IT Administrator - Endpoint Platforms

Replit is the agentic software creation platform that enables anyone to build applications using natural language. With millions of users worldwide and over 500,000 business users, Replit is democratizing software development by removing traditional barriers to application creation.

About the role

We are seeking an IT Administrator - Endpoint Management to own the enterprise endpoint strategy with primary responsibility for administering Replit’s MDM platforms, enforcing secure baseline configurations aligned to CIS Level 1 benchmarks and ensuring all corporate endpoints (primarily macOS) are properly patched, compliant, and securely configured. The successful candidate will manage the approved application catalog, enforces EDR and DLP controls, develops compliance reporting and partners closely with SecOps on incident response and remediation. Additionally, the administrator will support audit readiness for SOC 2 and ISO 27001, balance security guardrails with developer productivity in an engineering environments and drive continuous improvement through automation, policy standardization and proactive endpoint risk management.

What You'll Do

• Own and administer enterprise endpoint management platforms with primary responsibility for Iru/Kandji configuration, policy design, and lifecycle management

• Establish and enforce enterprise endpoint standards aligned to CIS Level 1 benchmarks

• Design, implement, and maintain secure baseline configurations for macOS endpoints ensuring systems are hardened and secure by default

• Ensure all endpoints remain compliant with patching policies, minimum OS requirements, and approved software versions through automated enforcement

• Administer and maintain an internal approved application catalog including packaging, version control, testing and secure deployment

• Ensure endpoint detection and response (EDR) tooling is properly deployed, configured and monitored (SentinalOne preferred)

• Implement and enforce appropriate data loss prevention (DLP) measures across endpoints to protect corporate data and intellectual property

• Develop compliance dashboards and reporting to track endpoint posture, remediation timelines and risk exposure

• Partner closely with Security Operations (SecOps) to investigate, contain, and remediate endpoint-related security incidents

• Participate in incident response activities including forensic coordination, containment actions and post-incident remediation

• Contribute to internal and external audits, ensuring endpoint controls meet SOC 2 and ISO 27001 requirements; prepare evidence and support auditor walkthroughs

• Own licensing strategy across administered platforms, ensuring appropriate license assignment, cost optimization, feature alignment, renewal management and utilization reporting

• Continuously evaluate new endpoint features, security capabilities, and OS updates

• Create and maintain technical documentation, configuration standards and operational runbooks

Required Skills & Experience

• 6+ years of experience in endpoint administration, device management, and enterprise IT operations in a cloud-first environment

• Hands-on expertise administering Iru/Kandji or comparable Apple-focused MDM solutions

• Understanding of MDM solutions for Microsoft Windows and Linux (Jump Cloud preferred)

• Strong understanding of CIS Level 1 controls and endpoint hardening principles

• Experience deploying and administering EDR solutions and coordinating with security teams on alert triage and remediation

• Experience managing OS patching strategies, update enforcement policies and compliance reporting

• Familiarity with DLP technologies and endpoint-based data protection controls

• Experience participating in compliance programs aligned to SOC 2 and ISO 27001 frameworks supporting audit evidence collection and control validation processes

• Strong troubleshooting skills with the ability to diagnose complex endpoint configuration and policy conflicts

• Clear documentation and communication skills with the ability to articulate technical risk and remediation strategies

Bonus Qualifications

• Active Replit user and passionate about making software creation more accessible

• Been part of a rapid growth SaaS startup

This is a full-time role that can be held from our Foster City, CA office. The role has an in-office requirement of Monday, Wednesday, and Friday.

Full-Time Employee Benefits Include:

💰 Competitive Salary & Equity

💹 401(k) Program with a 4% match

⚕️ Health, Dental, Vision and Life Insurance

🩼 Short Term and Long Term Disability

🚼 Paid Parental, Medical, Caregiver Leave

🚗 Commuter Benefits

📱 Monthly Wellness Stipend

🧑‍💻 Autonomous Work Environment

🖥 In Office Set-Up Reimbursement

🏝 Flexible Time Off (FTO) + Holidays

🚀 Quarterly Team Gatherings

☕ In Office Amenities

Want to learn more about what we are up to?

• Meet the Replit Agent

• Replit: Make an app for that

• Replit Blog

• Amjad TED Talk

Interviewing + Culture at Replit

• Operating Principles

• Reasons not to work at Replit

To achieve our mission of making programming more accessible around the world, we need our team to be representative of the world. We welcome your unique perspective and experiences in shaping this product. We encourage people from all kinds of backgrounds to apply, including and especially candidates from underrepresented and non-traditional backgrounds.