IT Systems & Microsoft

Gastronomous Technologies Inc.•Oakville, ON

10d•Onsite

About The Position

Gastronomous Technologies is seeking a hands-on IT Systems contractor to manage their Microsoft and endpoint environment. The company is experiencing rapid growth, with an expanding Microsoft 365 footprint and increasing security obligations. This role requires an individual who can bring the environment into a well-configured and well-documented state. It is not a help desk position; the contractor will be responsible for assessing the current environment, identifying gaps, designing appropriate configurations, executing those designs, and producing comprehensive documentation. A key objective for this role is to contribute to the company's SOC 2 compliance efforts.

Requirements

7+ years of hands-on Microsoft and endpoint experience.
Demonstrable, hands-on experience with Microsoft 365 administration (Exchange, Intune, Entra ID, Defender).
Strong knowledge of endpoint hardening on Windows environments.
Practical experience with SOC 2 or similar compliance frameworks (ISO 27001, NIST).
Familiarity with EDR/AV platforms and RMM tooling.
A documentation-first mindset.
Ability to work autonomously and manage own priorities with minimal supervision.
Comfortable operating in a fast-moving small company where scope can shift.

Nice To Haves

Experience in a manufacturing, hard tech, or IoT environment.

Responsibilities

Audit, configure, and document the M365 environment (Exchange, Teams, SharePoint, admin settings).
Deploy and manage Intune for MDM/MAM across all company devices, including policy creation and enforcement.
Harden the Azure AD / Entra ID environment, including conditional access, MFA policies, and identity governance.
Manage user lifecycle: provisioning, deprovisioning, role assignments, and access reviews.
Configure and enforce secure email policies (anti-phishing, SPF/DKIM/DMARC, DLP).
Perform a full audit of all company endpoints, document the current state, and close configuration gaps.
Standardize endpoint builds: OS hardening, encryption, software inventory, and patch management.
Deploy and tune antivirus / EDR tooling across all managed devices.
Evaluate and document the Remote Monitoring & Management (RMM) platform and recommend improvements.
Support AI tooling integration by ensuring the endpoint and identity layer is configured appropriately for agentic tools.
Drive the IT controls workstream for SOC 2 readiness, working directly with leadership.
Produce and maintain detailed documentation for all configurations, policies, and procedures.
Implement and enforce security policies across the organization (acceptable use, access control, data handling).
Support internal security awareness and onboarding/offboarding workflows.

Benefits

Meaningful contribution to a SOC 2 program from the ground up.
Direct access to leadership.
Opportunity to work on a company building technology that is deployed in the field.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume