IT Manager

This is a fully remote position, open to applicants in California.

📋 Description

• Oversee endpoint security, vulnerability management, SIEM monitoring, identity and access administration, DNS/email security, secure remote access, and IT operations across Windows, Mac, and select Linux systems.

• Establish formal onboarding and offboarding protocols for employee accounts and equipment across all company platforms.

• Manage an IT help desk and ticketing system for support inquiries.

• Supervise an asset management platform to monitor all company hardware, including laptops, desktops, servers, and network devices.

• Implement and oversee a Mobile Device Management (MDM) solution across all company endpoints (Windows and Mac).

• Maintain IT policies and documentation addressing security, access management, acceptable use, and incident response.

• Conduct periodic access reviews to verify appropriate permissions across all systems.

• Administer the office LAN, firewall, switches, and internet connectivity.

• Assess and upgrade network equipment as necessary.

• Deploy and manage endpoint security software on all company devices.

• Enforce disk encryption on all endpoint devices.

• Monitor and manage endpoint patching and operating system updates.

• Oversee DNS and email security configurations.

• Monitor the Rapid7 SIEM for security incidents and respond to alerts.

• Enforce Multi-Factor Authentication (MFA) across all company systems.

• Maintain least-privilege access controls across all platforms.

• Manage privileged access through segregated administrative accounts.

• Conduct periodic vulnerability assessments and address any findings.

• Maintain an incident response plan and disaster recovery strategy, including annual tabletop exercises.

• Perform regular internal security audits (exposed services, misconfigurations, end-of-life software).

• Collaborate with the engineering team on server-side security matters (agent deployment, hardening, log ingestion).

• Manage core business systems, collaboration tools, and remote-access systems.

• Oversee password manager administration (vaults, sharing policies, permissions).

• Ensure secure remote access management.

• Control physical office access (implement and maintain an electronic access system).

• Guarantee timely provisioning and deprovisioning related to employee lifecycle events.

• Supervise the backup strategy—ensuring backups are encrypted and regularly tested for restoration.

• Provide technical support to approximately 30 employees across Windows and Mac platforms.

• Support both in-office and remote employees (approximately 50/50 distribution).

• Troubleshoot hardware, software, network, and connectivity problems.

• Offer patient, clear guidance to less technical staff while respecting the independence of technical team members.

• Set up and configure new employee workstations and laptops.

⛳️ Requirements

• A minimum of 3 years of experience in IT systems administration or a comparable hands-on IT position.

• Proficient in administering Windows and macOS endpoints within a business context.

• Experience with Google Workspace administration (user management, security settings, organizational units).

• Practical experience with network administration (firewalls, switches, VPN configuration).

• Experience in deploying and managing endpoint security tools (EDR/antivirus, vulnerability scanners).

• Understanding of identity and access management principles (least privilege, MFA, SSO, access reviews).

• Comfortable working in Linux environments (Debian/Ubuntu) for tasks such as deploying agents, reviewing logs, and basic troubleshooting.

• Familiarity with MDM/endpoint management platforms.

• Strong troubleshooting capabilities across hardware, software, and networking.

• Ability to communicate technical concepts to non-technical users with patience.

• Self-motivated with the capability to prioritize and manage multiple concurrent projects independently.

🏝️ Benefits

• Health insurance.

• Paid time off.