[Hiring] IT & Security Engineer @ASG

Role Description

This role is a hands-on operator and enabler for ASG’s HoldCo team, responsible for managing and securing the company’s core IT, SaaS, and AI tooling environment. The IT & Security Engineer will own day-to-day IT operations, including device management, onboarding and offboarding, and system administration, while ensuring strong security and access controls across the organization. In parallel, this person will partner closely with the AI Governance team to evaluate, enable, and secure the use of AI tools such as ChatGPT and Claude, establishing practical guardrails that allow employees to move quickly without compromising data or systems. This role also serves as a key stakeholder in software and vendor decisions, helping balance security, cost, and usability while building simple, scalable processes that support a modern, AI-enabled workplace.

What You Will Do

• Own and operate the company’s core IT, SaaS, devices, and access controls, ensuring systems are secure, well-configured, and scalable.
• Continuously assess and rationalize the SaaS ecosystem, owning the ROI of AI-powered SaaS workflows — from adoption and utilization to measurable business outcomes — while reducing redundancy and controlling costs.
• Partner closely with the AI Governance team to evaluate and enable the safe use of AI tools across the company, ensuring policies are consistently applied while maintaining speed and flexibility for employees.
• Design, deploy, and maintain sophisticated enterprise-grade AI agents and AI-powered workflows, partnering with business teams to automate processes and unlock productivity at scale.
• Support context layer data readiness for enterprise systems, ensuring AI tools have clean, structured, and appropriately governed access to the data they need to function effectively.
• Establish and enforce secure architecture for AI tool usage (e.g., ChatGPT, Claude), including data handling, connector security, and access controls that balance security with usability.
• Design and manage identity and access management across the organization, including provisioning, deprovisioning, and role-based access aligned to least-privilege principles.
• Lead day-to-day IT operations, including employee onboarding and offboarding, device provisioning and management, and ongoing support to ensure a secure and seamless employee experience.
• Develop and deliver training and guidance to employees on secure usage of company tools, with a focus on SaaS platforms and AI applications.
• Continuously assess and rationalize the SaaS ecosystem, reducing redundancy, managing costs, and ensuring tools are both secure and effectively utilized.

Qualifications

• 5+ years of experience in IT, systems administration, or similar roles, with a track record of independently owning and operating core company systems and infrastructure.
• Experience serving as the primary or sole IT owner in a small or mid-sized environment, responsible for end-to-end management of systems such as Google Workspace, device management (e.g., Jamf), identity, and SaaS tools.
• Deep hands-on expertise managing modern IT environments, including provisioning, configuration, access control, and ongoing maintenance without reliance on large supporting teams.
• Strong understanding of security fundamentals, including access controls, data protection, and SaaS security best practices; relevant certifications (e.g., Security+, CISSP, or similar) are a plus.
• Demonstrated ability to balance security with usability, making thoughtful decisions that protect the organization without slowing down the business.
• Experience evaluating and managing SaaS tools and vendors, with a focus on reducing redundancy, controlling costs, and maintaining a clean, secure environment.
• Comfortable owning all aspects of day-to-day IT operations, including onboarding/offboarding, device provisioning, troubleshooting, and employee support.
• Curiosity and enthusiasm for emerging technologies, particularly AI tools and workflows, with a desire to experiment, learn, and introduce new capabilities responsibly.
• Strong problem-solving skills and sound judgment, with the ability to prioritize effectively, operate independently, and make decisions in a fast-paced, evolving environment.
• Clear communicator who can translate technical concepts into practical guidance for non-technical users and drive adoption of new tools and practices.

Benefits

• The target salary range for this position is $150,000 - $200,000.
• Part of a competitive total rewards package including an annual bonus, employer-paid benefits, L&D stipend, and incentive pay for eligible roles.
• Individual pay may vary from the target range and is determined by a number of factors including experience, location, internal pay equity, and other relevant business considerations.
• Annual review of all employee pay and compensation programs to ensure competitive and fair pay.