Rate: 60/hr - Need 10+ Endpoint Engineer MDM - Palo Alto CA hybrid 2-3 days onsite
Mohan Sai Ram Gurram
Job Title: Endpoint Engineer MDM
Location: Palo Alto CA hybrid 2-3 days onsite
Duration: 12 Months
Looking for a strong endpoint engineer. The team has two resources in India, but they need additional support for Jamf‑based deployments and scripting.
The role requires hands‑on experience supporting and troubleshooting applications, scripting deployments, and pushing policies across all endpoints. Recent interview feedback indicated the candidate lacked direct experience implementing policies end‑to‑end and relied on an engineering team to execute.
The environment is:
- ~90% Mac
- Jamf, Intune, and Amazon WorkSpaces (VDI)
- Windows‑based VDI
They’re looking for someone who can go deep into Jamf policies and capabilities, with strong end‑to‑end ownership of deployment and configuration, not just operational support.
Role Summary
This is an onsite contract role based at Rubrik''s Palo Alto Headquarters. The Endpoint Engineer is responsible for the design, implementation, and ongoing management of the organization s device ecosystem. This role focuses on automating the lifecycle of hardware and virtual desktops to ensure a seamless, secure, and zero-touch experience for our global workforce. You will serve as the subject matter expert for Apple and Windows management and our cloud desktop infrastructure.
Technical Environment
Apple (macOS & iOS): Jamf Pro
Virtual Desktop: Amazon WorkSpaces (AWS)
Scripting: PowerShell, Bash, Python
Key Responsibilities
- Unified Endpoint Management (UEM)
Daily Operations: Perform daily upkeep, system maintenance, and regular patch management for all managed endpoints to ensure security and stability.
Service Desk Escalation: Serve as the final point of contact and subject matter expert for service desk escalations related to complex endpoint issues.
Apple Fleet: Architect and maintain the Jamf Pro environment for all macOS and iOS devices. Manage configuration profiles, policies, and patch management.
Windows & Android: Lead the administration of Microsoft Intune, ensuring robust policy application, security baselines, and application delivery.
Provisioning: Manage Apple Business Manager (ABM) and Windows Autopilot to deliver a true zero-touch deployment experience.
- Understanding of Virtual Desktop Infrastructure (VDI)
- Automation & Engineering
Develop and maintain sophisticated scripts in PowerShell and Bash to automate manual tasks and integrate system APIs.
Build and maintain a library of packaged software (dmg, pkg, msi) for silent deployment.
Implement automated reporting for hardware inventory, license compliance, and security
auditing.
- Security & Compliance
Enforce endpoint security standards, including FileVault/BitLocker encryption and EDR agent health.
Partner with Security teams to remediate vulnerabilities across the endpoint fleet.
Required Qualifications
- Experience: Minimum 3 5 years in an Endpoint Engineering or MDM-focused role.
- Jamf Mastery: Proven experience managing both macOS and iOS at scale via Jamf Pro.
- Intune Proficiency: Experience managing Windows environments through Microsoft Endpoint Manager.
- VDI Expertise: Hands-on experience with Amazon WorkSpaces administration.
- BYOD Deployment: Experience deploying and managing a Bring Your Own Device (BYOD) program for personal mobile phones (iOS/Android).
- Advanced Scripting: Ability to write and debug Bash and PowerShell scripts from scratch.
- Identity: Understanding of Okta or Azure AD (Entra ID) as it relates to device enrollment and SSO.
Education & Certifications
Bachelor s degree in Computer Science, IT, or equivalent professional experience.
Relevant certifications (e.g., Jamf 200/300, Microsoft MD-102, or AWS Certified Cloud Practitioner) are a plus