macOS Security Hardening & Remediation Specialist - 2026-52

emergiTEL

20h•Remote

About The Position

emergiTEL is hiring a macOS Security Hardening & Remediation Specialist for our client in the financial services industry. This role focuses on macOS security hardening, remediation, and compliance across enterprise environments. The specialist will conduct a deep-dive gap analysis of the current macOS fleet against Cybersecurity Governance Hardening Standards. They will collaborate with subject matter experts, security, and governance teams to derive hardened configuration baseline documentation. The role involves designing, testing, and deploying configuration profiles, files, and shell scripts to enforce strict compliance, and aligning macOS endpoint controls with specialized software layers, ensuring secure port/protocol management and application-level hardening. The specialist will manage the orchestration of security configuration updates across all macOS devices using modern workflows and work alongside the Apple Engineering team, DevOps/Developers, and Cybersecurity Governance to balance security with user productivity. Additionally, the role includes delivering training, testing, and documentation such as hardening standards, change management plans, and remediation playbooks.

Requirements

Deep understanding of macOS security mechanics (e.g., FileVault, TCC/Privacy Preferences Policy Control, System Extensions, Gatekeeper).
Advanced experience with Apple-centric MDM/UEM platforms, preferably Jamf Pro, including building configuration profiles and managing smart groups.
Strong scripting skills in Zsh / Bash and experience utilizing the macOS command-line interface for security auditing.
Experience implementing the macOS Security Compliance Project (mSCP) or CIS Benchmarks for macOS.
5+ years of experience in Cybersecurity, Endpoint Engineering, or Infrastructure Security with a heavy focus on Configuration Management.
Proven track record of participating in large-scale enterprise remediation projects or compliance lifecycles.
Solid understanding of network fundamentals: ports, protocols, and services management.
Ability to translate complex compliance documents into technical, actionable engineering requirements.
Strong documentation skills for creating hardening standards, change management plans, and remediation playbooks.

Responsibilities

Conduct a deep-dive gap analysis of the current macOS fleet against Cybersecurity Governance Hardening Standards.
Work with subject matter experts, security, and governance teams to derive hardened configuration baseline documentation in alignment with the Configuration Hardening Standard.
Design, test, and deploy configuration profiles, configuration files, and shell scripts to enforce strict compliance.
Align macOS endpoint controls with specialized software layers, ensuring secure port/protocol management and application-level hardening.
Manage the orchestration of security configuration updates across all macOS devices using modern workflows.
Work alongside the Apple Engineering team, DevOps/Developers (if applicable), and Cybersecurity Governance to balance rigid security with user productivity.
Deliver training, testing, and documentation including hardening standards, change management plans, and remediation playbooks.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume