About Avolve  

Avolve is the global market leader in electronic plan review for local governments. We made the INC 5000 2025 list as one of the fastest‑growing private companies in the US, and our government expertise has been recognized for the second year in a row with our inclusion in Government Technology’s GovTech 100 list for both 2025 and 2026, a summary of 100 innovative companies making a significant contribution to the public sector. 

At Avolve we digitalize the review and approval of plans for permit applications, for both citizen and commercial planning developments. This enables government jurisdictions to improve efficiency and processes, as well as optimizing the experience for both permit applicants and plan reviewers. 

We have over 350 customers globally and are expanding fast, because we have a suite of best-in-class solutions that offer choice to cities, counties, municipalities, and states. We partner with some of the leading technology providers out there, including Microsoft, Google, and Esri – in fact, we are the only vendor that has Esri GIS functionality embedded in the plan review solution, which has earned us the Esri State and Local Government Specialty in recognition for our innovation. 

It is an exciting time to join Avolve - we are expanding into new territories and have great vision for our technological solutions. As a team we take enormous pride in the quality of our work, and our people come to work because they enjoy being part of the Avolve family and helping our customers to create safe and thriving communities. 

Position Summary: 

Avolve is seeking a Systems Engineer to support and evolve our identity and access management (IAM) platform, cloud infrastructure, and endpoint management environment. This role requires expertise across Microsoft Azure, Google Cloud Platform (GCP), and modern identity standards such as SAML and SCIM provisioning, blending hands‑on systems support with engineering responsibilities. 

As a key technical contributor, you’ll collaborate closely with IT, security, and cross‑functional teams to maintain secure, scalable systems while supporting compliance efforts aligned with ISO 27001, ISO 43001, GDPR, and SOC 2 Type II. This role offers opportunities for both independent problem‑solving and team‑driven innovation and may require occasional after‑hours support for critical systems, integrations, and maintenance activities. 

Responsibilities: The following list outlines key responsibilities and day-to-day activities associated with this role. While it’s not an exhaustive list, it should give you a strong sense of what to expect. Responsibilities may evolve over time based on team needs, individual strengths, and organizational priorities. 

Identity & Access Management (IAM) 

• Administer Microsoft Entra ID (Azure AD) including users, groups, roles, MFA, conditional access, and lifecycle workflows. 

• Implement, maintain, and troubleshoot SAML 2.0 and OIDC SSO integrations with third‑party and internal applications. 

• Manage SCIM provisioning for automated user and group lifecycle management: 

• Attribute mapping and transformation 

• Group/role assignments 

• Deprovisioning and access enforcement 

• Support onboarding/offboarding processes with a strong emphasis on least privilege and auditability. 

Cloud Infrastructure (Azure & GCP) 

• Provide operational support for Microsoft Azure and Google Cloud Platform (GCP) environments. 

• Assist with administration of compute, storage, networking, and identity‑integrated services. 

• Monitor system health, respond to alerts, and support incident resolution. 

• Perform routine maintenance, configuration changes, and service improvements. 

• Participate in documentation, runbooks, and operational best practices. 

Endpoint & Device Management (MDM) 

• Manage endpoints using Microsoft Intune and Apple Business Manager (ABM) for: 

• Windows 10/11 devices 

• Android devices 

• macOS, iOS, and iPadOS devices 

• Deploy and maintain: 

• Configuration profiles and compliance policies 

• Security baselines and encryption requirements 

• Application deployment and update strategies 

• Troubleshoot device enrollment, policy conflicts, and compliance issues. 

Compliance & Security Support 

• Assist with maintaining compliance with: 

• ISO 27001 

• ISO 43001 

• GDPR 

• SOC 2 Type II 

• Support audit preparation by providing evidence, access documentation, and procedural updates. 

• Follow and enforce security policies related to identity, devices, and cloud infrastructure. 

Support & Availability 

• Act as an escalation point for complex IAM, SSO, MDM, and cloud issues. 

• Participate in after‑hours or off‑hours support as needed for: 

• System outages 

• Identity or integration failures 

• Planned maintenance or critical changes 

Qualifications: We recognize that no candidate will meet every single qualification listed below. If you’re excited about this role and believe you bring a strong combination of relevant skills and experience, we encourage you to apply. We value diverse perspectives and are committed to building a team that reflects a variety of backgrounds and strengths. 

• Bachelor's degree in computer science, information technology or related field, or the equivalent combination of education, training, and experience. 

• 3–5 years of experience in IT systems administration, systems engineering, or cloud operations. 

• Hands‑on experience with Microsoft Entra ID (Azure AD). 

• Practical experience implementing and supporting SAML SSO and SCIM provisioning. 

• Working knowledge of Azure and GCP infrastructure concepts. 

• Experience managing devices with Intune and Apple Business Manager (ABM). 

• Familiarity with security controls, audits, and documentation related to SOC 2, ISO, and GDPR. 

• Strong troubleshooting skills and the ability to clearly document systems and procedures. 

• Strong communication and collaboration skills to work across cross-functional teams. 

Preferred Qualifications 

• Experience with OAuth2 / OIDC beyond basic SSO. 

• Scripting or automation experience (PowerShell, Python, Bash). 

• Exposure to infrastructure‑as‑code (Terraform) or CI/CD‑integrated cloud workflows. 

• Experience supporting SaaS or regulated environments. 

• Familiarity with endpoint security tooling (EDR, disk encryption, compliance reporting). 

Benefits: We offer a competitive salary along with a generous and comprehensive benefits package designed to support your well-being, growth, and work-life balance. 

• Group Medical, Dental, Vision and Life insurance 

• 401k 

• Unlimited Vacation 

• Paid Sick Leave & Holidays 

 
Compensation: Avolve is committed to fair and equitable compensation practices, and we strive to provide employees with total compensation packages that are market competitive. The exact base pay offered for this role will depend on various factors, including but not limited to the candidate's geography, qualifications, skills, and experience.   

• $115,000 - $132,000 

*This is a fully remote position that can be performed out of the following states: AL, AZ, CA, CO, FL, GA, IN, MA, MI, MN, MT, NC, NV, NY, OH, OK, PA, TN, TX, UT, VA, WA, WI 

 
Avolve is an equal opportunity employer committed to promoting an inclusive environment. We’re driven by seeing our people succeed and grow, and we work to ensure everyone contributes to their fullest potential. We consider all qualified applicants without regard to age, race, color, ancestry, national origin, religion, disability, protected veteran status, sex, gender identity or expression, sexual orientation, or any other protected status in accordance with applicable laws, regulations, and ordinances. 
 
We are committed to work with you to look for reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.