Senior IT Systems Engineer

ABOUT ABRIDGE Abridge was founded in 2018 with the mission of powering deeper understanding in healthcare. Our AI-powered platform was purpose-built for medical conversations, improving clinical documentation efficiencies while enabling clinicians to focus on what matters most—their patients. Our enterprise-grade technology transforms patient-clinician conversations into structured clinical notes in real-time, with deep EMR integrations. Powered by Linked Evidence and our purpose-built, auditable AI, we are the only company that maps AI-generated summaries to ground truth, helping providers quickly trust and verify the output. As pioneers in generative AI for healthcare, we are setting the industry standards for the responsible deployment of AI across health systems. We are a growing team of practicing MDs, AI scientists, PhDs, creatives, technologists, and engineers working together to empower people and make care make more sense. We have offices located in the Mission District in San Francisco, the SoHo neighborhood of New York, and East Liberty in Pittsburgh. THE ROLE As a Senior IT Systems Engineer, you will own the design, deployment, and operational reliability of Abridge's corporate infrastructure and endpoint ecosystem. This includes managing and hardening the device fleet, maintaining cloud and network infrastructure, and ensuring that all systems meet the rigorous configuration and compliance standards required of a healthcare AI company operating under SOC 2 and HIPAA frameworks. You will work closely with the Security team, IT leadership, and cross-functional stakeholders to maintain a resilient, scalable, and audit-ready infrastructure posture. WHAT YOU’LL DO - Endpoint Management: Own the full lifecycle of corporate endpoints, macOS, iOS, and Linux, including imaging, configuration management, patch enforcement, and compliance remediation using MDM platforms (JAMF, Fleet, or equivalent). - Infrastructure Operations: Manage and maintain cloud infrastructure components (GCP, AWS, and/or Azure) supporting corporate IT, including identity federation, network segmentation, and access controls. - Security & Compliance Hardening: Implement and enforce CIS benchmarks, endpoint security baselines, and configuration standards aligned with SOC 2 Trust Service Criteria and HIPAA technical safeguards. - Identity & Access Management: Administer and maintain SSO, MFA, and directory services (Okta, Google Workspace, or equivalent); support access provisioning and deprovisioning workflows. - Asset & Configuration Management: Maintain an accurate CMDB and asset inventory; enforce configuration-as-code practices where applicable. - Cross-functional Collaboration: Partner with Security, Engineering, and IT Automation peers to evaluate new tooling, respond to audit requests, and drive continuous improvement of the infrastructure posture. WHAT YOU’LL BRING - Experience: 5–8 years in IT Systems Engineering, Corporate Infrastructure, or a closely related discipline within an enterprise environment. - Endpoint Expertise: Deep hands-on experience managing macOS fleets at scale using MDM platforms; iOS and Linux experience a plus. - Cloud Infrastructure: Working knowledge of at least one major cloud platform (GCP, AWS, or Azure) in a corporate IT context, IAM, networking, logging, and access controls. - Identity & Access Management: Strong understanding of SSO (SAML/OIDC), MFA enforcement, SCIM provisioning, and directory services administration. - Security & Compliance: Practical experience implementing technical controls aligned to SOC 2, HIPAA, or equivalent frameworks; familiarity with audit evidence collection. - Scripting & Automation: Proficiency in Bash, Python, or equivalent scripting for system administration and operational automation tasks. - Problem Solving: Ability to independently diagnose and resolve complex infrastructure and endpoint issues in a fast-moving environment. BONUS POINTS IF… - Experience with Fleet for open-source device management and osquery-based visibility. - Familiarity with IaC tooling (Terraform) for infrastructure configuration management. - Exposure to SIEM platforms and endpoint detection and response (EDR) tooling. - Experience in healthcare or other regulated industries. WHY WORK AT ABRIDGE? At Abridge, we’re transforming healthcare delivery experiences with generative AI, enabling clinicians and patients to connect in deeper, more meaningful ways. Our mission is clear: to power deeper understanding in healthcare. We’re driving real, lasting change, with millions of medical conversations processed each month. Joining Abridge means stepping into a fast-paced, high-growth startup where your contributions truly make a difference. Our culture requires extreme ownership—every employee has the ability to (and is expected to) make an impact on our customers and our business. Beyond individual impact, you will have the opportunity to work alongside a team of curious, high-achieving people in a supportive environment where success is shared, growth is constant, and feedback fuels progress. At Abridge, it’s not just what we do—it’s how we do it. Every decision is rooted in empathy, always prioritizing the needs of clinicians and patients. We’re committed to supporting your growth, both professionally and personally. Whether it's flexible work hours, an inclusive culture, or ongoing learning opportunities, we are here to help you thrive and do the best work of your life. If you are ready to make a meaningful impact alongside passionate people who care deeply about what they do, Abridge is the place for you. HOW WE TAKE CARE OF ABRIDGERS: - Generous Time Off: 14 paid holidays, flexible PTO for salaried employees, and accrued time off for hourly employees - Comprehensive Health Plans: Medical, Dental, and Vision coverage for all full-time employees and their families. - Generous HSA Contribution: If you choose a High Deductible Health Plan, Abridge makes monthly contributions to your HSA. - Paid Parental Leave: Generous paid parental leave for all full-time employees. - Family Forming Benefits: Resources and financial support to help you build your family. - 401(k) Matching: Contribution matching to help invest in your future. - Personal Device Allowance: Tax free funds for personal device usage. - Pre-tax Benefits: Access to Flexible Spending Accounts (FSA) and Commuter Benefits. - Lifestyle Wallet: Monthly contributions for fitness, professional development, coworking, and more. - Mental Health Support: Dedicated access to therapy and coaching to help you reach your goals. - Sabbatical Leave: Paid Sabbatical Leave after 5 years of employment. - Compensation and Equity: Competitive compensation and equity grants for full time employees. - ... and much more! EQUAL OPPORTUNITY EMPLOYER Abridge is an equal opportunity employer and considers all qualified applicants equally without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, or disability. STAYING SAFE - PROTECT YOURSELF FROM RECRUITMENT FRAUD We are aware of individuals and entities fraudulently representing themselves as Abridge recruiters and/or hiring managers. Abridge will never ask for financial information or payment, or for personal information such as bank account number or social security number during the job application or interview process. Any emails from the Abridge recruiting team will come from an @abridge.com http://abridge.com email address. You can learn more about how to protect yourself from these types of fraud by referring to this article https://consumer.ftc.gov/consumer-alerts/2023/05/scammers-are-hijacking-job-ads-heres-how-spot-fakes. Please exercise caution and cease communications if something feels suspicious about your interactions.