Endpoint Engineering Lead

About The Position

Requirements

• Bachelor’s degree in Computer Science, Information Systems, or related field (or equivalent experience).
• 7+ years of experience in endpoint engineering or EUC roles, with at least 2 years in a technical leadership position.
• Deep technical expertise in: Jamf Pro at an advanced/Jamf 400 level
• macOS deployment, configuration profiles, and compliance management
• Proficiency in automation and scripting (Bash,Python)
• Familiarity with Okta and Entra ID integration with Jamf
• Working knowledge of Microsoft Intune and Windows endpoint management

Nice To Haves

• Jamf Certified Expert (Jamf 400) or equivalent — strongly preferred.
• Experience managing large-scale Apple fleets (500+ devices) in enterprise environments.
• Knowledge of zero-touch provisioning via Apple Business Manager (ABM) and Automated Device Enrollment (ADE).
• Familiarity with Microsoft Intune, Autopilot, and Windows compliance frameworks.
• Experience in hybrid environments (on-prem + cloud).
• Proven ability to lead cross-functional endpoint teams and mentor technical staff across platforms.
• Jamf 300 Certification
• Strong analytical and troubleshooting skills.
• Excellent communication and documentation abilities.
• Strategic and collaborative mindset.
• Commitment to automation, security, and user experience excellence.

Responsibilities

• Lead and mentor a team of endpoint engineers, including specialists in Windows and Apple ecosystems, and provide strategic direction and technical oversight across the full endpoint portfolio.
• Establish technical standards, configuration baselines, and best practices across macOS and Windows platforms.
• Serve as the senior escalation point for complex endpoint issues across both Apple and Windows ecosystems.
• Design, administer, and continuously optimize Jamf environment and full Apple device lifecycle management from zero-touch enrollment to offboarding.
• Oversee and manage macOS, iOS, and iPadOS configuration profiles, smart groups, policies, patch management, and compliance frameworks within Jamf Pro.
• Provide oversight and strategic guidance for Windows endpoint management and Intune-based workflows managed by your team.
• Integrate endpoint platforms with identity, security, and collaboration systems including Okta, Entra ID/Azure AD.
• Drive modernization of Apple endpoint management through advanced Jamf Pro workflows and Jamf Connect.
• Collaborate with Windows engineers on modernization efforts including Autopilot, Intune compliance policies, and cloud-native device management.
• Develop and maintain Bash and Python scripts to automate deployment, software updates, compliance reporting, and self-service workflows.
• Evaluate and implement emerging technologies including AI-assisted endpoint management and experience analytics tools.
• Partner with Cybersecurity teams to enforce macOS security baselines, CIS benchmarks, and data protection standards through Jamf Pro.
• Provide leadership oversight on Windows security baselines and Intune compliance policies.
• Manage FileVault encryption and compliance monitoring across the Apple fleet.
• Conduct periodic audits, remediation workflows, and configuration drift analysis across both platforms.
• Partner with Service Desk, Infrastructure, and Application teams to enhance the end-user experience across Apple and Windows environments.
• Develop documentation, configuration standards, and knowledge base content for cross-team enablement.
• Mentor team members, fostering cross-platform awareness and helping Windows-focused engineers grow understanding of macOS management and vice versa.

Benefits

• An annual bonus plan may be provided as part of the compensation package, in addition to a full range of medical and/or other benefits, depending on the position offered.