Systems Administrator

Microsoft 365 Platform Administration

• Administer Microsoft 365 for 400+ users, including licensing decisions (E3 / E5 add-ons, Audio Conferencing, Copilot pilots).
• Own SharePoint and Teams site structure across departments, including post-acquisition consolidation work
• Manage Microsoft Intune endpoint enrollment, configuration profiles, compliance policies, and Autopilot - currently a live multi-month project with weekly status calls.

Identity, Access, and Enterprise SSO/SCIM

• Own Microsoft Entra ID users, groups, conditional access, MFA, app registrations, role assignments, and admin account separation across the Reef tenant and partner tenants.
• Lead the SSO / SCIM provisioning program for the Reef SaaS portfolio.
• Maintain identity hygiene across acquisitions: account decommissioning, group restructuring, and Teams / SharePoint / Entra Groups true-ups during org changes.

Email Security, DMARC, and Anti-Phishing

• Own end-to-end DMARC, DKIM, and SPF posture across all active Reef-controlled domains.
• Administer Cloudflare PhishGuard (the firm's email-security gateway)
• Administer KnowBe4 (security awareness): SSO setup, campaign coordination, and quarterly console review with the KnowBe4 account team.

Domain, DNS, and Cloudflare

• Manage DNS for the full Reef domain portfolio in Cloudflare, including record changes for vendor onboarding (e.g., Meltwater), CNAME / TXT updates for SSO and SaaS integrations, and nameserver moves.
• Stand up Cloudflare Turnstile / WAF protections for properties

Endpoint and Device Management

• Run the Intune / MDM program for Windows endpoints in partnership with the helpdesk team
• Coordinate hardware handoffs during M&A and offboarding.

Vendor and License Management

• Serve as primary technical contact for all technical hardware and software vendors
• Manage licenses, contract renewals from a technical standpoint, and vendor escalations.

Backup, Recovery, and Data Protection

• Own SaaS backup posture for M365, HubSpot, Xero, and Autodesk Construction Cloud (ACC). Run proof-of-concept and product-selection cycles for new backup tooling.
• Validate restores and document recovery procedures.

Server, Virtual Machine, and Azure Infrastructure

• Administer Azure subscriptions: VM lifecycle, RBAC, cost management, network restrictions, and storage. Recent work includes VMs for ACC 360 Sync, Heroku Dataclips replacement, and various integration workloads.

Helpdesk Tier-2 / Tier-3 Escalation

• Serve as the senior technical escalation point for the helpdesk team
• Resolve complex tickets that span identity, mail flow, SaaS integrations, and licensing - including high-visibility tickets for executives and acquired-company users.

Scripting, Automation, and Integration

• Develop and maintain PowerShell (including Microsoft Graph and Exchange Online modules) and Python automation for routine administration, reporting, and lifecycle tasks.
• Build API-based integrations between Reef systems

Project Management and Documentation

• Lead IT projects end-to-end: scope, plan, execute, validate, and close out. Capture project plans and support documentation
• Translate business asks from Legal, HR, Finance, Development, and Hospitality into technical execution plans.

HR-IT, Onboarding, and Offboarding

• Coordinate welcome / onboarding email content with HR and Marketing.
• Manage IT-side offboarding: account disable, license reclaim, mailbox retention, OneDrive transfer, and group cleanup.

Do you have experience in Shell Scripting?, Do you have a Bachelor's degree?, Reef is seeking an experienced and highly motivated Systems Administrator to own the administration, security, and integration of the firm's enterprise technology stack while serving as the senior technical escalation point for a multi-property, multi-entity operating environment.

This is a hands-on, cross-functional role where the ideal candidate combines deep Microsoft 365 expertise with strong scripting fundamentals, a security-aware operating model, and the project-management discipline to ship initiatives across a fast-moving, multi-brand portfolio., * Bachelor's degree in Computer Science, Information Systems, or a related field, or equivalent demonstrated experience.

• 4-6 years of progressive systems administration experience, with at least 2 years owning Microsoft 365 / Entra ID at scale
• Hands-on expertise with Microsoft 365, Entra ID, Conditional Access, and Microsoft Intune.
• Demonstrated ownership of SSO / SCIM rollouts across a SaaS portfolio
• Working knowledge of DNS, DMARC, DKIM, SPF, and Cloudflare administration.
• Advanced PowerShell scripting (Microsoft Graph and Exchange Online modules) and intermediate-or-better Python.
• Strong project management discipline
• Excellent written and verbal communication; able to explain technical decisions to non-technical executives and external vendors.
• Security-aware operating model: minimum-privilege, separate admin accounts, evidence-based change.

Pulled from the full job description

• Health insurance
• 401(k) matching
• Paid time off
• Health savings account
• Cell phone reimbursement, * 401(k) Plan with Company Match
• Generous Health Plan with HSA Match
• Flexible Paid Time-off
• Daily Company Lunches
• Cell Phone Service Allowance
• Discounts at Company-owned Resorts and Golf Courses

Reef Capital is a Utah-based vertically integrated investment and development firm founded in 2005, with three primary lines of business. Reef's team is currently involved in some of the most prominent development transactions in Utah and other targeted geographies across the United States. Built on two decades of success, our investment approach combines proven expertise with purposeful innovation. Reef's team has completed more than 500 transactions across all lines of business. In addition to our real estate investment strategy, Reef and/or affiliates own and operate various businesses that add significant long-term value to its projects. We have grown rapidly, growing from about 25 employees to well over 400, with managed assets on behalf of over 750 institutional and individual partners worldwide. With the motto "Expect the Best," Reef's most prominent developments include Black Desert Resort, a $2 billion luxury resort in Ivins, Utah; Marcella, a luxury private golf community in Park City, Utah; Tributer Resort, Virginia's newest premier private lakeside golf destination; Cornerstone Club, a 5,000-acre residential community, private club, and resort in Telluride, Colorado; Sweetens Cove, a renowned and evolving golf destination nestled in the Tennessee Valley; and the restoration of the historic Coco Palms Resort in Wailua, on the island of Kauai, Hawaii. At Reef, our mission is to recruit, develop, and retain entrepreneurial individuals who desire to build and create something long-lasting and meaningful. Our business enables bright, committed people to work in high-performing teams within an environment that allows each person to achieve their professional objectives. Reef values a strong culture dedicated to the health and well-being of our employees.