Key skills
DNSITSMLinuxMacOSOktaSSOLeadership
About this role
Role Overview
- Design and implement beehiiv's corporate IT infrastructure from its current state to an enterprise-ready foundation — including network architecture, tooling selection, and systems integration.
- Establish and document IT standards, policies, and procedures where none currently exist, creating a repeatable and auditable framework as the company scales.
- Evaluate, procure, and deploy new tools and platforms that align with our security posture and operational needs.
- Build automated provisioning and de-provisioning workflows that reduce manual overhead and human error as headcount grows.
- Own the IT roadmap: identify gaps, propose solutions, and drive implementation with minimal hand-holding.
- Own the full lifecycle of employee identity — seamless onboarding/offboarding, group permissions management, and strict enforcement of MFA/SSO protocols in Okta.
- Design and maintain role-based access control (RBAC) structures that scale with the organization without creating security debt.
- Manage a global fleet of company MacBooks (and some Windows/Linux machines) using Kandji, ensuring all devices are encrypted, patched, and compliant with our security policies.
- Act as the primary admin for Google Workspace, managing everything from email routing and shared drives to security auditing and tenant-level configuration.
- Handle escalated IT helpdesk tasks — tech support, hardware troubleshooting, application access — with an eye for detecting social engineering or phishing attempts.
- Assist in hunting down corporate phishing attempts, performing malware removal, and implementing security protocols to keep our remote perimeter safe.
- Partner with HR (BambooHR) and Engineering to automate provisioning workflows and integrate IT systems into the broader operational stack.
Requirements
- Experience architecting end-to-end within Kandji/Iru, Okta, and Google Workspace — ideally in a high-growth or startup environment.
- Prior experience building an IT function or infrastructure at an early-stage or scaling company.
- Direct experience supporting Senior Leadership and handling the discretion that comes with it.
- Familiarity with Okta integrations and lifecycle management workflows.
- A background in Information Security that extends beyond traditional IT support.
- High proficiency in macOS is a must.
- Solid experience with Windows (10/11) and familiarity with Linux.
- Deep working knowledge of Okta and Google Workspace.
- Proven experience managing mobile devices via an MDM (Kandji preferred).
- Understanding of DNS, DHCP, IP addressing, and troubleshooting connectivity in a remote home-office context.
- Experience with malware removal, device encryption, and familiarity with compliance frameworks like SOC 2.
- Experience not only with following processes and procedures, but creating them when needed.
- Experience using ITSM platforms to manage and prioritize requests.
- Proficiency with scripting languages and automation.
Tech Stack
- DNS
- ITSM
- Linux
- MacOS
Benefits
- Health, Dental, and Vision Insurance
- 401(k) Employer Match
- Unlimited PTO (mandatory 10 days per year minimum)
- Annual In-person team Retreat
- Unlimited Book Budget
- Monthly Wellness Days (every third Friday of the month)