Help DeskSupport Engineer

Job Title: Endpoint Engineer

Location: Palo Alto CA

Duration: 9 Months

Summary of Job:

The Endpoint Engineer is responsible for the design implementation and ongoing management of the organizations device ecosystem. This role focuses on automating the lifecycle of hardware and virtual desktops to ensure a seamless secure and zero-touch experience for our global workforce. You will serve as the subject matter expert for Apple and Windows management and our cloud desktop infrastructure.

Must-have/Required skills:

• Minimum 3 5 years in an Endpoint Engineering or MDM-focused role
• Proven experience managing both macOS and iOS at scale via Jamf Pro
• Experience managing Windows environments through Microsoft Endpoint Manager
• Hands-on experience with Amazon WorkSpaces administration
• Experience deploying and managing a Bring Your Own Device (BYOD) program for personal mobile phones (iOS/Android)
• Ability to write and debug Bash and PowerShell scripts from scratch
• Understanding of Okta or Azure AD (Entra ID) as it relates to device enrollment and SSO
• Bachelors degree in Computer Science IT or equivalent professional experience

Nice-to-have skills:

• Relevant certifications (e.g. Jamf 200/300 Microsoft MD-102 or AWS Certified Cloud Practitioner)
• Experience deploying Glean or similar AI-powered enterprise search platforms including connector configuration SSO integration (Okta/Azure AD) and end-user onboarding at scale
• Familiarity with deploying Claude Code or GitHub Copilot to engineering teams including managing licensing IDE plugin distribution via MDM (Jamf/Intune) and API key or credential management through secure vaulting solutions
• Experience rolling out AI desktop or productivity agents such as Claude Cowork including packaging and silent deployment managing update cadences and coordinating with IT Security to ensure compliance with data handling policies
• Understanding of the endpoint and identity considerations unique to AI tools: network allowlisting for LLM API endpoints DLP policy tuning for AI-generated content user provisioning workflows and communicating rollout plans across IT Security and end-user teams

Key responsibilities and duties:

• Unified Endpoint Management (UEM)
  • Perform daily upkeep system maintenance and regular patch management for all managed endpoints to ensure security and stability
  • Serve as the final point of contact and subject matter expert for service desk escalations related to complex endpoint issues
  • Architect and maintain the Jamf Pro environment for all macOS and iOS devices. Manage configuration profiles policies and patch management
  • Lead the administration of Microsoft Intune ensuring robust policy application security baselines and application delivery
  • Manage Apple Business Manager (ABM) and Windows Autopilot to deliver a true zero-touch deployment experience
• Virtual Desktop Infrastructure (VDI)
  • Administer and optimize Amazon WorkSpaces
  • Manage WorkSpaces directories custom bundles and image creation/maintenance
  • Troubleshoot connectivity and performance issues within the AWS ecosystem
• Automation & Engineering
  • Develop and maintain sophisticated scripts in PowerShell and Bash to automate manual tasks and integrate system APIs
  • Build and maintain a library of packaged software (dmg pkg msi) for silent deployment
  • Implement automated reporting for hardware inventory license compliance and security auditing
• Security & Compliance
  • Enforce endpoint security standards including FileVault/BitLocker encryption and EDR agent health
  • Partner with Security teams to remediate vulnerabilities across the endpoint fleet

Technical Environment:

• Apple (macOS & iOS): Jamf Pro
• Windows & Android: Microsoft Intune / Endpoint Manager
• Virtual Desktop: Amazon WorkSpaces (AWS)
• Scripting: PowerShell Bash Python