Job Specifications
IT Systems Administrator
Location: Hybrid (Boston, MA area)
Department: IT / Operations
Reports To: VP of Engineering
About the Role
We are seeking an IT Systems Administrator to help manage and mature FacilityGrid’s internal IT operations. This role will own day-to-day systems administration — MDM enrollment, device fleet management, helpdesk support, identity and access management via Microsoft Entra ID, and application inventory. You will be the go-to person for keeping our team productive, secure, and well-equipped.
FacilityGrid is an AI-first company. We expect every team member — including IT — to actively leverage AI-based tooling to work faster, automate routine tasks, and solve problems more effectively. Candidates who are already comfortable using AI assistants in their daily workflow, or who are genuinely eager to start, will stand out.
This is a hands-on role with significant growth potential. You will build processes and tooling that scale as the company grows, working closely with engineering leadership to align IT operations with our security posture.
Key Responsibilities
Employee Lifecycle & Helpdesk
Own the end-to-end IT onboarding and offboarding process — account creation, equipment provisioning, access grants, orientation, and deprovisioning
Serve as primary point of contact for internal IT support requests
Triage, diagnose, and resolve hardware, software, network, and access issues
Maintain a ticketing workflow and knowledge base for common issues and procedures
Escalate complex issues to engineering or vendor support as appropriate
Coordinate with HR and department leads to ensure smooth transitions for new hires, role changes, and departures
Device & Fleet Management
Deploy and manage MDM solution (Intune/JAMF) for macOS and Windows endpoints
Maintain device inventory, lifecycle tracking, and hardware procurement processes
Configure and enforce device policies (encryption, OS updates, endpoint protection)
Handle device imaging, configuration, and decommissioning
Manage peripheral and accessory inventory
Maintain backup and recovery procedures for endpoint data
Identity & Access Management
Administer Microsoft Entra ID (Azure AD) for user lifecycle management (provisioning, deprovisioning, group management)
Configure and maintain SSO (SAML/OIDC) integrations for downstream SaaS applications
Manage conditional access policies and MFA enrollment
Maintain access reviews and ensure least-privilege principles across the application portfolio
Support SCIM provisioning integrations where available
Support platform migrations and tenant configuration projects (e.g., Google Workspace to Microsoft 365)
Networking & Infrastructure
Troubleshoot basic network issues (VPN, Wi-Fi, DNS, DHCP) for remote and on-site employees
Support VPN and zero-trust network access tooling (Tailscale)
Coordinate with ISPs, hardware vendors, and software support for procurement, renewals, and issue resolution
Maintain documentation for network configurations and access procedures
Application Inventory & SaaS Management
Build and maintain an inventory of all SaaS applications in use across the organization
Track licensing, cost, ownership, and renewal dates for each application
Identify redundant, unused, or shadow IT applications and recommend consolidation
Coordinate with department leads to understand application needs and usage
Implement security configurations and access controls as directed by leadership
Qualifications
Required
2–4 years of experience in IT administration, helpdesk, or systems administration
Hands-on experience with Microsoft Entra ID (Azure AD) — user management, group policies, SSO configuration
Experience with at least one MDM platform (Intune, JAMF, Kandji, Mosyle)
Comfortable supporting macOS and Windows environments
Experience with Microsoft 365 administration (Exchange Online, SharePoint, Teams)
Strong troubleshooting skills across hardware, software, and network issues
Clear written and verbal communication skills
Willingness to use AI-based tools (e.g., ChatGPT, Copilot, Claude) as a core part of your workflow for troubleshooting, automation, and documentation
Basic scripting ability (PowerShell, Bash, or Python) to automate routine tasks and system administration workflows
Preferred
Experience with platform or email migrations (e.g., Google Workspace to Microsoft 365)
Familiarity with SCIM provisioning and SAML/OIDC SSO configuration
Experience with IT asset management tools (GLPI, Snipe-IT, or similar)
Experience in a SaaS or technology company environment
Familiarity with Tailscale or similar zero-trust network access tools
Experience coordinating with hardware/software vendors and ISPs
Key Competencies
Strong attention to detail and follow-through
Self-directed — you can own a problem from ticket to resolution
Empathetic support style — you help people, not just fix machines
Organized and process-oriented with good documentation habits
Eager to learn and grow i