Senior IT Systems Engineer

This is a fully remote position, open to applicants in United States.

📋 Description

• Design and develop enterprise IT systems that can scale with a rapidly expanding global organization.

• Collaborate with cross-functional teams to resolve intricate business challenges and implement technology solutions that drive significant results.

• Serve as the crucial link between IT, Enterprise Systems, and business stakeholders at all organizational levels.

• Streamline repetitive tasks — deploy workflows through Workato or Okta Workflows to save time and minimize human errors.

• Act as the technical support for the IT team during challenging situations.

• Manage and enhance the policies and procedures that ensure the security and compliance of our systems.

• Oversee Pantheon’s identity governance program across GCP, AWS, and GitHub Enterprise — developing Okta-driven provisioning workflows, enforcing least-privilege access, and establishing departmental access baselines that accurately reflect our operations.

• Assess our current IAM landscape and define the way forward — determining where Okta should integrate, complement, or replace existing infrastructure-as-code workflows.

• Complete the compliance loop — ensuring that audit trails are thorough and that our documentation aligns with the actual production environment.

⛳️ Requirements

• Over 8 years of experience in IT systems engineering or a related field within a dynamic SaaS startup setting.

• Proven experience in integrating multiple business-critical systems.

• Demonstrated project leadership capabilities — adept at organizing and prioritizing competing priorities and complexities using agile methodologies.

• Extensive knowledge and experience in utilizing Okta for identity and access management, including SSO/SAML/SCIM integrations and Okta Workflows.

• Direct experience with GCP IAM (Cloud Identity), AWS IAM (including IAM Identity Center and federated access), and GitHub Enterprise administration.

• Familiarity with infrastructure-as-code tools (Terraform, CloudFormation, etc.) and their integration with IAM governance workflows.

• Advanced experience with mobile device management solutions, such as Jamf and Intune.

• Strong understanding of security policies and procedures, particularly regarding EDR tools.

• Experience in building or enhancing identity governance programs that meet compliance requirements.

• Familiarity with Privileged Access Management (PAM) solutions such as CyberArk and BeyondTrust, including privileged account discovery, credential vaulting, and session management.

• Understanding PAM principles, including just-in-time access, least privilege enforcement, and privileged session monitoring in both cloud and on-premises settings.

• Provided senior-level technical direction and acted as an escalation resource in a fast-paced SaaS startup environment.

• Experience using scripts (specifically Bash or Python) for bulk operations such as patch/software deployments, user management, and policy enforcement.

• Proficient in working with and manipulating large datasets in Excel, Google Sheets, etc.

• Clear and empathetic communicator with strong creative problem-solving skills.

• Ability to quickly learn and adapt to changes in processes, tools, and workflows.

• High integrity and honesty, with the ability to handle sensitive and confidential information responsibly.

🏝️ Benefits

• Competitive industry compensation and equity plan.

• Flexible time off, sick days, and 13 paid holidays.

• Comprehensive medical coverage including Health, Dental, and Vision.

• Paid parental leave, along with fertility, adoption, and other family planning benefits.

• Access to in-office workspace in San Francisco & Chicago.

• Monthly allowance for wellness, reading, and access to LinkedIn Learning for ongoing development.

• Company-wide and team-based events and activities that inspire, educate, and foster community.