IT Systems Engineer

VGS is the world's leader in payment tokenization. Large banks, aspiring fintechs, and growing merchants embed our universal token vault into their technology stack to manage the complexities of payment data tokenization across processors and networks, open banking, card issuance, omnichannel loyalty, PCI compliance, payment orchestration, and more.  We empower our clients and partners by tokenizing sensitive payment data, limiting compliance scope, and consolidating payments to unlock revenue and business opportunities. 

VGS provides processor-agnostic tokenization solutions via secure universal token vaults, iframes, mobile SDKs, tokenization proxies, APIs, and data orchestration tooling to support payment acceptance, card issuance, PII and bank account tokenization, and other payments value-added services. Some of the use cases we enable include multi-processor Network Tokenization, Account Updater, payment orchestration, secure settlement file processing, 3DS, and Risk provider connectivity.

As an IT Systems Engineer, you will be responsible for designing, implementing, and maintaining the company’s IT infrastructure and enterprise applications while managing and optimizing our collaboration tools and platforms, focusing on Google Workspace, Slack, Jira, and others. This role encompasses a wide range of responsibilities, from system administration and support to enterprise application integration and automation of IT services. It requires a strategic approach that gives you an excellent opportunity to contribute to our organization's long-term success. The IT Systems Engineer is critical in ensuring the IT team's service delivery, stability, security, and efficiency while aligning IT initiatives with business objectives.

• Employee Experience & Collaboration Tools Management:
• Take ownership of the technical administration and optimization of collaboration tools, including Google Workspace, Slack, Okta, GitHub, Atlassian Suite, etc., ensuring these tools align with defined standards and enhance overall employee collaboration.
• Identify gaps and shortcomings in our collaboration tools and platforms that impact user experience and develop technical solutions to address these issues.
• Work closely with the IT Operations Manager to define success metrics and benchmarks for collaboration tools and employee experience.
• Envision and implement innovative ideas to enhance the overall user experience for our diverse workforce through technology solutions.
• Shape a workplace environment that fosters productivity, collaboration, and job satisfaction by leveraging advanced technical solutions and best practices.

• Identity & Access Management and Security:
• Design, implement, and manage Identity and Access Management (IAM) solutions using Okta, focusing on SSO, SAML, OAuth, and SCIM protocols.
• Develop, test, and maintain Okta Workflows to automate and streamline identity lifecycle processes.
• Administer Okta Environment, including curating Zones Policies, building SAML and OIDC integrations for third-party SaaS and internal apps via the OIN or from scratch, and creating authorization servers with custom scopes and claims.
• Collaborate with cross-functional stakeholders such as Security, GRC, Engineering, and the People Team to increase automation and improve the security posture of internal systems.
• Develop and implement security policies, procedures, and controls to ensure the integrity and compliance of IAM solutions.
• Work with Legal and compliance teams to ensure collaboration tools adhere to data compliance standards and fulfill eDiscovery requests using vendor tools or custom code/APIs.
• Serve as an escalation point for fellow IT team members on issues requiring deeper technical expertise in various knowledge domains (e.g., Okta, Okta Workflows, endpoint issues, automation, scripting, etc.).

• System Administration, Integration, and Automation:
• Oversee the administration and support of enterprise tools and SaaS applications, ensuring high availability and performance.
• Develop and manage integrations between enterprise applications to ensure seamless data flow and interoperability.
• Identify and automate routine tasks, including onboarding and offboarding processes, to enhance operational efficiency.
• Build policies and scripts using vendor APIs to support company-owned devices and SaaS services.
• Leverage Python, Bash, etc., to automate routine tasks and integrate with APIs.
• Create and maintain detailed technical and procedural documentation, sharing knowledge and best practices within the team and the broader organization.
• Collaborate with the IT Operations Manager to define success metrics and benchmarks for system administration, integration, and automation projects.
• Develop and maintain documentation for supported applications, processes, and training material for internal employees and IT staff.
• Provide operational support, including account management, workflow, log analysis, troubleshooting, and service optimization, ensuring operational excellence.

• Education and Professional Experience:
• Bachelor’s degree in Computer Science, Information Technology, or a related field, or equivalent experience.
• Minimum of 5 years of experience in Identity and Access Management, with at least 3 years of hands-on experience with Okta.
• Proven experience as a System Administrator, Network Administrator, or IT Systems Engineer.
• Experience with cloud technologies such as AWS, Google Cloud, or Azure.
• Experience with enterprise application integration and automation tools.
• Hands-on experience supporting Windows and Mac users.
• Experience managing and administering MDM platforms and endpoint compliance.
• Familiarity with SaaS applications and their identity and access management requirements.

• Technical Expertise and Skills:
• Strong experience with IAM-related protocols such as SSO, SAML, OAuth, and SCIM.
• Documented experience automating routine tasks using Okta Workflows and other automation tools.
• Proficiency in Python and Bash scripting, with a strong understanding of API integrations.
• Firm knowledge of leveraging APIs to orchestrate IAM systems and experience with API integration work.
• In-depth knowledge of identity and access management concepts and practices.
• Strong IT systems knowledge, including networks, server infrastructure, databases, and cybersecurity principles.
• Excellent problem-solving skills and attention to detail.
• Advanced scripting and API knowledge.
• Experience developing infrastructure in public cloud environments (AWS/GCP/Azure).

• Communication, Leadership, and Customer Focus:
• Strong communication and interpersonal skills can explain complex IT concepts to non-technical stakeholders.
• Ability to manage multiple tasks and projects simultaneously in a fast-paced environment.
• Strong communication and collaboration skills, with the ability to break down complex problems into easily digestible tasks.
• Strong strategic and problem-solving skills, with a demonstrated ability to identify operational bottlenecks and devise and implement effective solutions.
• Strong customer service orientation, with a focus on delivering high-quality IT services to internal stakeholders.

• Preferred Qualifications:
• Certifications in JAMF, Okta, and other relevant fields.
• Previous experience with security and compliance concepts and frameworks.
• Proven track record in IT project management and managing and delivering large-scale IT projects on time and within budget.
• Familiarity with IT compliance standards and experience with audits.
• Relevant professional qualifications, such as ITIL, PMP, etc.

What you get from us...

• Flexible work hours and flexible PTO

• Competitive health benefits

• VGS stock options

• 401k plan, with employer matching 4% and immediate vesting (available only for US employees)

• Life & disability insurance

• Pre-tax flexible spending accounts, dependent and healthcare FSA (available only for US employees)

• Global parental leave program

• Employee Assistance Program

• Home Internet reimbursement

• New hire home office set up allowance

• Professional learning reimbursement

At VGS, we have a remote-first philosophy, which is that employees should have a comfortable work-life balance. We value great talent, and we strive to provide the best experience for our candidates. VGS appreciates your candidacy.

We consider applicants without regard to race, color, national origin, sex, age, religion, sexual orientation, gender identity, veteran status, marital status, physical or mental disability, or other protected classes under all local, state, and federal laws and ordinances (AA/EOE/W/M/Vet/Disabled).

Qualified applicants with arrest and conviction records will be considered for the position in accordance with the San Francisco Fair Chance Ordinance.

VGS will not be able to provide any kind of employment sponsorship at this time.