Haves

• Experience building or operating MCP servers or LLM agents
• Familiarity with security concepts: least privilege, zero trust endpoint posture, log forwarding, DLP basics
• Exposure to AWS IAM or cloud infrastructure
• Experience with device trust architectures (Okta Device Trust, CrowdStrike, or similar)
• Built internal tooling from scratch — provisioning workflows, self-service automations, or agent-driven ops

Responsibilities

• Own and evolve our SaaS stack (Okta, Google Workspace, Slack). Procurement, provisioning, and lifecycle management
• Operate and mature our MDM stack (Rippling/Jamf/Kandji), enforce Okta Device Trust policies, and ensure endpoints meet our security baseline
• Build and maintain internal MCP servers; design agents that automate internal ops and extend what the security and engineering teams can do
• Manage endpoint hardening & macOS/Windows fleet: configuration profiles, CIS benchmark enforcement, macOS scripting, software deployment, and patch management
• Automate security tasks: access reviews, alert triage, onboarding/offboarding, posture checks