IT System Administrator, IAM Specialist

Job Description: • Design and implement beehiiv's corporate IT infrastructure from its current state to an enterprise-ready foundation — including network architecture, tooling selection, and systems integration. • Establish and document IT standards, policies, and procedures where none currently exist, creating a repeatable and auditable framework as the company scales. • Evaluate, procure, and deploy new tools and platforms that align with our security posture and operational needs. • Build automated provisioning and de-provisioning workflows that reduce manual overhead and human error as headcount grows. • Own the IT roadmap: identify gaps, propose solutions, and drive implementation with minimal hand-holding. • Own the full lifecycle of employee identity — seamless onboarding/offboarding, group permissions management, and strict enforcement of MFA/SSO protocols in Okta. • Design and maintain role-based access control (RBAC) structures that scale with the organization without creating security debt. • Manage a global fleet of company MacBooks (and some Windows/Linux machines) using Kandji, ensuring all devices are encrypted, patched, and compliant with our security policies. • Act as the primary admin for Google Workspace, managing everything from email routing and shared drives to security auditing and tenant-level configuration. • Handle escalated IT helpdesk tasks — tech support, hardware troubleshooting, application access — with an eye for detecting social engineering or phishing attempts. • Assist in hunting down corporate phishing attempts, performing malware removal, and implementing security protocols to keep our remote perimeter safe. • Partner with HR (BambooHR) and Engineering to automate provisioning workflows and integrate IT systems into the broader operational stack. Requirements: • Experience architecting end-to-end within Kandji/Iru, Okta, and Google Workspace — ideally in a high-growth or startup environment. • Prior experience building an IT function or infrastructure at an early-stage or scaling company. • Direct experience supporting Senior Leadership and handling the discretion that comes with it. • Familiarity with Okta integrations and lifecycle management workflows. • A background in Information Security that extends beyond traditional IT support. • High proficiency in macOS is a must. • Solid experience with Windows (10/11) and familiarity with Linux. • Deep working knowledge of Okta and Google Workspace. • Proven experience managing mobile devices via an MDM (Kandji preferred). • Understanding of DNS, DHCP, IP addressing, and troubleshooting connectivity in a remote home-office context. • Experience with malware removal, device encryption, and familiarity with compliance frameworks like SOC 2. • Experience not only with following processes and procedures, but creating them when needed. • Experience using ITSM platforms to manage and prioritize requests. • Proficiency with scripting languages and automation. Benefits: • Health, Dental, and Vision Insurance • 401(k) Employer Match • Unlimited PTO (mandatory 10 days per year minimum) • Annual In-person team Retreat • Unlimited Book Budget • Monthly Wellness Days (every third Friday of the month) Apply tot his job Apply To this Job