IT Operations Engineer (Cybersecurity)

TL;DR

IT Operations Engineer (Cybersecurity): Own and evolve internal IT infrastructure, security compliance, and employee technology experience with an accent on endpoint management, identity access management, and cloud infrastructure for a fully remote security research team. Focus on auditing deployed systems against documentation, building production-quality automation tools, and maintaining SOC 2 compliance.

Location: Fully remote, open to candidates authorized to work in the United States with preference for New York or East Coast based individuals.

Salary: $150,000 to $210,000

Company

Cybersecurity firm of ~100 people across 14+ countries, fully remote since 2012, conducting security audits, building research tools, and setting industry standards for tech companies, financial institutions, and government agencies.

What you will do

• Test, deploy, and maintain MDM solutions (Jamf Pro) and endpoint security tools (CrowdStrike Falcon) across primarily macOS fleet with Windows/Linux endpoints.
• Manage identity and access across SaaS ecosystem (Google Workspace, 1Password, GitHub, Slack) including SSO integration and account lifecycle hygiene.
• Maintain SOC 2 compliance, respond to client security questionnaires, and manage security tools like vulnerability scanning and patch management.
• Audit, rationalize, and optimize cloud infrastructure on GCP and other providers, enforcing least-privilege access and cost monitoring.
• Build automation, self-service tooling, and internal tools using Python/Bash to improve operational efficiency and employee experience.
• Document all changes transparently in GitHub/Slack, provide technical support via Slack, and handle critical issues outside business hours.

Requirements

• Significant experience in IT Operations, DevOps, or Systems Administration, including as primary/solo IT person inheriting existing infrastructure.
• Strong programming in Python and Bash for production-quality scripts, automation, and tooling; able to review code.
• Expert macOS administration with MDM, plus Windows/Linux experience; manage Apple Business Manager and device lifecycle.
• Experience with IAM protocols (OAuth 2.0, SAML), Google Workspace, 1Password, and cloud infra on AWS/Azure/GCP.
• SOC 2 compliance knowledge; vulnerability scanning, patch management, and responding to security questionnaires.
• Excellent written communication, organizational skills, and systems thinking for remote technical workforce support.

Nice to have

• Background in cybersecurity organization.
• Infrastructure-as-code experience.
• Stabilizing IT during growth/transition.
• Based in New York or East Coast.

Culture & Benefits

• Competitive salary and bonus.
• Comprehensive health insurance.
• Equipment budget including MacBook Pro and AI tooling access.
• Professional development.
• Flexible PTO.