IT & Data Support Systems Administrator

The IT & Data Support Systems Administrator is a hands-on, full-scope IT role responsible for the day-to-day technology operations that keep FreeCast's workforce productive and secure. You will manage the complete lifecycle of employee technology-from provisioning hardware and configuring software during onboarding through access revocation and asset recovery at termination-while administering the SaaS, on-premises, and data services that the company depends on.

This role owns the administration of FreeCast's SaaS and service account portfolio, spanning development tooling, design platforms, marketing automation, video production, e-commerce, advertising, analytics, and security. You will be the single point of accountability for license management, credential security, vendor renewals, and access governance across these services.

Beyond SaaS administration, you will manage on-premises infrastructure, including the domain controller, NAS storage systems, Vantage media servers, security camera systems, physical access control (ACCESS Professional), and the UniFi network. You will own the internal IT service desk, the employee technology experience, and data support functions, including backup integrity, file storage governance, and account-level data access. Where cloud, DevOps, or infrastructure-as-code questions intersect with your work, you will coordinate with the Cloud & Network Operations and DevOps teams who own those domains.

The ideal candidate is a resourceful generalist who is equally comfortable imaging a workstation, troubleshooting a VPN configuration, rotating credentials for a large service-account portfolio, managing Google Workspace administration, and maintaining on-premises servers and storage. You will report to the EVP of Engineering.

What You'll Do:

• Employee Onboarding & Provisioning: Execute end-to-end onboarding workflows-provision Google Workspace accounts, configure Organizational Unit and group memberships, set up Jira, Confluence, Slack, GitHub, and role-appropriate SaaS tool access, deploy endpoint security agents (Huntress, Vipre), and deliver hardware kits to local and remote team members.
• Employee Offboarding & Termination: Execute termination workflows-revoke access across all systems (Google Workspace, Jira, Slack, GitHub, VPN, NordVPN/NordLayer, RemotePC, and all role-specific SaaS accounts), recover hardware assets, wipe devices, and document the process for compliance records.
• SaaS & Service Account Administration: Own the administration of 150+ SaaS accounts and service credentials across the organization, including development tools (GitHub, JetBrains, Cursor, Vercel, Netlify, Sanity, Checkly, Bugsnag), design platforms (Figma, Adobe Creative Cloud, Canva, Zeplin, Envato, Shutterstock, MotionArray), marketing and email tools (ActiveCampaigns, Brevo, HubSpot, Iterable, Beefree, Semrush, Metricool, Apollo.io), video and media production (JWPlayer, THEOplayer, BuyDRM, Amagi, ElevenLabs, Runway, TopazLabs, Epidemic Sound, CapCut, Celtx, SingularLive), analytics and observability (Datadog, Segment, Mixpanel, Google Analytics, Hotjar, Smartlook, Explore Analytics, StatCounter, Fathom.ai), and e-commerce and advertising platforms (Shopify, Publica, SpringServe, Yahoo DSP, MNTN, CJ, FlexOffers, Tapfiliate, Affirm, Affluent).
• Hardware Lifecycle Management: Manage the full lifecycle of employee hardware-from procurement (Dell, Lenovo, Apple, Asus, and Newegg/Back Market) through imaging, configuration, inventory tracking, warranty claims, maintenance, and decommissioning across workstation tiers.
• On-Premises Infrastructure: Maintain and support on-premises systems, including the Windows Domain Controller, Vantage media transcoding server, security camera system, NAS storage (CigarScorpion NAS, Programming NAS, Server NAS), the Synology account, Elephant Drive backup, iDRAC remote server management, and ACCESS Professional door control.
• Network Administration: Manage office and remote network infrastructure, including UniFi network (access points, switches, routing), VPN services (NordVPN, NordLayer, ExpressVPN), firewall rules, and telecommunications (Zoom, Yeahlink phones, Boost Mobile).
• Security & Endpoint Protection: Administer endpoint security platforms including Huntress (agent deployment, threat monitoring, incident response), Vipre email security, Kaseya/NinjaOne endpoint management, and Datto backup. Enforce disk encryption, OS patching, MFA policies, and device compliance across company-owned and BYOD equipment.
• Credential & Secret Management: Maintain secure credential storage and rotation practices across all service accounts. Manage master credentials, recovery codes, and admin passwords with appropriate vault practices. Coordinate credential handoffs during personnel changes.
• Data Support & Backup: Own backup integrity, restoration testing, and data lifecycle for company file shares, NAS volumes, Datto backups, Elephant Drive, and Google/Microsoft cloud storage. Support data access requests, retention policies, and account-level data exports/imports across SaaS platforms.
• Developer & App Store Accounts: Administer developer and marketplace accounts, including Apple Business Manager, Apple Store Connect, Amazon Developer, Samsung Seller Office, LG Seller Office, Roku, and Google/YouTube developer credentials.
• Microsoft & Productivity Administration: Manage Microsoft 365 Admin, Microsoft business accounts, RemotePC, TeamViewer, Clockify, Time Doctor, Tmetric, Hubstaff, and other productivity and time-tracking tools.
• Shipping & Procurement: Manage shipping accounts (UPS, Stamps, ShippingEasy) and procurement relationships (Amazon Business, Dell, Lenovo, Newegg, Back Market, Walmart) for hardware and supply orders.
• Identity Platform Support: Support the phased rollout of Keycloak as the centralized identity provider, including user provisioning automation, Google Workspace federation, and SSO configuration for internal tools.
• IT Service Desk: Operate the internal IT service desk-triage and resolve hardware, software, network, and access issues via Slack and ticketing systems, while maintaining SLA response targets.
• Documentation: Maintain IT procedures, runbooks, service inventories, and asset registers in Confluence, ensuring knowledge continuity and accessibility across the engineering organization.

