About the Company
At Flow, we’re reimagining what it means to live, work, and connect. More than just a real estate company, Flow is a brand, a technology platform, and an operations ecosystem spanning condominiums, hotels, multifamily residences, and office spaces. We’re building a new kind of living experience: one that’s flexible, connected, and designed to create genuine community and real value for the people who call Flow home.
Our mission is oneness: prioritizing our residents and their experiences, and fostering connection with ourselves, their neighbors, and the natural world. By putting people at the center of everything we do, we’re creating vibrant, human-centered communities where life, work, creativity, and play all come together in one place.
About the Role
Flow is seeking an experienced Staff IT & Security Engineer to join a growing IT organization supporting a multi-
property residential portfolio and corporate operations. This role works closely with the Head of IT and takes ownership of the
systems, security posture, automation initiatives, and enterprise AI tool ecosystem that keep Flow running day to day.
The Staff Engineer sits above the field and help desk layers — the IT Support Technician and Sr. IT Field Technician handle day-
to-day tickets, hardware deployment, cabling, and on-site installs. This role focuses on the architecture, governance, and
engineering that supports that work: identity systems, AI tooling governance, security policy, automation, SaaS and vendor
management, budget support, and new property planning.
As Flow continues to grow its property portfolio, this person will play an important role in ensuring new sites come online
consistently and that the organization's IT systems scale alongside the business.
Responsibilities
Enterprise AI Tools Ownership & Governance
Serve as the central technical owner for all internal enterprise AI platforms, including large language model tools, AI-assisted developer environments, and internally developed AI-powered systems
Manage vendor relationships, licensing, access controls, and secure configuration for all AI platforms
Establish and enforce org-wide best practices for safe AI adoption; monitor usage for compliance, privacy, and data
protection risk
Maintain and extend the organization's internal AI automation platform — new capabilities, bug fixes, codebase
documentation, and knowledge transfer to the team
Stay current on the enterprise AI tooling landscape; bring recommendations to the Head of IT on new tools, risks, and
adoption opportunities
Security & Compliance
Develop and enforce security policies covering AI usage and data protection, endpoint standards, identity and access
control, and acceptable use
Partner with Legal, Engineering, and Operations on governance frameworks and any applicable compliance requirements
Lead internal security reviews, access audits, and incident response planning across all properties and corporate systems
Own the organization's security posture roadmap — identify gaps, prioritize remediation, and track progress over time
Identity & Access Management Architecture
Own the architecture and governance layer for all identity systems:
Yesh ID — SSO Configuration, SAML integrations, app provisioning
Google Workspace — organizational structure, admin policies, OU management, API restrictions
Design and maintain RBAC structures, access tiers, and least-privilege policies across all platforms
Own identity governance: periodic access reviews, privilege audits, and lifecycle policy enforcement
Day-to-day provisioning and account ops are handled by the support and field technician team — this role owns the
policies, configurations, and standards they execute against
SaaS Administration & Vendor Management
Own the SaaS portfolio: licensing, renewals, vendor relationships, and spend governance
Maintain accurate license counts across all platforms; surface consolidation or optimization opportunities to the Head of IT
Evaluate new SaaS tools through a security-first lens; own the procurement and onboarding process for new platforms
Manage vendor escalations for critical systems when issues exceed field team resolution
Own telecom platform relationships — UCaaS, VoIP, and business communication systems — including migrations, contract renewals, and platform consolidation opportunities
IT Budget Support & Financial Operations
Partner with the Head of IT to build and maintain the annual IT budget — tracking spend by category (hardware,
software/SaaS, professional services, telecom, cloud infrastructure, and contingency) and by property
Maintain ongoing spend visibility across corporate IT card expenses, vendor invoices, and SaaS subscriptions; flag
variances against budget in a timely manner
Support Finance on IT audit requests, spend reconciliations, and inception-to-date cost reporting by property or cost center
Own the IT SaaS renewal calendar — alert the Head of IT well in advance of renewals, flag price increases, and recommend
renegotiation or replacement where warranted
Track cloud infrastructure costs (GCP, AWS) and identify rightsizing or commitment optimization opportunities
Support project-level budget tracking — monitor budget vs. actual for active IT projects and surface overruns early
Automation & Engineering
Design and build IT automation that reduces manual overhead and improves security posture across the organization
Build and maintain workflows for:
Automated user provisioning and access request management
AI cpmliance enforcement and usage monitoring
Infrastructure monitoring, alerting, and incident notification
IT spend reporting and operational dashboards for leadership
Write production-quality Python; maintain and extend existing automation, scripts, and integrations—
Serve as the engineering lead on cross-functional IT initiatives from design through delivery and handoff
Mentorship, Documentation & Strategic Support
Serve as the senior technical mentor for IT Support and Field Technician staff — technical guidance, escalation support, and professional development
Own documentation standards for the IT organization: ensure runbooks, SOPs, network diagrams, and system inventories
are complete, accurate, and maintained
Act as a trusted technical advisor to the Head of IT — support vendor evaluations, technology roadmap planning, and
cross-functional IT initiatives
Translate technical work into clear updates for IT leadership and cross-functional stakeholders
Qualifications
7+ years of experience in IT engineering, security engineering, infrastructure, or a closely related senior role—
Deep knowledge of identity and access management — SSO, SAML, RBAC, Google Workspace administration, and MDM policy design (Addigy, JumpCloud, Jamf, or equivalent)
Hands-on experience with cloud platforms (GCP, AWS, or Azure) — deploying and maintaining services in production cloud
environments
Direct experience owning enterprise AI tools at an organizational level — governance, access control, usage monitoring, and
policy enforcement
Ability to write production-quality Python automation; proven ability to read, maintain, and extend existing codebase
Experience supporting or contributing to IT budget development, spend tracking, and Finance-facing reporting
Proven ability to create security and acceptable-use policies that are practical, enforceable, and appropriate for the
organization's scale
Experience managing IT strategy across multiple sites simultaneously — architectural ownership, not just field execution
Strong project ownership: ability to run cross-functional initiatives end-to-end with clear communication and handoff
documentation
Valid Florida driver's license with a clean driving record
Availability for occasional evening or weekend work during critical incidents or maintenance windows
Preferred Qualifications
Experience building or maintaining AI-powered internal tools — REST APIs, LLM integrations, Slack bots, or cloud-hosted
automation services
Familiarity with physical security system architecture — video management systems, IP access control platforms, or
intercom/visitor management systems
Ubiquiti/UniFi network architecture experience — VLAN design, firewall policy, multi-site wireless
ITSM platform administration — Freshservice, Jira Service Management, or equivalent
Experience with cloud FinOps practices — billing export analysis, committed use discount modeling, cost allocation tagging
UCaaS or VoIP platform experience — Zoom Phone, RingCentral, or equivalent
Residential or hospitality property technology environment experience
Bilingual English/Spanish
Benefits
• Comprehensive Benefits Package (Medical / Dental / Vision / Disability / Life)
• Paid time off and 13 paid holidays
• 401(k) retirement plan
• Healthcare and Dependent Care Flexible Spending Accounts (FSAs)
• Access to HSA-compatible plans
• Pre-tax commuter benefits
• Employee Assistance Program (EAP), free therapy through SpringHealth, acupuncture, and other wellness offerings
Flow is proud to be an equal opportunity workplace and hires regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity and/or expression, pregnancy, Veteran status any other characteristic protected by federal, state or local law. In addition, we provide reasonable accommodation for qualified individuals with disabilities.