About Fundamental

Fundamental is an AI company pioneering the future of enterprise decision-making. Founded by DeepMind alumni, Fundamental has developed NEXUS – the world's most powerful Large Tabular Model (LTM) – purpose-built for the structured records that actually drive enterprise decisions. Backed by world class investors and trusted by Fortune 100 companies, Fundamental unlocks trillions of dollars of value by giving businesses the Power to Predict.

At Fundamental, you'll work on unprecedented technical challenges in foundation model development and build technology that transforms how the world's largest companies make decisions. This is your opportunity to be part of a category-defining company from the ground-up. Join the team defining the future of enterprise AI.

About the role

We're looking for a hands-on IT Engineer who thinks in scripts. You'll own the full lifecycle of our internal IT infrastructure, from identity and access management to endpoint security to compliance certifications, you'll be building automated, scalable systems that keep a fast-growing AI company secure, compliant, and running smoothly.

You'll work closely with DevOps, Security, and Engineering leadership to ensure our IT backbone matches the rigor of our enterprise-grade platform.

Key responsibilities

• Own IAM provisioning and lifecycle across Okta, Rippling, Google Workspace, and other tools, including automated onboarding/offboarding, SSO, SCIM, MFA, and periodic access reviews

• Configure and maintain MDM for macOS and Windows fleet, enforcing disk encryption, patching, firewall policies, and device compliance baselines

• Automate IT workflows using Python, Bash, or PowerShell; build integrations between systems via APIs, develop self-service tooling, and reduce manual toil

• Support SOC 2 Type II and ISO 27001 certification processes, including evidence collection, control implementation, policy enforcement, and audit readiness

• Manage vulnerability scanning, patching schedules, and incident response procedures for corporate endpoints

• Maintain compliance documentation and respond to customer security questionnaires

• Administer SaaS applications, including licensing, configurations, integrations, and user management

• Manage corporate network infrastructure including VPN, DNS, and office IT setup

• Own hardware lifecycle management, including procurement, provisioning, inventory tracking, repairs, and offboarding collection for all employee devices

Must have

• 4+ years of experience in IT engineering, systems administration, or a similar hands-on IT role

• Strong scripting skills in Python and/or Bash, with a track record of automating IT workflows

• Hands-on experience with Okta (or similar IdP), including SSO configuration, SCIM provisioning, and lifecycle management

• Experience with HRIS-integrated identity management (Rippling, BambooHR, or similar)

• Experience configuring and managing MDM platforms (Jamf, Kandji, Intune, or similar)

• Solid understanding of SOC 2 and/or ISO 27001 frameworks; you've been through at least one audit cycle

• Experience managing Google Workspace and/or Microsoft 365 admin environments

• Strong understanding of networking fundamentals (DNS, DHCP, VPN, firewalls)

• Comfortable working with APIs and building integrations between SaaS tools

Nice to have

• Experience with AWS IAM, Organizations, and SSO (IAM Identity Center)

• Familiarity with Terraform or infrastructure as code for IT resource management

• Experience with Datadog, Splunk, or similar for IT monitoring and logging

• Background in a fast-paced startup or scale-up environment

• Exposure to GRC platforms (Vanta, Drata, or similar) for compliance automation

• ITIL, CompTIA Security+, or similar certifications

• Experience supporting engineering-heavy organizations with developer-centric tooling

Benefits

• Competitive compensation with salary and equity

• Comprehensive health coverage, including medical, dental, vision, and 401K

• Fertility support, as well as paid parental leave for all new parents, inclusive of adoptive and surrogate journeys

• Relocation support for employees moving to join the team in one of our office locations

• A mission-driven, low-ego culture that values diversity of thought, ownership, and bias toward action