Lead design and implementation of enterprise endpoint management centered on aerospace use-cases around desktop and mobile devices.
Define provisioning and lifecycle processes tailored to constrained and controlled environments.
Build and enforce hardened Windows baselines and security controls, including evolving towards next generation modern provisioning.
Architect compartmentalized deployments and integrations for security standards ensuring strict data flow and labeling.
Ensure endpoint telemetry monitoring for incident response, forensics, and audit evidence.
Define standards and drive automation for policy deployments, application packaging, secure image builds, and emergency/rapid-response workflows using PowerShell, APIs, and approved orchestration tooling.
Define operational runbooks, standard operating procedures, configuration baselines, and incident playbooks.
Lead proof-of-concepts.
Serve as escalation point for complex incidents and architecture queries.

Bachelor’s degree in Computer Science, Information Technology, Computer Engineering, or equivalent
8+ years in endpoint management with 4+ years in architecture or senior engineering roles
5+ years of modern endpoint management
substantial experience in Windows client lifecycle at large enterprise scale (Tools: Workspace ONE, Intune, etc.)
Hands-on experience implementing and operating the systems management toolset (policy design, automation, API integrations, reporting)
Windows, IOS, Android, Mac
Demonstrated experience managing endpoints within a highly regulated environment
Strong knowledge of Windows 10/11 management lifecycle: provisioning, patching/feature management, driver handling for specialized hardware, security hardening, and offline deployment strategies
Experience supporting air-gapped or disconnected environments
Willingness and ability to obtain and maintain government security clearance.

Senior/Lead Unified End-Point Management (UEM) Architect

Key skills