Job Description
Replit is the agentic software creation platform that enables anyone to build applications using natural language. With millions of users worldwide and over 500,000 business users, Replit is democratizing software development by removing traditional barriers to application creation.
About the role
We are seeking an IT Administrator - Endpoint Management to own the enterprise endpoint strategy with primary responsibility for administering Replitβs MDM platforms, enforcing secure baseline configurations aligned to CIS Level 1 benchmarks and ensuring all corporate endpoints (primarily macOS) are properly patched, compliant, and securely configured. The successful candidate will manage the approved application catalog, enforces EDR and DLP controls, develops compliance reporting and partners closely with SecOps on incident response and remediation. Additionally, the administrator will support audit readiness for SOC 2 and ISO 27001, balance security guardrails with developer productivity in an engineering environments and drive continuous improvement through automation, policy standardization and proactive endpoint risk management.
What You’ll Do
Own and administer enterprise endpoint management platforms with primary responsibility for Iru/Kandji configuration, policy design, and lifecycle management
Establish and enforce enterprise endpoint standards aligned to CIS Level 1 benchmarks
Design, implement, and maintain secure baseline configurations for macOS endpoints ensuring systems are hardened and secure by default
Ensure all endpoints remain compliant with patching policies, minimum OS requirements, and approved software versions through automated enforcement
Administer and maintain an internal approved application catalog including packaging, version control, testing and secure deployment
Ensure endpoint detection and response (EDR) tooling is properly deployed, configured and monitored (SentinalOne preferred)
Implement and enforce appropriate data loss prevention (DLP) measures across endpoints to protect corporate data and intellectual property
Develop compliance dashboards and reporting to track endpoint posture, remediation timelines and risk exposure
Partner closely with Security Operations (SecOps) to investigate, contain, and remediate endpoint-related security incidents
Participate in incident response activities including forensic coordination, containment actions and post-incident remediation
Contribute to internal and external audits, ensuring endpoint controls meet SOC 2 and ISO 27001 requirements; prepare evidence and support auditor walkthroughs
Own licensing strategy across administered platforms, ensuring appropriate license assignment, cost optimization, feature alignment, renewal management and utilization reporting
Continuously evaluate new endpoint features, security capabilities, and OS updates
Create and maintain technical documentation, configuration standards and operational runbooks
Required Skills & Experience
6+ years of experience in endpoint administration, device management, and enterprise IT operations in a cloud-first environment
Hands-on expertise administering Iru/Kandji or comparable Apple-focused MDM solutions
Understanding of MDM solutions for Microsoft Windows and Linux (Jump Cloud preferred)
Strong understanding of CIS Level 1 controls and endpoint hardening principles
Experience deploying and administering EDR solutions and coordinating with security teams on alert triage and remediation
Experience managing OS patching strategies, update enforcement policies and compliance reporting
Familiarity with DLP technologies and endpoint-based data protection controls
Experience participating in compliance programs aligned to SOC 2 and ISO 27001 frameworks supporting audit evidence collection and control validation processes
Strong troubleshooting skills with the ability to diagnose complex endpoint configuration and policy conflicts
Clear documentation and communication skills with the ability to articulate technical risk and remediation strategies
Bonus Qualifications
Active Replit user and passionate about making software creation more accessible
Been part of a rapid growth SaaS startup
This is a full-time role that can be held from our Foster City, CA office. The role has an in-office requirement of Monday, Wednesday, and Friday.
Full-Time Employee Benefits Include:
π° Competitive Salary & Equity
πΉ 401(k) Program with a 4% match
βοΈ Health, Dental, Vision and Life Insurance
π©Ό Short Term and Long Term Disability
πΌ Paid Parental, Medical, Caregiver Leave
π Commuter Benefits
π± Monthly Wellness Stipend
π§βπ» Autonomous Work Environment
π₯ In Office Set-Up Reimbursement
π Flexible Time Off (FTO) + Holidays
π Quarterly Team Gatherings
β In Office Amenities
Want to learn more about what we are up to?
Meet the Replit Agent
Replit: Make an app for that
Replit Blog
Amjad TED Talk
Interviewing + Culture at Replit
Operating Principles
Reasons not to work at Replit
To achieve our mission of making programming more accessible around the world, we need our team to be representative of the world. We welcome your unique perspective and experiences in shaping this product. We encourage people from all kinds of backgrounds to apply, including and especially candidates from underrepresented and non-traditional backgrounds.
