Est. 2012 Edition №01 Lead · IT · Engineer Remote · LA

Kyle Thorn·ton

I build the systems that scale teams quietly — identity, endpoints, and the automations behind them.

Lead IT Engineer working across enterprise and startup. Competent, friendly, easy to work with — and serious about the unglamorous foundation everyone else depends on.

Work with me ↗ See the work ↘

// The receipts

4,000+

Endpoints managed

Mixed-OS fleets, end to end

$340K

Saved via automation

Real dollars, not vibes

ZERO

Touch deployment

PSSO + DEP, fully provisioned

(01) Who

What I do,
plainly.

I'm the person you call when the identity stack is held together with shared spreadsheets, the laptop deploy still takes a human, and someone needs to make all of it boring.

From 50-person startups to 4,000-endpoint enterprises, I design the systems, write the scripts, and lead the teams that run them. PSSO. Zero-touch. Automations that retire tickets faster than you can write them.

Also: competent, friendly, and easy to work with. Good vibes are infrastructure too.

(02) Work

Stood up the IT engineering function end-to-end — identity, device management, automation, and on-call — with no prior playbook.
Designed and shipped a zero-touch deployment pipeline; new-hire laptop time dropped from 3 days to under 20 minutes.
Centralized identity on Okta with SCIM provisioning across the SaaS stack, eliminating shared-spreadsheet access reviews.
Built workflow automations that retired the bulk of recurring access & lifecycle tickets.
Hired, mentored, and structured the IT team; wrote the runbooks and rituals it runs on.

Promoted to lead the IT engineering function; managed and mentored a team of engineers across identity, endpoint, and automation.
Owned hiring, 1:1s, performance, and roadmap \u2014 shaped the team's structure, rituals, and on-call rotation.
Set technical direction for the org's identity and device platforms; partnered with security, HR, and finance on cross-functional initiatives.
Continued shipping alongside the team \u2014 reviewed code, paired on automations, and stayed in the weeds where it mattered.

Owned a 4,000+ endpoint mixed-OS fleet (macOS & Windows) across Jamf and Intune.
Configured Platform SSO as the org standard; killed dozens of redundant credential prompts and tightened compliance.
Standardized zero-touch deployment via Apple Business Manager + Autopilot; eliminated manual imaging entirely.
Designed and shipped automation pipelines that saved $340K+ in recurring vendor and labor spend.
Led cross-functional incident response and quarterly access reviews supporting SOC 2 audit cycles.

2022 — 2024

Senior Enterprise Application Administrator

MATT Construction Corporation · owned the enterprise app stack & integrations
2020 — 2022

Azure Administrator

MATT Construction Corporation · ran the Azure tenant — identity, infra, governance
2016 — 2020

Systems Support Engineer

MATT Construction Corporation · mixed-fleet support, deployment & sysadmin work
2012 — 2015

Web and IT Specialist

Fullerton Photographics, Inc. · first IT job — web, hardware, everything else

(03) The stack

Okta Entra ID PSSO SSO MFA SCIM Conditional Access Jamf Pro Intune Kandji Zero-touch Autopilot Python PowerShell Workflow automation REST APIs Google Workspace Microsoft 365 Slack admin 1Password EDR Incident response Vulnerability management Zero trust SOC 2 ISO 27001 Audit prep Access reviews AI workflows ChatGPT Enterprise GitHub Copilot MCP Leadership Mentoring Hiring Project management Vendor strategy

(04) Words

See everything ↗

№ 01 · Mar 24, 2026

Zero-touch deployment, end to end

A walkthrough of how we shipped fleet provisioning that boots itself, signs in, and shows up ready — without a single human in the loop.

Read →

№ 02 · Feb 11, 2026

Scaling IAM past 1,000 users

What breaks first, what holds, and where to invest before you grow.

Read →

№ 03 · Jan 08, 2026

Automation as headcount