Manager, CorpSec Endpoint Engineering

About The Position

Requirements

• 3+ years managing technical teams, with demonstrated success building and scaling engineering organizations in remote or distributed environments
• 5+ years experience in endpoint security, device management, or IT infrastructure
• Deep expertise with Apple device management (JAMF or similar MDM platforms) and cross-platform endpoint management for macOS, Windows, and Linux
• Experience with EDR/XDR platforms (CrowdStrike, SentinelOne, or similar) and threat detection workflows
• Proficiency with infrastructure-as-code tools (Terraform, Ansible) and GitOps practices
• Strong understanding of endpoint security principles including vulnerability management, patch deployment, compliance frameworks, and zero-trust architecture
• Experience with security automation, orchestration, and incident response procedures
• Comfortable working in a transparent, remote-first culture with asynchronous collaboration across time zones

Nice To Haves

• Experience managing endpoint security for a remote-first or fully distributed organization with 2000+ employees
• Background in security engineering with progression from individual contributor to management
• Experience with SaaS security, browser security, or modern web-based application controls
• Familiarity with compliance requirements (SOC 2, ISO 27001, FedRAMP) as they relate to endpoint management
• Contributions to open-source endpoint management or security projects
• Understanding of DevSecOps and how to use GitLab

Responsibilities

• Build, mentor, and grow a high-performing endpoint engineering team of 5 engineers, fostering a culture of automation, infrastructure-as-code, and continuous improvement
• Define and execute the technical roadmap for endpoint security and management across macOS, Windows, and Linux platforms, advancing from manual processes to intelligent automation
• Oversee enterprise-wide deployment and optimization of JAMF (Apple device management), FleetDM (cross-platform visibility), and CrowdStrike (EDR/threat detection)
• Establish infrastructure-as-code practices using Terraform, GitOps workflows, and CI/CD pipelines for endpoint configuration management
• Lead EDR/threat detection strategy, incident response procedures, and automated remediation workflows for endpoint security events
• Drive integration between endpoint platforms and identity systems for seamless device authentication, certificate-based access, and conditional access policies
• Implement automated vulnerability scanning, risk-based patch management, and compliance monitoring across the global device fleet
• Establish SLAs and metrics for device provisioning, incident response, patch compliance, and user satisfaction
• Partner cross-functionally with Identity, SIRT, IT, and executive leadership to drive strategic initiatives and ensure seamless operations across time zones

Benefits

• Flexible Paid Time Off
• Team Member Resource Groups
• Equity Compensation & Employee Stock Purchase Plan
• Growth and Development Fund
• Parental leave
• Home office support