Tech Ops Engineer at Wand

About the roleWand makes gaming magical. Through game customization and guidance, we build tools that help players have more fun in their favorite games. Our platform works across thousands of PC games, ensuring that great games are accessible to everyone, regardless of time constraints, skill level, or accessibility needs.The gaming industry is undergoing a massive transition. Players are drowning in an ever-expanding sea of content, yet abandoning games at record rates due to pacing, friction, or simply getting stuck. Wand is building the augmentation and intelligence layer to fix this by reading game state in real time and powering a unified ecosystem across desktop, web, and native game overlays—providing contextual AI-powered help, interactive maps, and utility-driven video clipping when players need it.Delivering on that mission depends on the team being able to move fast without spending energy thinking about IT infrastructure. As Wand scales (more full-time hires, more global contractors, more player data), the way we provision devices, manage identity, and control access has to scale as well. Tech Ops ensures people building this product can do their best work securely and seamlessly, from anywhere in the world, without security, onboarding friction, or access requests slowing them down.Role Overview: We’re looking for a hands-on Tech Ops Engineer to own the internal technical operations function at Wand. You’ll automate processes that have become bottlenecks as we’ve grown, and partner closely with the CTO to build the infrastructure that lets a fully remote, global team work securely and seamlessly.What You’ll DoAccess & Identity ManagementAutomate access control end-to-end: design and implement an automated system for granting, reviewing, and revoking access across Google Workspace, GitHub, Cloudflare SSO, and a growing roster of SaaS tools.Own our identity layer: consolidate authentication around a central identity provider (e.g., Google Workspace, Okta, JumpCloud), implement SCIM provisioning where possible, and build group-based access policies that scale.Build onboarding and offboarding runbooks: ensure a new hire can sign in to everything needed on day one, and that access is revoked quickly and reliably when someone leaves.Partner with People Ops on the employee lifecycle: integrate HR systems (Gusto, Deel) with IT provisioning so hiring, role changes, and departures flow automatically into access changes.Hardware & Device LifecycleOwn hardware provisioning: take full ownership of device procurement, imaging, shipping, and recovery; build a repeatable playbook for getting laptops into new hires’ hands on day one (including working with contractor partners abroad).Manage hardware inventory: monitor and manage physical hardware inventory and define a process for purchasing and/or refurbishing devices that integrates with onboarding.Stand up an MDM program: deploy and manage an MDM solution (e.g., Kandji, Jamf, Rippling) to enforce baseline security posture (disk encryption, OS patching, screen lock, threat detection) across company-owned devices.Migrate to properly provisioned devices: migrate the team to company-provisioned devices without disrupting the team.Cloud Infrastructure & NetworkingDefine and implement cloud networking best practices: evaluate options (e.g., Cloudflare Zero Trust, Tailscale, VPCs with bastion or IAP) to make work seamless and secure for a fully remote workforce.Manage cloud IAM and org structure: define and enforce least-privilege IAM policies across GCP and other cloud services, set up organization-level guardrails, and build a model for granting engineers scoped access.Partner with engineering on the boundary: collaborate closely on boundary projects requiring handoffs (identity, networking, and access) so everyone can ship faster.Internal Tooling & SaaS ManagementOwn internal SaaS and collaboration tools: manage the Google Workspace tenant, Slack, GitHub org, and the long tail of SaaS tools; keep them configured securely, patched, and well-integrated.Be the internal help desk—then automate yourself out of it: handle day-to-day “I can’t access X” tickets short term, and systematically automate, document, or self-serve recurring issues.Own the tooling budget: manage SaaS and tooling spend, flag leverage on renewals, and identify areas of savings as the stack grows.Who You AreCore Requirements4+ years in an IT, Tech Ops, or IT/Security hybrid role at a tech company, with meaningful time spent building (not just maintaining) the function.Hands-on with identity and access: implemented SSO, SCIM, or access-provisioning workflows in real environments (e.g., Google Workspace, Cloudflare Zero Trust, Okta, JumpCloud, Azure AD) and understands trade-offs.Cloud networking fundamentals: can stand up VPCs, subnets, IAM policies, and private access patterns in GCP (or equivalent cloud).Device lifecycle experience: owned or meaningfully contributed to hardware provisioning (imaging, MDM such as Kandji/Jamf/Rippling, shipping, recovery) and understands where to outsource vs. do in-house, including hardware inventory management and device lifecycle.Remote-first instincts: supported a fully distributed team (or significant pieces of one) and understands differences in security, UX, and logistics vs. office-based setups.Security-minded: familiar with security frameworks (even if not pursuing SOC 2 today) and defaults to least-privilege.Automation over tickets: uses scripts, APIs, and IaC (Terraform, Pulumi, shell, Python) before manual checklists; has written automations that outlived prior work.High ownership, low ego: comfortable being the only Tech Ops person; operates independently and pairs with technical leadership that will be opinionated on the work.Clear communicator: can explain access models and resolve technical support issues (including communicating clearly with a QA contractor in the Philippines).Bonus PointsBeen the first dedicated Tech Ops / IT hire and scaled the function from ~10 to 100+ people.Experience supporting both US full-time employees and global contractor populations (Deel, HI, or equivalent).Familiarity with the current stack: Google Workspace, Cloudflare (SSO / Zero Trust / Access), GitHub, Slack, Gusto, Deel.Experience with gaming, consumer tech, or other creator-adjacent companies.What We OfferCompetitive compensation and equity package.Fully remote work arrangement.Opportunity to build the Tech Ops function from the ground up at a rapidly scaling consumer gaming company.A team that genuinely loves games, moves incredibly fast, and cares deeply about what they build.How to ApplyPlease submit your resume.Join us in creating the ultimate PC gaming companion.Wand is an equal opportunity employer committed to building a diverse and inclusive team and welcomes applications from all qualified candidates regardless of background.

Heads-up

Tech Ops Engineer

Emma

Requirements and responsibilities

Skills wanted:

Language(s) required:

Frank Gambino

Sean Day

Zach Rueda

About Wand:

mission:

wand.com

Admin access needed

Payment confirmed

A member of the Torre team will contact you shortly