Do you have experience in Vendor relationship building?, * Experience with AWS and/or GCP cloud services, including IAM, basic networking concepts (VPCs, security groups), and the ability to navigate the console to investigate access or billing issues. Cloud operations are owned by the DevOps team; familiarity is a plus, not a daily focus.

• Exposure to DevOps practices, infrastructure-as-code tools (Terraform), and CI/CD pipelines (GitHub Actions) in a supporting capacity.
• Familiarity with identity and access management platforms such as Keycloak, Okta, or Azure AD/Entra ID, including SSO and SCIM provisioning.
• Knowledge of Docker containers and container orchestration concepts (ECS, Kubernetes) sufficient to support developer environments.
• Experience managing app store developer accounts (Apple, Google, Amazon, Samsung, LG, Roku) and navigating platform submission and compliance processes.
• Familiarity with video transcoding and media server infrastructure (Telestream Vantage, Amagi, or similar).
• Experience with MDM solutions for managing distributed endpoint fleets.
• Familiarity with security compliance frameworks (SOC 2, ISO 27001) and experience participating in audit preparation.
• CompTIA A+, Network+, Security+, AWS Cloud Practitioner, or Google Cloud Associate certification.

** This is an On-Site position (Not Remote) and candidate must be able to commute to the Orlando HQ Office on a Monday through Friday 8:30 AM to 5:00 PM schedule.

Job Type: Full-time, * Experience with on-premises server administration, including Windows Server (Active Directory / Domain Controller), NAS storage, and remote management (iDRAC or similar).

• Familiarity with networking fundamentals: TCP/IP, DNS, DHCP, VPN, Wi-Fi (UniFi or similar), and firewall configuration.
• Strong working knowledge of Google Workspace administration: user provisioning, Organizational Units, Groups, security policies, and mobile device management.

Experience:

• IT support within a technology company: 5 years (Required)

Pulled from the full job description

• Professional development assistance
• Health insurance
• Paid time off
• Employee discount
• Vision insurance
• Dental insurance, * Dental insurance
• Health insurance
• Paid time off
• Professional development assistance
• Vision insurance

Pay: From $58,000.00 per year, * Dental insurance

• Employee discount
• Health insurance
• Paid time off
• Professional development assistance
• Vision insurance

FreeCast is an Orlando-based media and technology company building a unified, platform-agnostic streaming ecosystem. Having invested over $50 million in platform development, we offer turnkey infrastructure that enables partners across telecommunications, broadcasting, retail, and advertising to launch, operate, and monetize streaming services without building their own technology stack. Our product suite spans multiple web applications, a custom video player, e-commerce, content management, and an advertising platform-all running as a modern TypeScript monorepo deployed on Vercel and AWS. As FreeCast scales its engineering organization, onboards new broadcast and carrier partners, and accelerates hiring across multiple teams, reliable IT operations are foundational to every business function. This role manages a portfolio of 150+ SaaS accounts, on-premises infrastructure, employee endpoints, and vendor relationships, all of which keep the entire company productive and secure.