IT Manager

Role Summary

Manage endpoint security, vulnerability management, SIEM monitoring, identity and access administration, DNS/email security, secure remote access, and overall IT operations across Windows, Mac, and selected Linux systems for the WinePOS organization.

• Build the IT foundation by implementing formal onboarding/offboarding processes, managing an IT help desk and ticketing system, maintaining an asset‑management platform, and deploying a mobile‑device‑management (MDM) solution across all endpoints.
• Maintain IT policies and documentation covering security, access management, acceptable use, and incident response; perform periodic access reviews to ensure proper permissions.
• Manage the office LAN, firewall, switches, and internet connectivity; evaluate, upgrade, and deploy necessary network equipment.
• Deploy and manage endpoint security software across all company devices, enforce disk encryption, monitor patching and OS updates, manage DNS and email security configurations.
• Monitor Rapid7 SIEM for security events and respond to alerts; enforce MFA and least‑privilege controls; manage privileged access with segregated administrative accounts; conduct periodic vulnerability assessments and remediate findings.
• Maintain an incident response plan, disaster‑recovery plan, and run annual tabletop exercises; conduct regular internal security audits.
• Coordinate with engineering on server‑side security items (agent deployment, hardening, log ingestion); manage core business systems, collaboration suites, and remote‑access systems.
• Administer password‑manager vaults, secure remote access, and physical office access control (electronic access system). Ensure timely provisioning/deprovisioning tied to employee lifecycle events.
• Oversee backup strategy: encrypted backups, regular restoration testing.
• Provide technical support to approximately 30 employees on Windows and Mac; assist in‑office and remote staff equally; troubleshoot hardware, software, network, and connectivity issues; set up new employee workstations and laptops.

• 3+ years of experience in IT systems administration or a hands‑on IT role.
• Experience administering Windows and macOS endpoints in a business environment.
• Experience with Google Workspace administration (user management, security settings, OU structure).
• Hands‑on network administration (firewalls, switches, VPN configuration).
• Experience deploying and managing endpoint security tools (EDR/antivirus, vulnerability scanners).
• Understanding of identity and access management principles (least privilege, MFA, SSO, access reviews).
• Comfortable working in Linux environments (Debian/Ubuntu) for agent deployment, log review, and basic troubleshooting.
• Familiarity with MDM/endpoint management platforms.
• Strong troubleshooting skills across hardware, software, and networking.
• Ability to communicate technical concepts to non‑technical users with patience.
• Self‑directed, capable of prioritizing and managing multiple concurrent projects independently.

• Experience with enterprise EDR, vulnerability management, and SIEM tooling.
• Experience writing and implementing IT security policies and procedures.
• Experience with IT compliance audits (ITGC, SOC2, or similar).
• Experience with endpoint management platforms and cloud platforms.
• Experience implementing physical access control systems (key card/fob or biometric).
• Experience building IT operations from scratch in a small company environment.
• Relevant certifications (CompTIA Security+, CISSP, or similar) are a plus but not required.

• 30‑day:
  Solid understanding of the environment, critical security gaps addressed, onboarding/offboarding process in place.
• 90‑day: MDM deployed, ticketing system operational, security tooling fully deployed across all endpoints, access reviews established.
• 6‑month:
  All IT policies documented and in practice, backup strategy modernized, incident response and disaster‑recovery plans current and tested.
• 12‑month:
  Mature, well‑documented IT operations; clean compliance posture; proactive security monitoring; employees supported efficiently regardless of technical skill level.

Jonas Software is an Equal Opportunity Employer. If you need accommodation for a disability at any stage of the application process or want more information on our accommodation policies, contact recruitment at  or 905‑470‑4600.