macOS SME

This is a fully remote position, open to applicants in United States.

📋 Description

• Design and maintain secure macOS workstation images that integrate approved security baselines, authentication agents, logging, and VDI/remote access capabilities.

• Deploy and oversee Apple Business Manager and JAMF Pro to facilitate macOS device enrollment, configuration profiles, and compliance enforcement.

• Implement and sustain OS and application patching for macOS endpoints; ensure patches are validated post-deployment and provide support for rollback.

• Set up passwordless authentication and hardware-backed credentials for macOS devices; manage FileVault recovery key escrow and custody documentation.

• Keep device enrollment workflows and accurate asset inventory for macOS endpoints, including provisioning, reassignment, decommissioning, and secure wipe.

• Ensure proper configuration of macOS Unified Log telemetry and its forwarding to enterprise SIEM and EDR platforms.

• Create and maintain engineering documentation, runbooks, and change records for all configurations related to macOS endpoints.

⛳️ Requirements

• Preferred Bachelor's degree in Information Technology, Cybersecurity, or a related discipline.

• Over 8 years of experience in Information Technology, Endpoint Engineering, or Cybersecurity.

• More than 6 years of experience performing engineering functions (not help desk) in enterprise settings.

• Expert-level knowledge of JAMF Pro for managing macOS endpoints and ensuring compliance.

• Experience with Apple Business Manager concerning macOS and iOS device enrollment and provisioning.

• Proficient in building and maintaining macOS workstation images, with skills in automation, validation, and rollback procedures.

• Experience in configuring macOS Unified Logs and forwarding telemetry to enterprise SIEM and EDR systems.

• Proven track record of working under formal change control, audit, and security governance standards.

• Possession of Apple Certified Support Professional (ACSP) certification or an equivalent credential.

• Experience managing macOS endpoints within a federal or highly regulated environment.

• Familiarity with Gatekeeper and macOS security hardening frameworks.

• Must have or be eligible to obtain a government security screening and/or a Secret security clearance.

🏝️ Benefits

• Virtual health visits, commuter benefits, pet insurance, and entertainment discounts designed to enhance your quality of life.

• Annual performance evaluations, tuition assistance, and opportunities for internal career advancement to support your growth.

• Competitive 401(k) matching, life and disability insurance, along with financial wellness resources to secure your future.

• Annual awards, recognition for service anniversaries, referral bonuses, and peer-to-peer acknowledgments that highlight your accomplishments.

• Comprehensive healthcare coverage, wellness initiatives, flu vaccinations, and biometric screenings to promote your well-being.