Systems & Security Administrator

Job Title: Systems & Security AdministratorDepartment: IT Operations - IT & InfoSec Level: Mid–Senior Level Experience: 5 to 7 yearsWorking Hours: As per Job requirementJob DescriptionTru Performance is a B2B digital marketing and IT operations agency serving enterprise clients across the US and EMEA. We are placing a dedicated Systems & Security Administrator on behalf of one of our fast-growing US-based SaaS clients operating in the video communications and sales enablement space.We are looking for a highly skilled and self-directed professional to take full ownership of the client's internal IT security, device management, and compliance function. This is not a helpdesk role — it is a dedicated, strategic position for someone who understands that security posture, SOC 2 readiness, and operational IT hygiene are business-critical functions. You will operate as an embedded part of the client's team, working directly with their CTO and leadership, while being employed and managed through Tru Performance.The ideal candidate brings deep hands-on experience across security management, endpoint administration, and IT compliance frameworks — and is comfortable operating independently with minimal hand-holding. If you are proactive, security-first in your thinking, and excited by the challenge of owning a function from the ground up in a fast-growing SaaS company, this role is built for you.ResponsibilitiesSecurity & Vulnerability ManagementDevelop, implement, and continuously manage the client's information security strategy, policies, and procedures — covering both technical controls and organisational practicesMonitor the environment for security incidents, vulnerabilities, and anomalous activity; lead investigation and response efforts with clear escalation and documentation protocolsConduct regular security audits, penetration test reviews, and risk assessments to proactively identify and remediate gaps before they become incidentsOwn the patch and update management lifecycle — ensuring timely deployment of security patches across all endpoints, applications, and infrastructure componentsManage and configure firewalls, endpoint antivirus, email security, and intrusion detection/prevention systems — ensuring all security tooling is current, tuned, and effectiveLead threat intelligence review, staying current on emerging vulnerabilities and attack vectors relevant to a SaaS company handling business video communications dataDevice ManagementOwn the full lifecycle of the client's endpoint estate — including procurement coordination, configuration, deployment, and decommissioning of laptops and other endpoint devices in collaboration with Lenovo and MicrosoftDefine and maintain Standard Operating Environments (SOEs) for all endpoint devices — including OS baseline configurations, software deployment, and security hardening standardsManage Hexnode MDM (or equivalent) for device enrolment, policy enforcement, remote wipe, and compliance monitoring across the fleetCoordinate timely equipment setup and distribution for new hire onboarding and role changes — working closely with HR and the People teamMaintain an accurate, up-to-date IT asset inventory and oversee lifecycle management from procurement through to retirementIT Compliance & SOC 2Own the client's IT compliance posture — ensuring all systems, practices, and vendors meet requirements under relevant frameworks including SOC 2 Type II, GDPR, CCPA, and HIPAA where applicableLead and manage SOC 2 audit preparation and coordination — working directly with external auditors, collecting and curating evidence, tracking remediation items, and maintaining audit readiness year-roundOversee the implementation and ongoing management of Vanta (or equivalent GRC tooling) for continuous compliance monitoring, control mapping, and evidence collectionDevelop, maintain, and enforce IT security policies, access control procedures, and acceptable use standards across the organisationDesign and deliver security awareness and IT compliance training programs for employees — ensuring a culture of security consciousness across the client's distributed teamPrepare for and facilitate both internal and external compliance audits — serving as the primary IT point of contact throughout the audit lifecycleGeneral Systems AdministrationAdminister and support core IT systems including Google Workspace, Microsoft 365, and Microsoft Defender — managing user accounts, groups, permissions, and access controls across platformsProvide escalated IT support and troubleshooting for systems, networks, and applications — particularly for issues that have a security or compliance dimensionEnsure the reliability, availability, and performance of the client's IT infrastructure — proactively monitoring and addressing issues before they impact employeesCollaborate with engineering, product, and operations teams to support secure system integrations, new tool onboarding, and infrastructure decisions that require IT or security sign-offMaintain clear, current documentation of all IT systems, configurations, security controls, and compliance artefacts — on the client's internal knowledge base and SharePoint environmentSkills & Qualifications5–7 years of hands-on experience in IT systems administration, information security, or a combined IT/security role — with demonstrated ownership of security and compliance in a fast-moving technology or SaaS environmentDirect, hands-on experience with SOC 2 Type II audit preparation and management — including evidence collection, control implementation, auditor coordination, and year-round readiness maintenanceProficiency with MDM platforms — Hexnode strongly preferred; Jamf, Intune, or equivalent will be considered — including device policy configuration, enrolment management, and remote administrationStrong command of Google Workspace administration — user management, group policies, SSO configuration, security settings, and audit log reviewWorking proficiency with Microsoft 365 administration and Microsoft Defender — including endpoint security policy management, threat protection configuration, and alertingHands-on experience with GRC and compliance monitoring tools — Vanta, Drata, or equivalent — including control mapping, evidence management, and compliance dashboard oversightSolid understanding of firewall management, network security principles, antivirus and EDR solutions, and intrusion detection/prevention systems — with ability to manage and tune these tools independentlyPractical knowledge of GDPR, CCPA, HIPAA, and their implications for a US-based SaaS company managing business communications dataStrong documentation and communication skills — able to write clear security policies, produce audit-ready evidence packages, and communicate risk clearly to non-technical stakeholdersSelf-directed and proactive — comfortable operating as the sole IT/security resource for an organisation, managing priorities independently and escalating appropriatelyPreferred QualificationsRelevant certifications — CompTIA Security+, CISSP, CISM, or equivalent — are a strong advantageExperience with Vanta specifically, including setup, integrations, test management, and preparing for auditor accessFamiliarity with identity and access management (IAM) tooling — Okta, Google SSO, or Azure AD — and experience implementing or administering SSO and MFA enforcement across a SaaS stackExposure to cloud infrastructure security on AWS or GCP — particularly around access controls, security group configuration, and cloud-native audit loggingExperience working in a US-headquartered SaaS company or serving as an embedded IT/security resource on behalf of an agency or managed services providerUnderstanding of video communications, data retention, and the specific privacy and security obligations relevant to platforms handling business communication contentHow Success is MeasuredSOC 2 Type II audit outcomes — zero critical findings, on-schedule audit completion, and year-round control compliance demonstrated through Vanta or equivalent toolingSecurity incident frequency, severity, and mean time to detect and respond — with a clear trend toward fewer incidents and faster resolution over timePatch and update compliance rates — all endpoints and systems at or above policy-defined patching thresholdsIT asset accuracy — inventory maintained with less than 2% variance from actual fleet at any given timeNew hire IT readiness — equipment provisioned and systems access granted on or before each employee's first day, consistentlyEmployee security awareness — measurable improvement in phishing simulation results and policy acknowledgement completion rates over timeStakeholder satisfaction — client CTO and leadership team confidence in IT security posture, compliance readiness, and operational reliabilityApply through LinkedIn or send your CV and a short note on your IT support experience to

Apply Now