Senior Endpoint Engineer – Jamf
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Senior Endpoint Engineer in Genesys global Endpoint Management team. Responsible for managing and optimizing cross-platform endpoint environments across 10,000+ devices worldwide.
Responsibilities:
- Engineer, configure, and optimize endpoint environments across Windows, macOS, Ubuntu, iOS, and Android platforms.
- Manage enterprise MDM platforms including JAMF Pro, Microsoft Intune, Autopilot, Entra ID, and Active Directory.
- Lead endpoint patching strategies for OS and third-party applications, minimizing downtime while ensuring compliance.
- Champion ITIL-aligned process improvement, embedding AI and agentic automation to drive continuous operational efficiency.
- Serve as a subject matter expert during audits, incident response, and vulnerability remediation exercises.
- Architect, deploy, and administer JAMF Pro across a complex enterprise environment of 3,000+ macOS endpoints.
- Build automated workflows for device provisioning, application deployment, patch management, and compliance reporting.
- Develop and maintain scripts in Bash, Python, AppleScript, and PowerShell to extend and automate JAMF functionality.
- Manage JAMF configuration profiles, policies, smart groups, and operational dashboards.
- Partner with Security to enforce FileVault encryption, CIS benchmark hardening, and Zero Trust policy controls.
- Maintain Apple Business Manager (ABM/DEP), VPP licensing, APNs certificates, and MDM enrollment pipelines.
- Design and deploy AI-assisted endpoint automation pipelines to reduce manual operational overhead and accelerate response times.
- Build and maintain autonomous agents (LangChain, AutoGen, or custom LLM integrations) to handle routine endpoint tasks including compliance checks, self-healing workflows, and incident triage.
- Integrate LLM APIs into endpoint tooling for natural-language policy authoring, log analysis, and intelligent alert summarization.
- Develop event-driven automation using JAMF Pro webhooks, Microsoft Power Automate, or custom Python/API pipelines to trigger remediation workflows without manual intervention.
- Evaluate and adopt AIOps platforms to predict device health issues, proactively surface compliance drift, and optimize patch scheduling.
- Define an AI automation roadmap for endpoint operations, establishing governance, testing, and rollback standards for agentic workflows.
- Continuously assess emerging AI tooling and agent frameworks for applicability to endpoint management use cases.
- Integrate endpoint tooling with SIEM and SOAR platforms for proactive threat monitoring and automated incident response.
- Design and enforce Conditional Access policies, identity frameworks, and data loss prevention controls.
- Ensure endpoint posture meets regulatory requirements including GDPR, HIPAA, and PCI-DSS.
- Participate in Zero Trust architecture reviews, risk assessments, and compliance audits.
- Implement and validate encryption standards across platforms (BitLocker for Windows, FileVault for macOS).
- Mentor junior engineers through knowledge sharing, code reviews, and coaching, including upskilling the team on AI-assisted and agentic operations.
- Serve as the escalation point for complex endpoint and macOS issues across global teams.
- Partner with Security, Networking, and Identity teams to integrate MDM platforms with tools such as Okta and AWS VDI.
- Produce and maintain technical documentation, architecture decision records, and end-user guides.
- Strong communication skills for both technical and non-technical audiences; able to clearly convey complex concepts to stakeholders at all levels.
Requirements:
- Bachelor's degree in Computer Science, Information Technology, or a related field, or equivalent professional experience
- 5+ years of IT experience with at least 3 years in endpoint engineering or EUC roles
- Demonstrated expertise managing large-scale endpoint environments (10,000+ devices).
- JAMF 400 Certification (JAMF Certified Expert) or equivalent expert-level hands-on experience.
- Proficiency in scripting: Bash, Python, AppleScript, and PowerShell.
- Deep knowledge of the Apple ecosystem: ABM/DEP, VPP, MDM protocol, APNs.
- Strong understanding of endpoint compliance, encryption (BitLocker, FileVault), and Zero Trust frameworks.
- Experience with vulnerability remediation, patch lifecycle management, and endpoint security tooling.
