IT Operations & Trust Engineer
Standard Template Labs · New York, NY · 7 mo ago
On-siteEngineering$130k–$170k/yrFull-time
About the role
We are seeking a hands-on, security-minded IT Operations Engineer to own the reliability, compliance, and trust posture of our internal systems. This role combines traditional IT operations with modern trust and compliance automation.
Responsibilities
- Administer and support core SaaS applications: Google Workspace, Notion, GitHub, Linear, Apple ABM, Okta/SSO, OnePassword, OpenAI/GPT, Claude, DocuSign, Ashby, Gusto, Ramp, LinkedIn Recruiter, BuiltIn.
- Manage user onboarding/offboarding, MFA, and access control through centralized identity management and SSO.
- Maintain device management (MDM) policies for encryption, patching, and asset tracking.
- Operate and maintain the Vanta (or equivalent) compliance automation platform to monitor controls and evidence freshness.
- Ensure continuous compliance across SOC 2, ISO 27001, and security frameworks — own control remediation and auditor readiness.
- Oversee security controls such as MFA enforcement, privileged access audits, and device encryption coverage.
- Partner with leadership to maintain the company’s Trust Report/Trust Center, including up-to-date documentation, certificates, and vendor reviews.
- Build and maintain automations for onboarding/offboarding, data syncs, and system integrations using low-code tools or APIs.
- Document recurring processes and technical playbooks in Notion for scalability and audit traceability.
- Identify and automate manual compliance evidence collection tasks to improve efficiency.
- Support third-party risk management by reviewing vendor SOC 2 reports, tracking renewal dates, and maintaining risk records.
- Conduct quarterly access reviews and coordinate with HR and Finance to ensure alignment with security policies.
- Generate monthly dashboards on system uptime, compliance status, and control health for executive visibility.
- Provide Tier 2/3 support for hardware, network, and application issues.
- Manage Wi-Fi and local network configurations at the NYC office.
- Lead security awareness training and coach employees on best practices.
Qualifications
- 5 + years in IT Operations, Systems Administration, or Security Engineering.
- Experience with Google Workspace and modern SaaS management across departments.
- Strong understanding of SSO, MFA, identity and access management (IAM).
- Working knowledge of compliance automation tools (Vanta, Drata, Tugboat, Secureframe or equivalent).
- Hands-on experience with MDM solutions (Jamf, Intune, or Kandji).
- Familiarity with SOC 2 / ISO 27001 / NIST principles and trust reporting.
- Scripting or automation skills (Python, Zapier, Google Apps Script or similar) a plus.
- Excellent communication and documentation skills; proactive mindset for security and compliance.