Senior IT Engineer

About us

Truffle Security is a cybersecurity company on a mission to make secrets easier to detect, verify, and remediate across modern software environments. Built on the popular open-source secrets scanning platform, the company's enterprise solution gives security and engineering teams everything they need to find exposed credentials, understand which ones are active, and act on them with confidence. With support for 800+ credential types, Truffle Security continuously monitors non-human identities (NHIs) and their associated secrets across code repositories, SaaS applications, wikis, and cloud systems. It goes beyond detection by verifying which secrets are live, analyzing their scope of access, and streamlining remediation through automated workflows and lifecycle management so teams can prioritize what to revoke and confirm it's done without manual follow-up. Trusted by organizations including NVIDIA, Chick-fil-A, and OpenAI, Truffle Security helps security and engineering teams stay ahead of secrets risk.

About the role

We’re hiring a Senior IT Engineer to own and scale Truffle’s corporate IT and security infrastructure with a security-first mindset. This is a high-impact, hands-on role responsible for ensuring our systems, endpoints, identity platforms, and employee tooling remain secure, reliable, and scalable as the company grows. You’ll serve as the primary IT owner for the organization, partnering closely with internal teams to deliver an exceptional employee experience while maintaining a strong security and compliance posture. This role is ideal for someone who thrives in a fast-moving startup environment, enjoys building automation-first systems, and has deep experience managing Apple/macOS environments. Your work will directly impact our ability to operate efficiently while maintaining a strong security posture.

Corporate IT & Endpoint Management

• Own and manage Truffle’s corporate IT infrastructure, including identity systems, endpoints, SaaS applications, and access controls
• Administer and scale a primarily macOS-based environment across the company
• Manage Apple device lifecycle operations, including provisioning, deployment, maintenance, and decommissioning
• Own and optimize Apple MDM infrastructure (currently Kandji)
• Troubleshoot complex endpoint and employee IT issues and serve as the primary escalation point for internal support

Identity & Access Management

• Manage identity provider (IdP) infrastructure and corporate authentication systems
• Administer Okta integrations, Device trust, SSO policies, MFA, and access provisioning workflows
• Maintain secure access lifecycle management across onboarding, offboarding, and role changes
• Partner with Rippling and other business systems to improve automation and employee provisioning workflows

Automation & IT Operations

• Build and improve automation across IT operations and employee lifecycle management
• Continue evolving existing onboarding/offboarding automation workflows
• Evaluate, implement, and optimize modern IT and security tooling
• Create and maintain clear documentation, operational runbooks, and scalable internal processes
• Provide responsive, service-oriented support to employees across the company and help foster a secure, productive work environment

Security & Compliance

• Support and coordinate SOC 2 compliance activities and audit readiness efforts
• Contribute to corporate security initiatives and policies