beehiiv is the all-in-one newsletter and creator platform powering the next generation of media companies and independent voices. We help creators and businesses launch, grow, and monetize newsletters—now serving tens of thousands of publishers and reaching hundreds of millions of readers monthly. As we approach $25M in ARR and continue to grow more than 100% YoY, our expanded product suite (featuring our ad network, website builder, and paid tiers) positions us for the next stage of hypergrowth.

We are building the ultimate ecosystem for creators. Colony Defense is our dedicated security team, and our mission is simple: protect the hive. We aren't your typical IT department; we sit within the Security org to ensure that every laptop, login, and application access point is as secure as it is seamless.

We are looking for a mid-level IT System Administrator & IAM Specialist who thrives in a fast-paced, remote-first environment and views IT through a security-first lens. This isn't just about resetting passwords. You will be a key guardian of our corporate identity and infrastructure. You’ll balance traditional IT helpdesk support with deep-tier management of our Enterprise Security stack—specifically, Okta, Google Workspace, and our MDM (Kandji/Iru). When you aren’t working on those things, you will be architecting and improving the organization's foundational IT processes.

Because we are a global, 100% remote company, this role requires flexibility. While we value work-life balance, this is not a strict 9-5; you will be on call to support our worldwide workforce and respond to urgent security or access issues.

Ideally, you’ll have:

• Experience architecting end-to-end within Kandji/Iru, Okta, and Google Workspace — ideally in a high-growth or startup environment.
• Prior experience building an IT function or infrastructure at an early-stage or scaling company.
• Direct experience supporting Senior Leadership and handling the discretion that comes with it.
• Familiarity with Okta integrations and lifecycle management workflows.
• A background in Information Security that extends beyond traditional IT support.

Technical Skills & Qualifications

• Operating Systems: High proficiency in macOS is a must. Solid experience with Windows (10/11) and familiarity with Linux.
• IAM & Cloud Mastery: Deep working knowledge of Okta and Google Workspace.
• MDM Experience: Proven experience managing mobile devices via an MDM (Kandji preferred).
• Networking & Infrastructure: Understanding of DNS, DHCP, IP addressing, and troubleshooting connectivity in a remote home-office context.
• Security Foundations: Experience with malware removal, device encryption, and familiarity with compliance frameworks like SOC 2.
• Process / Program Creation: Experience not only with following processes and procedures, but creating them when needed.
• Ticketing & Ops: Experience using ITSM platforms to manage and prioritize requests.
• Scripting/Automation: Proficiency with scripting languages and automation.

Soft Skills

• Communication: You can explain complex security requirements to a non-technical creator or a busy executive without the jargon.
• The "colony" Mindset: Patience and empathy are non-negotiable. You handle frustrated users with calm professionalism.
• Extreme Prioritization: The ability to juggle a Slack DM, a high-priority ticket, and a security alert without breaking a sweat.
  

What you’ll be responsible for:

• Infrastructure Architecture & Build-Out:
  • Design and implement beehiiv's corporate IT infrastructure from its current state to an enterprise-ready foundation — including network architecture, tooling selection, and systems integration.
  • Establish and document IT standards, policies, and procedures where none currently exist, creating a repeatable and auditable framework as the company scales.
  • Evaluate, procure, and deploy new tools and platforms that align with our security posture and operational needs.
  • Build automated provisioning and de-provisioning workflows that reduce manual overhead and human error as headcount grows.
  • Own the IT roadmap: identify gaps, propose solutions, and drive implementation with minimal hand-holding.
    Identity & Access Management (IAM)
  • Own the full lifecycle of employee identity — seamless onboarding/offboarding, group permissions management, and strict enforcement of MFA/SSO protocols in Okta.
  • Design and maintain role-based access control (RBAC) structures that scale with the organization without creating security debt.
• Fleet Management:
  • Manage a global fleet of company MacBooks (and some Windows/Linux machines) using Kandji, ensuring all devices are encrypted, patched, and compliant with our security policies.
  • Build out device lifecycle processes — from procurement and zero-touch enrollment to decommissioning — as the fleet grows internationally.
    Cloud Suite Administration
  • Act as the primary admin for Google Workspace, managing everything from email routing and shared drives to security auditing and tenant-level configuration.
  • Harden the Google Workspace environment with policies, DLP rules, and audit logging that meet or exceed compliance requirements.
• Security-First Support:
  • Handle escalated IT helpdesk tasks — tech support, hardware troubleshooting, application access — with an eye for detecting social engineering or phishing attempts.
  • Serve as a security-minded partner to the business, not just a break-fix resource.
• Incident Response:
  • Assist in hunting down corporate phishing attempts, performing malware removal, and implementing security protocols to keep our remote perimeter safe.
  • Contribute to incident post-mortems and translate findings into process or tooling improvements.
• Cross-Functional Collaboration:
  • Partner with HR (BambooHR) and Engineering to automate provisioning workflows and integrate IT systems into the broader operational stack.
  • Work closely with Finance and Legal on software procurement, asset tracking, and compliance documentation

Why this role might be for you:

• Strategic operator with hands-on executional chops.
• Eager to join a high-growth startup where security isn't an afterthought, it's the foundation.
  
• Obsessed with customer outcomes and accelerating company growth.
• Clear and concise communicator, and can effectively develop cohesive data-driven narratives verbally and in written form.
  
  

Why this role might not be for you:

• Not a traditional 9-to-5 position.
• Need to manage multiple priorities and stakeholders.
• Must be comfortable with rapid iteration and frequent context switching.
• High expectations for both speed and quality.

Why beehiiv?

• Bias towards action: Our first impulse is to act. We don’t get bogged down in unnecessary processes or bullsh**t. Perfection is the enemy of progress.
• Ownership mentality: This company is ours. We go the extra mile because that’s what owners do. Every day, people step up to take on tasks outside of their responsibilities and do whatever it takes for us to succeed.
• Building is in our DNA:
  We are obsessed with improving every aspect of our platform (and ourselves). Whether it’s our product, support, or partnerships, we never stop working to improve it.
• We answer to our users: Nothing matters more than serving our users. If our users fail, we fail.
• Ego comes second, but winning comes first: We put our egos aside to work collaboratively and build something special. It doesn't matter who's idea or who's vision, we're here to create the best outcome. We're here to win.

We'll take care of you:

• Competitive Salary
• Stock Options
• Health, Dental, and Vision Insurance
• 401(k) Employer Match
• Unlimited PTO (mandatory 10 days per year minimum)
• Annual In-person team Retreat
• Unlimited Book Budget
• Monthly Wellness Days (every third Friday of the month)