BirchStreet Systems
Website:
birchstreetsystems.com
Job details:
The Opportunity
We're looking for a sharp, proactive IT Systems Engineer to own the technology experience for BirchStreet employees worldwide. This isn't a break-fix role — it's an engineering and ownership position. You'll manage our endpoint fleet, administer our cloud identity environment, drive security operations through industry-leading tools, and build automations that eliminate toil for the team.
You'll be hands-on across our full stack: Atlassian Jira, Jira Service Management (JSM), and Confluence for ITSM and documentation; CrowdStrike Falcon for endpoint security; Abnormal Security for email threat protection; Microsoft Intune for MDM; and Microsoft 365 / Entra ID for identity and cloud administration. PowerShell scripting and command-line automation are core to how we operate — and so is AI. We expect you to actively use tools like Microsoft Copilot, GitHub Copilot, and CrowdStrike's AI-powered threat intelligence to work smarter, move faster, and deliver more.
If you're someone who automates before you repeat, documents before you forget, and treat security as a shared responsibility — we want to meet you.
What You'll Do
Device & Endpoint Management
- Provision, configure, and decommission laptops (Windows 11 & macOS), printers, A/V equipment, and peripherals using Microsoft Intune
- Maintain hardware asset inventory and lifecycle records in Jira asset management
- Enforce endpoint security policies, patching, and encryption across all managed devices
End-User Support
- Deliver Tier 1–2 hardware and software support across Windows 11 and macOS environments
- Troubleshoot Microsoft 365 apps (Word, Excel, PowerPoint, Teams, Visio) and other core business applications
- Manage and resolve tickets in Jira Service Management, maintaining SLAs and a robust knowledge base in Confluence
- Support employees in getting the most from AI-powered productivity tools including Microsoft Copilot, Cursor, and integrated AI assistants within enterprise applications
- Identify and implement automation for repetitive support tasks using PowerShell scripts, Power Automate flows, or chatbot-driven solutions
Identity & Cloud Administration
- Administer Microsoft 365 and Entra ID (formerly Azure AD): user lifecycle management, licensing, group policies, and conditional access
- Support SSO/SAML integrations and enforce MFA across the environment
- Manage on-premises Active Directory in hybrid environments, including OU management and account provisioning
- Monitor identity and access alerts surfaced by Microsoft 365 Defender and Entra ID Protection; investigate and escalate anomalies
Security & Compliance
- Manage CrowdStrike Falcon for endpoint detection and response: monitor alerts, run investigations, and execute action detections in line with escalation procedures
- Administer Abnormal Security for email threat protection: review quarantined messages, tune policies, and respond to reported phishing
- Apply endpoint security baselines, encryption (BitLocker / FileVault), and policy enforcement across all managed devices
- Leverage AI-driven threat detection and auto-remediation insights to support faster incident triage and response
- Document and escalate security incidents in accordance with company policy
Communications & Networking
- Manage Cisco network devices — Switches (9200, 9300), Access Points (9120), and Firewalls (1150)
- Configure and troubleshoot VoIP/SIP-based phone and collaboration systems
- Support wireless networking infrastructure and resolve connectivity issues (Wi-Fi, VPN, DNS, DHCP)
Documentation & On-Call
- Maintain configurations, runbooks, and incident resolutions in Confluence and Jira Service Management
- Participate in on-call rotation for after-hours critical support
What You Bring
Required
- 3+ years of experience in an IT Support Engineer, Systems Administrator, or Corporate IT role
- Proficiency supporting both Windows 11 and macOS in an enterprise environment
- Hands-on administration of Microsoft 365 and Entra ID / Active Directory (user lifecycle, licensing, group policies, conditional access)
- Practical experience with Microsoft Intune for Windows and macOS endpoint management
- Day-to-day experience with Jira and Jira Service Management (ticket queues, SLAs) and Confluence (knowledge base, documentation)
- Working knowledge of CrowdStrike Falcon: alert triage, investigation workflows, and policy management
- Working knowledge of Abnormal Security: policy configuration, quarantine review, and phishing response
- Proficiency in PowerShell scripting for automation — user provisioning, reporting, and endpoint management tasks
- Solid networking fundamentals: TCP/IP, DNS, DHCP, Wi-Fi, and VPN
- Hands-on experience using AI tools for productivity, such as Microsoft Copilot, GitHub Copilot, Atlassian Rovo, or equivalent AI-assisted tooling
- Strong written and verbal communication skills with a customer-first mindset
Nice to Have
- Experience with VoIP/SIP platforms such as Netfortris or Microsoft Teams Voice
- Relevant certifications: CompTIA A+, Network+, Microsoft MD-102, or SC-300
- Experience with Power Automate or Copilot Studio for workflow automation
- Familiarity with Azure Virtual Desktop (AVD) or similar VDI environments
- Exposure to SIEM tools or security alerting platforms
- Experience writing and maintaining IT runbooks, SOPs, or onboarding playbooks
Education
- A degree in IT, Computer Science, or a related field is a plus — but equivalent hands-on experience is equally valued
Why BirchStreet
- Work with a modern, well-funded tool stack — no fighting legacy systems with duct tape
- Real ownership: you'll have the autonomy to build, automate, and improve, not just maintain
- A collaborative, globally distributed team that values initiative and technical depth
- Competitive compensation, comprehensive benefits, and a culture that invests in your growth
Click on Apply to know more.