Overview
About Vested Finance
Vested Finance is a global investing platform that enables users to access international investment opportunities including U.S. stocks, ETFs, global funds, managed portfolios, and private market products. As a fintech platform operating in a security-sensitive and compliance-driven environment, Vested requires strong IT operations, endpoint security, vulnerability management, and asset governance practices.
Role Summary
We are looking for an IT Administrator to manage and secure Vested Finance’s internal IT environment, endpoints, user systems, SaaS tools, and endpoint protection platforms.
The role will have a strong focus on vulnerability management using SentinelOne and Action1, along with endpoint security management using Sophos. The candidate will be responsible for ensuring that endpoints are secure, patched, compliant, monitored, and aligned with Vested’s internal security and operational standards.
This role requires a hands-on IT professional who can manage day-to-day IT administration while also supporting security operations, endpoint hardening, vulnerability remediation, patch management, user support, and audit readiness.
Key Responsibilities
Vulnerability Management and Endpoint Security
Manage vulnerability identification, prioritization, remediation, and closure across company-managed endpoints using SentinelOne and Action1 or any other VM tools.
Administer and monitor Sophos Endpoint Security to ensure all endpoints are protected, healthy, updated, and compliant with Vested Finance’s security standards.
Track critical, high, and medium-risk vulnerabilities and ensure remediation within defined SLA timelines.
Use Action1 for patch deployment, software updates, vulnerability visibility, and remediation tracking.
Use SentinelOne for endpoint visibility, threat detection, investigation support, and risk-based endpoint monitoring.
Monitor Sophos alerts related to malware, suspicious behavior, policy violations, unhealthy agents, and non-reporting endpoints.
Coordinate with users and internal teams to apply patches, resolve endpoint issues, and remediate security gaps with minimal business disruption.
Validate successful patching, endpoint recovery, agent health, and vulnerability closure after remediation.
Maintain endpoint security and vulnerability trackers with asset details, severity, ownership, remediation status, exceptions, and closure evidence.
Escalate unresolved vulnerabilities, repeated patch failures, security incidents, or non-compliant endpoints to IT/Security leadership.
Prepare periodic reports covering endpoint security health, Sophos coverage, SentinelOne/Action1 findings, vulnerability status, patch compliance, and open risks.
IT Administration and User Support
Provide day-to-day IT support for employees, including laptop setup, access issues, software troubleshooting, device configuration, and productivity tool support.
Manage onboarding and offboarding activities including device provisioning, account setup, access removal, and asset recovery.
Configure and maintain employee laptops, endpoint agents, VPN clients, productivity tools, and standard business applications.
Troubleshoot hardware, software, operating system, network, and endpoint security issues.
Maintain IT service request and incident records with proper documentation and closure notes.
Ensure IT support requests are handled within agreed timelines.
Identity and Access Support
Support user account creation, modification, and deactivation across business applications.
Assist with access reviews, user access validation, and privilege cleanup activities.
Ensure access provisioning and deprovisioning follows approved processes.
Support MFA enrollment, password reset, account lockout resolution, and access troubleshooting.
Coordinate with security and business teams to ensure least-privilege access practices.
Asset Management
Maintain an accurate inventory of laptops, desktops, endpoint agents, users, software, and assigned assets.
Track asset allocation, return, repair, replacement, and retirement.
Ensure all company assets are tagged, documented, and mapped to users.
Maintain records of installed security agents including Sophos, SentinelOne, and Action1.
Identify unmanaged, inactive, duplicate, or non-compliant assets and take corrective action.
Security Operations Support
Assist the security team in investigating endpoint alerts, suspicious user activity, malware incidents, and policy violations.
Collect endpoint logs, screenshots, reports, and system evidence during investigations.
Support endpoint containment and recovery during security incidents.
Coordinate with users during incident response activities while ensuring minimal business disruption.
Support internal security controls related to endpoint hardening, encryption, software compliance, and access hygiene.
Compliance, Documentation, and Reporting
Maintain IT and security documentation including SOPs, asset registers, patch reports, vulnerability trackers, and endpoint compliance reports.
Support internal audits, compliance checks, and evidence collection.
Prepare weekly and monthly reports covering:
Vulnerability status
Patch compliance
Endpoint security health
Sophos agent coverage
SentinelOne/Action1 findings
Open risks and exceptions
Document recurring issues and recommend process improvements.
Ensure IT administration activities align with company security policies and fintech-grade operational expectations.
Required Skills and Experience
4–6 years of experience in IT administration, endpoint management, or security operations.
Hands-on experience with endpoint security and endpoint management tools.
Working knowledge of Sophos Endpoint Security.
Working knowledge of SentinelOne for endpoint visibility, detection, and response.
Experience using Action1 or similar patch/vulnerability management platforms.
Strong understanding of Windows and macOS endpoint administration.
Knowledge of vulnerability management, patching processes, endpoint hardening, and asset compliance.
Experience with user onboarding, offboarding, access management, and IT support operations.
Ability to troubleshoot endpoint, software, network, and security agent issues.
Strong documentation and reporting skills.
Ability to work with users professionally and resolve issues with minimal disruption.
Good to Have experience working in fintech, financial services, SaaS, or regulated environments.
Familiarity with ITSM tools and ticketing workflows.
Understanding of security frameworks such as ISO 27001, SOC 2, CIS Controls, or NIST CSF.
Experience with Microsoft 365, Google Workspace, VPN tools, device encryption, and SaaS administration.
Basic understanding of incident response and endpoint threat investigation.
Experience preparing audit evidence and compliance reports.
Key Performance Indicators
Endpoint vulnerability remediation within defined SLA.
Patch compliance percentage across company-managed assets.
Sophos endpoint health and coverage percentage.
Reduction in unmanaged or non-compliant endpoints.
Timely closure of IT support tickets.
Accuracy of asset inventory and endpoint records.
Timely onboarding and offboarding completion.
Quality of documentation, reports, and audit evidence.
Ideal Candidate Profile
The ideal candidate is a hands-on IT administrator with strong endpoint security awareness, good troubleshooting skills, and experience managing vulnerability and patch remediation across business endpoints. The candidate should be comfortable working in a fintech environment where endpoint security, compliance, availability, and user experience are equally important.
They should be proactive, detail-oriented, process-driven, and capable of coordinating with both technical and non-technical users to maintain a secure and well-managed IT environment for Vested Finance.