Lead IT Engineer

We are an AI + physical sciences lab building state of the art models to make novel scientific discoveries. We are well funded and growing rapidly. Team members are owners who identity and solve problems without boundaries or bureaucracy. We eagerly learn new tools and new science to push forward our mission.

You will lead, design, build, and operate Periodic Labs' internal IT systems and workflows. You will own workforce identity, endpoint lifecycle, SaaS administration, office and lab networking, and the day-to-day IT systems and workflows that keep the company productive.

You will write automation, integrate systems, and set a high bar for reliability, usability, and operational discipline. You will work closely with research, infra, lab, and operations teams to make our environments fast, well-run, and easy to support as the company scales.

• Own workforce identity and access operations, including SSO, MFA, group management, onboarding, offboarding, and lifecycle automation

• Own the end-to-end lifecycle for company endpoints across macOS, Windows, and Linux, including procurement, zero-touch provisioning, MDM, inventory, configuration baselines, repair and replacement, and secure deprovisioning

• Operate the core security controls on company devices, including EDR, full-disk encryption, host firewall baselines, app controls, and extension approvals

• Administer core internal systems such as Google Workspace, Slack, GitHub, and other business-critical SaaS tools, with clear group design and sensible permission boundaries

• Build automation and self-service workflows for common IT tasks so employees can get what they need quickly without manual ticket routing

• Own the employee onboarding and offboarding experience, including account setup, device readiness, access coordination, and operational hygiene

• Run office, lab, and remote connectivity, including Wi-Fi, VPN or Tailscale, conference rooms, printers, and lab-adjacent device connectivity

• Partner with lab and infra teams on network topology that supports physical devices and critical internal systems while remaining reliable and easy to operate

• Build documentation, playbooks, and operating rhythms that make internal IT support fast, consistent, and trusted across the company

• Identity and SSO platforms such as Okta or Entra, including SAML, OIDC, SCIM, RBAC, and lifecycle automation

• End-to-end endpoint management at scale across macOS, Windows, and Linux

• MDM and device management tooling such as Jamf, Intune, Kandji, or similar systems

• Running endpoint security controls including EDR, disk encryption, patching, device compliance baselines, and app policy enforcement

• Administering Google Workspace, Slack, GitHub, and other core internal SaaS systems with strong directory hygiene and low permissions sprawl

• Gitops, infrastructure as code (IaC), and automation with Python, Bash, Terraform, or similar tools

• Experience with coding agents such as codex and Claude Code

• Operating office and lab networks, remote access systems, and device connectivity in environments that mix software, hardware, and physical operations

• Strong judgment about standardization versus flexibility, and a habit of building systems that are easy for other people to use and support

• Clear communication and the ability to work directly with researchers, operators, and engineers of all levels