- Excellent written and verbal communication and cross-team collaboration skills.
- Available to work until 1:00 PM EST.
Benefits:
- Great benefits and perks like larger tech companies
- Independence to make a larger impact on the company and take ownership of work
Similar Jobs
Ingeniero Cloud Semi Senior
Cloud Engineer specializing in multi-cloud solutions, focusing on Azure and AWS for scalable infrastructures. Responsible for CI/CD automation and Kubernetes management.
Forward Deployed Engineer – New Verticals
Founding Engineer to build a new vertical at Protege, defining market strategy and customer engagements. Work with early customers to establish technical foundations for impactful AI initiatives.
Forward Deployed Engineer, Healthcare
Forward Deployed Engineer managing healthcare customer engagements, leading technical delivery and support for project implementations at AI startup. Building trusted relationships and developing technical solutions for clients.
DaaS Services Engineer
DaaS Services Engineer implementing and sustaining cloud data platforms and industrial data solutions at Yokogawa. Collaborating with cross-functional teams to meet customer outcomes and SLAs.
Senior Threat Detection Engineer
Senior Threat Detection Engineer at JLL leading detection capabilities and protecting enterprise environments from sophisticated threats. Bridging threat detection, data engineering, and automation.
Verify Engineer
IBM Verify Engineer supporting IAM programs and initiatives for enterprise clients. Involves design, implementation, and operational support for security solutions.
DBA Engineer
DBA Engineer optimizing SQL Server database performance at Social Discovery Group with tasks including troubleshooting, optimizing queries and database administration.
Mulesoft Engineer
Mulesoft Engineer joining Tekton Labs for international security projects in a remote setting. Collaborating with multidisciplinary teams to develop high-impact technological solutions.
Senior Controls Engineer
Technical lead managing advanced microgrid control system projects from development to commissioning at Generac. Emphasizing strong accountability and technical expertise in a high-pressure customer environment.
Tier 3 MSP Engineer
Senior engineer overseeing security operations and incident response at Mechanicus LLC. Managing complex issues in Microsoft 365 and Azure environments with a focus on proactive measures.
R&D Engineer – Mission Solutions
R&D Engineer for defense-relevant software and platform solutions at Rackner. Focusing on prototyping and refining software based on user feedback and technical requirements.
Senior Functional Safety Engineer
Senior Functional Safety Engineer developing safety assessments for autonomous vehicles at Torc Robotics. Leading hazard identification and risk analysis for functional safety in autonomous trucking systems.
Camera BSP Engineer
Camera BSP & Middleware Engineer driving the design and development of a unified camera infrastructure across Linux and Android platforms. Collaborating on embedded Linux expertise and camera subsystem integration in a leading automation systems company.
Protection & Control Specialist – Field Technologist/Engineer
Protection & Control Specialist supporting field commissioning and testing activities on power system projects. Ideal for those who enjoy troubleshooting and working on-site in British Columbia.
Senior Protection & Control Specialist – Technologist/Engineer
Senior Protection & Control Specialist leading field execution in critical power system projects. Focusing on commissioning, testing, and client delivery, not design.
Junior Protection & Control Specialist – Technologist or Engineer
Junior Protection & Control Specialist assisting in the commissioning and testing of power systems at Shermco Industries. Ideal for early-career professionals looking for hands-on experience.
Protection & Control Specialist – Field Technologist or Engineer
Protection & Control Specialist supporting field commissioning and testing on power system projects. Working hands-on to troubleshoot and collaborate for high-quality results.
Tier 3 Engineer
Tech Lead managing IT environments for managed services clients at On Call Computer Solutions. Proactively solve technical problems and improve technology environments in a fast-paced MSP setting.
Junior Protection & Control Specialist, Technologist, Engineer
Junior Protection & Control Field Specialist at Shermco Industries supporting field commissioning and testing activities in British Columbia. Engaging in substation environments and power system protection with hands-on training.
Senior Protection & Control Field Specialist – Technologist or Engineer
Senior Protection & Control Field Specialist leading field execution and providing technical expertise on critical power system projects at Shermco Industries.