IT Systems & Microsoft

Company Overview

Gastronomous Technologies is a hard tech company redefining what's possible in the quick-service restaurant industry. Our flagship product — the ChronoGrill™ — is a fully autonomous, AI-powered grill deployed across commercial kitchens in the USA and Canada. We sit at the intersection of robotics, industrial automation, and connected software, and we move fast. We're a small, high-output team. Every person here carries real weight and real ownership. If you thrive in that environment, you'll fit right in.

About the Role

We're looking for a hands-on IT Systems contractor to own our Microsoft and endpoint environment. Our stack is growing quickly — more devices, more users, an expanding Microsoft 365 footprint, and increasing security obligations — and we need someone who can bring it all into a well-configured, well-documented state. This isn't a help desk role. You'll be expected to come in, assess what we have, identify gaps, design the right configuration, and execute — all while producing clean documentation that outlasts your engagement. SOC 2 compliance is on our near-term roadmap, and this role is a key part of getting there.

WHAT YOU'LL DO

Microsoft 365 & Endpoint Management

• Audit, configure, and document our full M365 environment — Exchange, Teams, SharePoint, and admin settings
• Deploy and manage Intune for MDM/MAM across all company devices, including policy creation and enforcement
• Harden our Azure AD / Entra ID environment: conditional access, MFA policies, identity governance
• Manage user lifecycle — provisioning, deprovisioning, role assignments, and access reviews
• Configure and enforce secure email policies (anti-phishing, SPF/DKIM/DMARC, DLP)

Endpoint Security & Configuration

• Perform a full audit of all company endpoints; document current state and close configuration gaps
• Standardize endpoint builds — OS hardening, encryption, software inventory, and patch management
• Deploy and tune antivirus / EDR tooling across all managed devices
• Evaluate and document our Remote Monitoring & Management (RMM) platform; recommend improvements where needed
• Support AI tooling integration — ensuring the endpoint and identity layer is configured appropriately for agentic tools operating within our environment

Compliance & Documentation

• Drive the IT controls workstream for our SOC 2 readiness effort, working directly with leadership
• Produce and maintain detailed documentation for all configurations, policies, and procedures
• Implement and enforce security policies across the organization (acceptable use, access control, data handling)
• Support internal security awareness and onboarding/offboarding workflows

WHAT WE'RE LOOKING FOR (*7+ Years of Experience*)

We REQUIRE someone with 7+ years of hands-on Microsoft and endpoint experience — someone who has seen enough environments to know what good looks like and can get there efficiently.

• Demonstrable, hands-on experience with Microsoft 365 administration — Exchange, Intune, Entra ID, Defender
• Strong knowledge of endpoint hardening on Windows environments
• Practical experience with SOC 2 or similar compliance frameworks (ISO 27001, NIST)
• Familiarity with EDR/AV platforms and RMM tooling
• A documentation-first mindset — you write things down, not just fix them
• Able to work autonomously and manage your own priorities with minimal hand-holding
• Comfortable operating in a fast-moving small company where scope can shift
• Experience in a manufacturing, hard tech, or IoT environment is a plus — but not required. What matters more is that you're sharp, methodical, and reliable.

This role covers on-going maintenance and support but, involves spearheading many new, existing projects as the business grows!!!

WHY THIS ENGAGEMENT

• You'll be working on a real stack, with real consequences — not sandbox environments
• Meaningful contribution to a SOC 2 program from the ground up
• Direct access to leadership — no layers of bureaucracy
• A company building technology that's actually deployed in the field
  

ENGAGEMENT DETAILS

This is an independent contractor role, structured in two phases:

1. Initial phase (first 3–4 months): Approximately 40–60 hours per month above baseline, focused on scoping and delivering defined projects. Potential opportunity to transition to full-time.
2. Ongoing : Approximately 25 hours per month for support, maintenance, and continuous improvement.

The preference is to work on-site at our facility in Oakville, Ontario, scheduled as full days rather than short daily visits. Exact scheduling is flexible and can be arranged based on project priorities.