Systems Engineer

WorkOS•San Francisco, CA

1d•Remote

About The Position

As a Systems Engineer at WorkOS, you will be the technical backbone of our internal IT organization — designing the systems, automations, and infrastructure that scale our internal operations. This is not a help desk role: you will architect endpoint management workflows, write scripts, ship automation, and build the foundation that keeps a fast-growing company running smoothly. We have an MSP partner handling tier 1 support. Your job is to architect the systems the MSP executes against, automate everything upstream, and serve as the escalation point for complex tier 2/3 issues. You will own identity, device management, SaaS lifecycle, and the automation layer that ties it all together.

Requirements

7+ years in IT systems, infrastructure, or identity engineering roles — with clear examples of designing, building, and automating at scale (not just operating)
Deep experience with Okta — Workflows, integrations, policy design, SCIM provisioning (not just user administration)
Proficiency in scripting (Python, Bash) and comfort with REST APIs, webhooks, and authentication flows
Hands-on Terraform experience for managing infrastructure and configuration as code
Strong macOS fleet management — MDM (Jamf, Kandji, or equivalent), scripting, zero-touch provisioning
Deep understanding of SSO protocols (SAML, OAuth 2.0) and SCIM provisioning patterns
Experience with Google Workspace administration at scale
Solid understanding of networking fundamentals — DNS, HTTP, APIs, VPNs, firewalls

Nice To Haves

Experience with AI/LLM tools for IT automation (agentic workflows, ChatGPT/Claude for scripting, Okta + AI integrations)
GitOps or declarative approaches to device and identity management
Cloud infrastructure experience (GCP or AWS)
SOC 2 or ISO 27001 compliance experience
Experience operating in an MSP-augmented IT model

Responsibilities

Own and evolve our identity infrastructure — Okta (SSO, MFA, Workflows, SCIM provisioning, lifecycle management), Google Workspace, and downstream SaaS integrations
Architect and ship automation across the IT stack — onboarding/offboarding workflows, access controls, license governance, and SaaS lifecycle management
Own macOS endpoint management end-to-end — zero-touch provisioning, policy enforcement, detection and remediation scripting via MDM
Manage infrastructure as code using Terraform for identity, SaaS, and cloud resources
Serve as the escalation point for complex systems issues (tier 2/3) — working with our MSP partner to ensure smooth resolution
Evaluate and enable new SaaS tools — pilot emerging technologies including AI-powered IT automation
Create documentation and runbooks that reduce operational toil and increase durability
Drive an automation-first culture across the IT function — if it can be automated, it should be