The IT Engineer at Etched ensures seamless IT operations across a high-performance engineering environment, enabling teams to innovate without barriers. This role supports ASIC design, software engineering, and operations teams with infrastructure, automation, and security, while driving operational excellence and compliance.
What You'll Do
- Provide hands-on IT delivery and support for the entire firm, including ASIC design teams, software and platform engineering, business operations, and scale-out computing teams.
- Lead onboarding and offboarding processes to ensure seamless access aligned with engineering and leadership workflows.
- Maintain robust documentation of IT assets, systems, access protocols, and ticket workflows.
- Manage on-site and remote laptops, desktops, and networking equipment with attention to ease of use, security, and remote manageability.
- Deploy and administer MDM and MAM solutions for Mac and Windows devices.
- Implement and maintain antivirus, antimalware, Endpoint Detection & Response (EDR), and Extended Detection & Response (XDR).
- Drive hardware procurement, staging, imaging, and maintenance for development and operations teams.
- Implement and administer Single Sign-On (SSO) across core services, ensuring secure and frictionless user authentication.
- Automate user provisioning and deprovisioning workflows using Rippling, Okta, Google Workspace, and FreeIPA to streamline access management and reduce errors.
- Enforce role-based access controls and audit trails to align with compliance and security standards.
- Design, deploy, and maintain wired and wireless networks, including Wi-Fi access points (WAPs) and controller administration.
- Configure and manage VPN infrastructure to provide secure remote access for distributed teams.
- Administer firewalls, ensuring proper segmentation, policy enforcement, and protection of sensitive environments.
- Develop automation scripts (Python, Bash, PowerShell) to streamline provisioning, patching, monitoring, and user lifecycle management.
- Integrate monitoring and alerting systems to reduce manual workload and increase reliability.
- Champion a culture of operational excellence, ensuring IT systems meet compliance standards (e.g., SOC 2, ISO 27001).
- Coordinate with external vendors and partners to evaluate new products, support existing offerings, and to resolve IT issues.
- Partner closely with engineering, security, and operations teams to align IT strategy with business and technical goals.
- Managing a mixed-OS engineering environment (Linux for EDA tools, Windows/macOS for general use) — including imaging, patching, and security hardening.
- Designing and maintaining secure network infrastructure (VPNs, VLANs, firewalls, access control) to protect sensitive chip design IP.
- Implementing and managing endpoint/device lifecycle systems (procurement, setup, MDM, retirement) for engineering and operations teams.
- Deploying and integrating compute resources (on-prem servers and cloud environments) to support large-scale simulations and hardware workflows.
- Building scalable onboarding/offboarding and IT automation workflows to ensure fast, secure ramp-up for new engineers and smooth transitions.
What We're Looking For
- 5-7+ years in an IT support or engineering role with experience across macOS, Windows and Linux
- Excellent problem-solving skills, with a proactive and ownership-driven mindset.
- Experience working in a fast-paced startup environment.
- Proven experience with endpoint management tools (e.g., Jump,Cloud, Jamf, Intune, Kandji).
- Hands-on expertise in enterprise VPNs, wireless networking, and zero-trust access models.
- Strong background in EDR/XDR platforms (e.g., ThreadDown, CrowdStrike, SentinelOne).
- Scripting and automation proficiency (Python, Bash, PowerShell).
- Knowledge of security best practices, incident response, and identity/access management (IAM).
- Strong networking expertise, including configuring and troubleshooting TCP/IP, DNS, DHCP, VLANs, and firewalls.
Nice to Have
- Exposure to cloud platforms (AWS, Azure, GCP) or a developer-oriented compute infrastructure is a plus.
- Okta experience a bonus
Technical Stack
MacOS, Windows, Linux, MDM, MAM, Jump,Cloud, Jamf, Intune, Kandji, Rippling, Okta, Google Workspace, FreeIPA, SSO, EDR, XDR, CrowdStrike, SentinelOne, ThreadDown, Python, Bash, PowerShell, VPN, VLAN, Firewalls, Wi-Fi access points (WAPs), TCP/IP, DNS, DHCP, AWS, Azure, GCP
Team & Environment
Fully in-person team with no boundaries between engineering and research; technical staff contribute to both as needed. Believes in the Bitter Lesson — progress in AI comes from using more FLOPs via model-specific hardware. All technical staff expected to contribute to both engineering and research. Greatly values engineering skills. Champions operational excellence and innovation.
Benefits & Compensation
- Medical, dental, and vision packages with generous premium coverage
- $500 per month credit for waiving medical benefits
- $2k per month housing subsidy for those living within walking distance of the office
- Relocation support for those moving to San Jose (Santana Row)
- Various wellness benefits covering fitness, mental health, and more
- Daily lunch + dinner in our office
Work Mode
Onsite at San Jose (Santana Row). Fully in-person team.
Etched is an equal opportunity employer. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
