IT Systems Engineer

Description

We’re seeking a skilled IT Systems Engineer to build and own the foundations of our internal IT and device management. In this role, you’ll design and deploy our MDM and VPN platforms, manage our expanding device fleet, and enhance our security posture —from day-to-day operations to company-wide cybersecurity awareness.

This is a hands-on, high-autonomy role where you’ll define how we manage hardware, security, and access across the organization. You’ll serve as the go-to expert for complex IT challenges and play a key role in driving our security maturity as we grow.

If you thrive on shaping IT strategy while staying deeply involved in the technical execution, this is the opportunity to make a meaningful impact from day one.

• Select and implement a new MDM platform (e.g. Jamf, Kandji, Intune, or similar) to manage ~150 macOS and Windows laptops.
• Evaluate and provision a new VPN provider to enable secure remote access for all employees.
• Own device lifecycle management; procurement, setup, tracking, repairs, and offboarding.
• Maintain an accurate asset inventory and documentation for all hardware, software, and access systems.
• Administer and secure core SaaS systems such as Google Workspace, Slack, and internal tools.
• Implement and maintain endpoint security standards; disk encryption, antivirus, patching, and compliance baselines.
• Lead cybersecurity and phishing awareness training, coordinating internal sessions or external providers.
• Act as the escalation point for device and connectivity issues, formalising a helpdesk process to track and monitor requests.
• Provide both remote and on-site support as needed to ensure employees can work productively and securely.
• Automate repetitive IT processes and build lightweight self-service workflows for employees.
• Partner with engineering and security teams to align device and network controls with company security policies.
• Create and maintain clear IT documentation, runbooks, and lightweight policies that support compliance and operational readiness (e.g. SOC 2, ISO 27001).
• Security engineering in GCP — contributing to identity, access, and infrastructure security.
• Vulnerability scanning and management within our CI / CD pipelines and internal systems.
• Supporting wider company security initiatives, including risk assessments and technical controls.

• 3+ years of experience in IT operations, systems administration, or similar.
• Experience deploying and managing MDM solutions (Jamf, Kandji or equivalent).
• Strong understanding of endpoint security and device compliance.
• Experience evaluating and implementing VPN or remote access solutions.
• Familiarity with cybersecurity awareness practices and training delivery.
• Proficiency with macOS and Windows device administration.
• Familiarity with identity and access management within SaaS environments (e.g. Google Workspace).
• Experience supporting SOC 2 or ISO 27001 readiness.
• Familiarity with SaaS management platforms (e.g. BetterCloud, Torii, Fleet).
• Exposure to network configuration and office connectivity setup.
• Experience in a scaling tech company.
• Ability to script or automate processes using a combination of coding languages and workflow automation tools such as n8n or Zapier.
• Excellent communication and problem-solving skills, with the ability to support employees directly and effectively.

Comfortable building processes from scratch and iterating in a fast-paced scale up.

A Fair Chance
Every role in the Zencargo team is open to applications from all sections of society. We believe in the superpowers and potential of everyone, regardless of race, religion or belief, ethnic origin, different physical ability, family structure, socio-economics, age, nationality or citizenship, marital, domestic or civil partnership status, sexual orientation, gender identity, or any other difference that makes you, you.
More than just encouraging your application, we're committed to conscious inclusion that (we hope and intend) cultivates an environment of belonging.
We open our doors to those who share these motivations.