Workplace Tech Sr Engineer I

About The Position

Requirements

• Combination of Education and Experience will be considered.
• Must be authorized to work in the US as defined by the Immigration Act of 1986.
• Must pass a Criminal Background Check.
• Bachelor’s Degree in Information Technology, Computer Science, or equivalent experience.
• Minimum five (5) years of experience in endpoint management and desktop administration.
• Advanced expertise with Jamf Pro for macOS and iOS device management.
• Hands-on experience with Microsoft Intune for Windows and Android device management.
• Strong knowledge of Apple Business Manager (ABM) and Google Enterprise Mobility Management (EMM).
• Experience with mobile application deployment, compliance policies, and security configurations.
• Familiarity with Zero Trust security models and conditional access policies.
• Experience with Active Directory, Azure AD, and M365 endpoint security policies.
• Basic scripting skills using PowerShell, Bash, or Python for automation.
• Knowledge of networking fundamentals (VPN, Wi-Fi, DNS, DHCP, mobile networking protocols).

Nice To Haves

• Experience managing enterprise-wide device enrollment, policy enforcement, and compliance reporting.
• Familiarity with iOS/macOS imaging techniques and automated device enrollment (ADE).
• Hands-on experience with Android Enterprise, or Google Workspace MDM.
• Knowledge of enterprise security tools (e.g., CrowdStrike).
• Ability to integrate mobile device management solutions with identity providers and security tools.
• Experience using ServiceNow or JIRA for ITSM/ticketing systems.
• Certifications such as jamf 300/400, microsoft 365 certified: endpoint administrator (MD-102) or ITIL Foundation.

Responsibilities

• Manage and administer Jamf Pro and Microsoft Intune (Endpoint Manager) to enforce security, compliance, and automation policies for iOS, iPadOS, macOS, and Android devices.
• Configure, deploy, and manage iPhones, iPads, MacBooks, and Android devices in a corporate environment.
• implement automated provisioning for Apple Business Manager (ABM).
• Optimize conditional access policies, device compliance settings, and app protection policies across managed devices.
• Manage macOS devices using Jamf Pro, ensuring patch compliance, application packaging, and security enforcement.
• Support co-management strategies for Intune and Jamf Pro, integrating macOS into enterprise environments.
• Troubleshoot Mac authentication, network, and application issues in enterprise settings.
• Enforce mobile device security policies, including encryption, endpoint protection, and access control.
• Manage Zero Trust security models, identity-based access, and compliance policies.
• Work with InfoSec teams to investigate security incidents and improve endpoint protection.
• Develop automation scripts (PowerShell, Bash, Python) for device management tasks.
• Implement automated patching, policy enforcement, and device compliance reporting.
• Optimize software distribution, OS updates, and remote support workflows.
• Lead enterprise-wide mobile device and endpoint management projects.
• Research and implement new MDM features, automation tools, and security enhancements.
• Develop best practices and standard operating procedures (SOPs) for mobile device management.
• Act as a subject matter expert (SME) for mobile endpoint management.
• Provide mentorship and training to junior specialists on Intune, Jamf, and mobile security best practices.
• Develop and maintain knowledge base articles, documentation, and training materials.
• Work closely with Security, Networking, Identity & Access Management, and Help Desk teams to resolve endpoint issues.
• Act as a tier-3 escalation point for mobile device and macOS-related issues.
• Support IT audits, compliance assessments, and risk mitigation initiatives.
• Other duties as assigned.