Lead IT Specialist
Later · Boston, MA · 1 mo ago
HybridInformation Technology$110k–$150k/yrFull-time
About the role
We’re looking for a highly technical Lead IT Specialist to own and evolve our corporate IT systems/access and security at a senior level. This is not a “tickets all day” role — it’s a high technical role that still stays close to the planning and the execution.
Responsibilities
- Strategy
- Participate and advise on the IT technical roadmap across identity, endpoint security, access governance, and core corporate systems.
- Partner with Security/Infra to ensure SOC 2 Type II and ISO 27001 controls are operational (and not just documented).
- Establish standards for device compliance, access management, and SaaS lifecycle (intake → review → onboarding → offboarding).
- Drive adoption of scalable patterns: SSO-first, least privilege, automated lifecycle management, and measurable compliance.
- Government of IT equipment in company offices (equipment in conference rooms, entrance doors, security cameras, etc.)
- Technical/ Execution
- Own Google Workspace administration end-to-end (org policies, groups, security settings, audits, access hygiene).
- Lead Identity & Access Management: SSO/SAML, SCIM provisioning, group-based access control, and app access patterns.
- Own device endpoint management at scale:
- Kandji/Iru (Mac) and Intune (Windows) device policy enforcement
- OS update compliance, encryption, malware protection, and reporting
- Build and maintain operational automation:
- BetterCloud or SaaS Manager workflows (onboarding/offboarding, group membership, access reviews)
- Scripted automation (where appropriate) to reduce manual work
- Own core “security hygiene” within IT:
- Account lifecycle, joiner/mover/leaver processes
- Device inventory accuracy and compliance dashboards
- Audit evidence collection that’s clean and repeatable
- Support vendor/tool governance:
- Software inventory ownership (admin + business owner)
- Vendor classification and risk review inputs (in partnership with Security/Legal)
- Team / Collaboration
- Partner with Infra/DevOps/Security to align on controls, identity design, and incident readiness.
- Work with HR/PeopleOps on onboarding/offboarding and policy rollout.
- Collaborate with Finance/Procurement on renewals, licensing discipline, and cost visibility.
- Create clear documentation/runbooks so IT is easier to operate and scale.
- Research/Best Practices
- Define “how we work” standards: SLA tiers, escalation rules, evidence cadence, and system ownership.
- Reduce repeat incidents via automation, standardization, and root-cause improvements.
- Build a monthly operating rhythm: access reviews, device compliance review, vendor/tool audits, and reporting.
Qualifications
- 7+ years in IT engineering / systems administration / corporate systems leadership (senior technical depth).
- Deep expertise in Google Workspace administration and security controls.
- Strong experience with SSO/SAML and SCIM (Okta or similar IdP), group-based access models, least-privilege design.
- Strong endpoint management experience: Kandji (Mac) and/or Intune (Windows), patching, encryption, AV, compliance reporting.
- Comfort operating in a compliance-driven environment (SOC2 / ISO), including evidence, audits, and operational controls.
- Strong documentation habits and a “make it repeatable” mindset.
- Calm, practical, senior ownership: can run the work, prioritize, push back, and build scalable patterns.
Nice to have
- BetterCloud or similar automation tooling experience
- Vendor risk management inputs and software governance experience
- Experience rolling out Okta/device trust policies or conditional access
- Experience building IT dashboards and metrics (SLA, compliance, lifecycle time)
- Experience with auditing mechanisms and processes (SOC2, ISO 27001)
What you bring
- Driven by Impact: You deliver results that matter—prioritizing high-value work, meeting deadlines, and adapting quickly while keeping outcomes clear.
- Strategic & Customer-Centric: You anticipate risks and opportunities, connect decisions to long-term growth, and build trust through proactive insights.
- Curious & Growth-Oriented: You seek knowledge, ask sharp questions, and apply learnings fast—challenging the status quo with a mindset of improvement.
- Collaborative & Resilient: You thrive in change by staying resourceful, solution-focused, and positive—removing roadblocks, sharing insights, and keeping morale high.
- Accountable & Honest: You own your work, hold yourself and others to a high bar, and use transparent feedback to drive growth.
- Emotionally Intelligent: You build trust through empathy and collaboration, foster inclusion, and inspire others with grit, optimism, and integrity.
Pay
$110,000- 150,000 USD